Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251991 4 警告 Linux
レッドハット		 - Linux kernel の bcm_connect 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3874 2011-01-31 15:49 2010-12-8 Show GitHub Exploit DB Packet Storm
251992 1.9 注意 Linux
レッドハット		 - Linux kernel の viafb_ioctl_get_viafb_info 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4082 2011-01-31 15:40 2010-11-30 Show GitHub Exploit DB Packet Storm
251993 1.9 注意 Linux
レッドハット		 - Linux kernel の ivtvfb_ioctl 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4079 2011-01-31 15:03 2010-11-29 Show GitHub Exploit DB Packet Storm
251994 1.9 注意 Linux
レッドハット		 - Linux kernel の USB サブシステムにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4074 2011-01-31 15:01 2010-11-29 Show GitHub Exploit DB Packet Storm
251995 2.1 注意 Linux
レッドハット		 - Linux kernel の ethtool_get_rxnfc 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-3861 2011-01-31 14:56 2010-12-10 Show GitHub Exploit DB Packet Storm
251996 4.9 警告 Linux
レッドハット		 - Linux kernel の hso_get_count 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-3298 2011-01-28 16:03 2010-09-30 Show GitHub Exploit DB Packet Storm
251997 4.9 警告 Linux
レッドハット		 - Linux kernel の sound/core/seq/oss/seq_oss_init.c 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3080 2011-01-28 15:59 2010-09-20 Show GitHub Exploit DB Packet Storm
251998 9.3 危険 マイクロソフト - Microsoft Windows Vista の sdclt.exe にて使用される BitLocker Drive Encryption API における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3145 2011-01-28 15:56 2011-01-11 Show GitHub Exploit DB Packet Storm
251999 9.3 危険 マイクロソフト - MDAC および WDAC における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0027 2011-01-28 15:53 2011-01-11 Show GitHub Exploit DB Packet Storm
252000 9.3 危険 マイクロソフト - MDAC および WDAC の SQLConnectW 関数における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0026 2011-01-28 15:50 2011-01-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290961 - mcafee email_and_web_security
email_gateway 		McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, does not properly encrypt system-backup data, which makes it easi… CWE-310
Cryptographic Issues 		CVE-2012-4584 2024-11-21 10:43 2012-08-22 Show GitHub Exploit DB Packet Storm
290962 - mcafee email_and_web_security
email_gateway 		McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote authenticated users to obtain the session tokens of… CWE-200
Information Exposure 		CVE-2012-4583 2024-11-21 10:43 2012-08-22 Show GitHub Exploit DB Packet Storm
290963 - mcafee email_and_web_security
email_gateway 		McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote authenticated users to reset the passwords of arbit… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4582 2024-11-21 10:43 2012-08-22 Show GitHub Exploit DB Packet Storm
290964 - mcafee email_and_web_security
email_gateway 		McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, does not disable the server-side session token upon the closing o… CWE-287
Improper Authentication 		CVE-2012-4581 2024-11-21 10:43 2012-08-22 Show GitHub Exploit DB Packet Storm
290965 - mcafee email_and_web_security
email_gateway 		Cross-site scripting (XSS) vulnerability in McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote attacke… CWE-79
Cross-site Scripting 		CVE-2012-4580 2024-11-21 10:43 2012-08-22 Show GitHub Exploit DB Packet Storm
290966 - phpmyadmin phpmyadmin Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5.x before 3.5.2.2 allow remote authenticated users to inject arbitrary web script or HTML via a Table Operations (1) TRUNCATE or (… CWE-79
Cross-site Scripting 		CVE-2012-4579 2024-11-21 10:43 2012-08-22 Show GitHub Exploit DB Packet Storm
290967 - pawel_jakub_dawidek geli The geli encryption provider 7 before r239184 on FreeBSD 10 uses a weak Master Key, which makes it easier for local users to defeat a cryptographic protection mechanism via a brute-force attack. CWE-310
Cryptographic Issues 		CVE-2012-4578 2024-11-21 10:43 2012-08-22 Show GitHub Exploit DB Packet Storm
290968 - korenix jetport The Linux firmware image on (1) Korenix Jetport 5600 series serial-device servers and (2) ORing Industrial DIN-Rail serial-device servers has a hardcoded password of "password" for the root account, … CWE-255
Credentials Management 		CVE-2012-4577 2024-11-21 10:43 2012-08-22 Show GitHub Exploit DB Packet Storm
290969 8.1 HIGH
Network 		mediawiki mediawiki MediaWiki before 1.18.5, and 1.19.x before 1.19.2 saves passwords in the local database, (1) which could make it easier for context-dependent attackers to obtain cleartext passwords via a brute-force… CWE-798
 Use of Hard-coded Credentials 		CVE-2012-4381 2024-11-21 10:42 2020-02-9 Show GitHub Exploit DB Packet Storm
290970 6.1 MEDIUM
Network 		chamilo chamilo Cross-site scripting (XSS) vulnerability in main/dropbox/index.php in Chamilo LMS before 1.8.8.6 allows remote attackers to inject arbitrary web script or HTML via the category_name parameter in an a… CWE-79
Cross-site Scripting 		CVE-2012-4029 2024-11-21 10:42 2020-02-9 Show GitHub Exploit DB Packet Storm