Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252251	10	危険	Progea Srl	-	Progea Movicon / PowerHMI におけるサービス運用妨害 (メモリ破損およびクラッシュ) の脆弱性	CWE-119 バッファエラー	CVE-2011-3499	2011-09-30 13:29	2011-09-16	Show	GitHub Exploit DB Packet Storm

252252	10	危険	Progea Srl	-	Progea Movicon / PowerHMI におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3491	2011-09-30 13:23	2011-09-16	Show	GitHub Exploit DB Packet Storm

252253	4.9	警告	baserCMSユーザー会	-	BaserCMS におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2674	2011-09-30 12:04	2011-09-30	Show	GitHub Exploit DB Packet Storm

252254	4.3	警告	baserCMSユーザー会	-	BaserCMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2673	2011-09-30 12:03	2011-09-30	Show	GitHub Exploit DB Packet Storm

252255	5	警告	Joomla!	-	Joomla! における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3747	2011-09-29 16:56	2011-09-23	Show	GitHub Exploit DB Packet Storm

252256	9.3	危険	Argonne National Laboratory	-	Bcfg2 のサーバにおける任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-3211	2011-09-29 14:30	2011-09-16	Show	GitHub Exploit DB Packet Storm

252257	9.3	危険	シーメンス	-	Siemens WinCC Runtime Advanced Loader におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3321	2011-09-29 14:27	2011-08-29	Show	GitHub Exploit DB Packet Storm

252258	10	危険	Progea Srl	-	Progea Movicon / PowerHMI におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3498	2011-09-29 14:17	2011-09-16	Show	GitHub Exploit DB Packet Storm

252259	5	警告	Cogent Real-Time Systems Inc.	-	Cogent DataHub の Web サーバにおける実行ファイルのソースコードを取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3502	2011-09-29 14:11	2011-09-16	Show	GitHub Exploit DB Packet Storm

252260	9.3	危険	Interactive Data Corporation.	-	eSignal における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2011-3503	2011-09-29 14:05	2011-09-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
276381	5.5	MEDIUM Local	gnupg canonical	gnupg ubuntu_linux	kbx/keybox-search.c in GnuPG before 1.4.19, 2.0.x before 2.0.27, and 2.1.x before 2.1.2 does not properly handle bitwise left-shifts, which allows remote attackers to cause a denial of service (inval…	CWE-20 Improper Input Validation	CVE-2015-1607	2024-11-21 11:25	2019-11-21	Show	GitHub Exploit DB Packet Storm

276382	5.5	MEDIUM Local	gnupg debian	gnupg debian_linux	The keyring DB in GnuPG before 2.1.2 does not properly handle invalid packets, which allows remote attackers to cause a denial of service (invalid read and use-after-free) via a crafted keyring file.	CWE-416 Use After Free	CVE-2015-1606	2024-11-21 11:25	2019-11-21	Show	GitHub Exploit DB Packet Storm

276383	5.3	MEDIUM Network	canonical	ubuntu_linux	All versions of unity-scope-gdrive logs search terms to syslog.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2015-1343	2024-11-21 11:25	2019-04-23	Show	GitHub Exploit DB Packet Storm

276384	7.8	HIGH Local	canonical	ubuntu_linux apport	Any Python module in sys.path can be imported if the command line of the process triggering the coredump is Python and the first argument is -m in Apport before 2.19.2 function _python_module_path.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-1341	2024-11-21 11:25	2019-04-23	Show	GitHub Exploit DB Packet Storm

276385	8.1	HIGH Network	linuxcontainers	lxd	LXD before version 0.19-0ubuntu5 doUidshiftIntoContainer() has an unsafe Chmod() call that races against the stat in the Filepath.Walk() function. A symbolic link created in that window could cause a…	CWE-362 Race Condition	CVE-2015-1340	2024-11-21 11:25	2019-04-23	Show	GitHub Exploit DB Packet Storm

276386	7.8	HIGH Local	canonical	ubuntu_linux	Content Hub before version 0.0+15.04.20150331-0ubuntu1.0 DBUS API only requires a file path for a content item, it doesn't actually require the confined app have access to the file to create a transf…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-1327	2024-11-21 11:25	2019-04-23	Show	GitHub Exploit DB Packet Storm

276387	8.8	HIGH Network	python-dbusmock_project	python-dbusmock	python-dbusmock before version 0.15.1 AddTemplate() D-Bus method call or DBusTestCase.spawn_server_template() method could be tricked into executing malicious code if an attacker supplies a .pyc file.	CWE-20 Improper Input Validation	CVE-2015-1326	2024-11-21 11:25	2019-04-23	Show	GitHub Exploit DB Packet Storm

276388	9.8	CRITICAL Network	canonical	metal_as_a_service	The SeaMicro provisioning of Ubuntu MAAS logs credentials, including username and password, for the management interface. This issue affects Ubuntu MAAS versions prior to 1.9.2.	CWE-255 Credentials Management	CVE-2015-1320	2024-11-21 11:25	2019-04-23	Show	GitHub Exploit DB Packet Storm

276389	7.5	HIGH Network	canonical	juju	Juju Core's Joyent provider before version 1.25.5 uploads the user's private ssh key.	CWE-320 Key Management Errors	CVE-2015-1316	2024-11-21 11:25	2019-04-23	Show	GitHub Exploit DB Packet Storm

276390	7.5	HIGH Network	icewarp	mail_server	Multiple directory traversal vulnerabilities in IceWarp Mail Server before 11.2 allow remote attackers to read arbitrary files via a (1) .. (dot dot) in the file parameter to a webmail/client/skins/d…	CWE-22 Path Traversal	CVE-2015-1503	2024-11-21 11:25	2018-05-9	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed