Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252321 5 警告 アドビシステムズ - Adobe Flash Media Server におけるサービス運用妨害 (XML データ破損) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0612 2011-05-27 11:19 2011-05-12 Show GitHub Exploit DB Packet Storm
252322 9.3 危険 アドビシステムズ - Windows 上で稼働する Adobe Audition におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0615 2011-05-27 10:50 2011-05-12 Show GitHub Exploit DB Packet Storm
252323 9.3 危険 アドビシステムズ - Windows 上で稼働する Adobe Audition におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0614 2011-05-27 10:49 2011-05-12 Show GitHub Exploit DB Packet Storm
252324 5 警告 レッドハット
Avahi
オラクル		 - Avahi の avahi-core/socket.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1002 2011-05-27 10:33 2011-02-22 Show GitHub Exploit DB Packet Storm
252325 5 警告 Squid-cache.org
レッドハット		 - Squid の string-comparison 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-3072 2011-05-27 10:05 2010-09-3 Show GitHub Exploit DB Packet Storm
252326 6 警告 Walrus,Digit. - WalRack におけるアップロードファイルの取扱いに関する脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1329 2011-05-26 11:06 2011-05-26 Show GitHub Exploit DB Packet Storm
252327 6.9 警告 Linux
レッドハット		 - Linux kernel の Radeon GPU ドライバにおける任意のメモリロケーションへ書き込みされる脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1016 2011-05-26 10:45 2011-02-28 Show GitHub Exploit DB Packet Storm
252328 6.9 警告 Linux
レッドハット		 - Linux kernel の drm_modeset_ctl 関数における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2011-1013 2011-05-26 10:43 2011-05-9 Show GitHub Exploit DB Packet Storm
252329 6.2 警告 Linux
レッドハット		 - Linux kernel の caiaq Native Instruments USB オーディオ機能におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0712 2011-05-26 10:21 2011-02-18 Show GitHub Exploit DB Packet Storm
252330 4.3 警告 アクセラテクノロジ - Accela BizSearch の標準検索画面におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2011-05-26 10:07 2010-04-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247921 5.9 MEDIUM
Network 		dollar_bank dollar_bank_mobile The Dollar Bank Mobile app 2.6.3 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted … CWE-295
Improper Certificate Validation  		CVE-2017-5905 2024-11-21 12:28 2017-05-5 Show GitHub Exploit DB Packet Storm
247922 5.9 MEDIUM
Network 		payquicker mypayquicker The PayQuicker app 1.0.0 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certific… CWE-295
Improper Certificate Validation  		CVE-2017-5902 2024-11-21 12:28 2017-05-5 Show GitHub Exploit DB Packet Storm
247923 5.9 MEDIUM
Network 		state_bank_of_india state_bank_anywhere The State Bank of India State Bank Anywhere app 5.1.0 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive infor… CWE-295
Improper Certificate Validation  		CVE-2017-5901 2024-11-21 12:28 2017-05-5 Show GitHub Exploit DB Packet Storm
247924 6.1 MEDIUM
Network 		kmc_information_systems caseaware An issue was discovered in KMCIS CaseAware. Reflected cross site scripting is present in the user parameter (i.e., "usr") that is transmitted in the login.php query string. CWE-79
Cross-site Scripting 		CVE-2017-5631 2024-11-21 12:28 2017-05-1 Show GitHub Exploit DB Packet Storm
247925 8.8 HIGH
Network 		we-con levi_studio_hmi_editor A Heap-Based Buffer Overflow issue was discovered in Wecon Technologies LEVI Studio HMI Editor before 1.8.1. This vulnerability causes a buffer overflow when a maliciously crafted project file is run… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-6037 2024-11-21 12:28 2017-04-27 Show GitHub Exploit DB Packet Storm
247926 8.8 HIGH
Network 		we-con levi_studio_hmi_editor A Stack-Based Buffer Overflow issue was discovered in Wecon Technologies LEVI Studio HMI Editor before 1.8.1. This vulnerability causes a buffer overflow, which could result in denial of service when… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-6035 2024-11-21 12:28 2017-04-27 Show GitHub Exploit DB Packet Storm
247927 7.5 HIGH
Network 		hyundaiusa blue_link A Use of Hard-Coded Cryptographic Key issue was discovered in Hyundai Motor America Blue Link 3.9.5 and 3.9.4. The application uses a hard-coded decryption password to protect sensitive user informat… CWE-798
 Use of Hard-coded Credentials 		CVE-2017-6054 2024-11-21 12:28 2017-04-26 Show GitHub Exploit DB Packet Storm
247928 3.7 LOW
Adjacent 		hyundaiusa blue_link A Man-in-the-Middle issue was discovered in Hyundai Motor America Blue Link 3.9.5 and 3.9.4. Communication channel endpoints are not verified, which may allow a remote attacker to access or influence… NVD-CWE-noinfo
CVE-2017-6052 2024-11-21 12:28 2017-04-26 Show GitHub Exploit DB Packet Storm
247929 4.6 MEDIUM
Physics 		oneplus oxygenos In OxygenOS before 4.0.3 on OnePlus 3 and 3T devices, an unauthorized attacker can cause a locked bootloader to partially dump the ciphertext content of an arbitrary partition (except 'keystore') by … CWE-476
 NULL Pointer Dereference 		CVE-2017-5625 2024-11-21 12:28 2017-04-26 Show GitHub Exploit DB Packet Storm
247930 7.5 HIGH
Network 		apache cxf Apache CXF's STSClient before 3.1.11 and 3.0.13 uses a flawed way of caching tokens that are associated with delegation tokens, which means that an attacker could craft a token which would return an … CWE-384
 Session Fixation 		CVE-2017-5656 2024-11-21 12:28 2017-04-19 Show GitHub Exploit DB Packet Storm