Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252871 4.3 警告 オラクル - Oracle Solaris における ZFS の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2313 2011-10-27 16:08 2011-10-18 Show GitHub Exploit DB Packet Storm
252872 5 警告 オラクル - Oracle Supply Chain Products Suite の Oracle Agile Product Supplier Collaboration for Process コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-3532 2011-10-27 16:06 2011-10-18 Show GitHub Exploit DB Packet Storm
252873 4.3 警告 オラクル - Oracle Industry Applications の Health Sciences - Oracle Thesaurus Management System コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2323 2011-10-27 10:07 2011-10-18 Show GitHub Exploit DB Packet Storm
252874 4.3 警告 オラクル - Oracle Industry Applications の Health Sciences - Oracle Clinical、Remote Data Capture における脆弱性 CWE-noinfo
情報不足 		CVE-2011-2309 2011-10-27 10:07 2011-10-18 Show GitHub Exploit DB Packet Storm
252875 6.8 警告 オラクル - Oracle Virtualization の Sun Ray コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-3538 2011-10-27 10:06 2011-10-18 Show GitHub Exploit DB Packet Storm
252876 5.5 警告 オラクル - Oracle Linux の Oracle Validated 処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2306 2011-10-27 10:05 2011-10-19 Show GitHub Exploit DB Packet Storm
252877 2.1 注意 オラクル - 複数の Oracle Sun 製品における Integrated Lights Out Manager CLI の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3522 2011-10-27 10:04 2011-10-18 Show GitHub Exploit DB Packet Storm
252878 5.5 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における JPM の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3533 2011-10-27 10:03 2011-10-18 Show GitHub Exploit DB Packet Storm
252879 4 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における Talent Acquisition Manager の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3529 2011-10-27 10:01 2011-10-18 Show GitHub Exploit DB Packet Storm
252880 5.5 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における Candidate Gateway の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3527 2011-10-27 10:01 2011-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265131 9.8 CRITICAL
Network 		sierrawireless aleos_firmware Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 use guessable session tokens, which are in the URL. CWE-613
 Insufficient Session Expiration 		CVE-2016-5069 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
265132 9.8 CRITICAL
Network 		sierrawireless aleos_firmware Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 do not require authentication for Embedded_Ace_Get_Task.cgi requests. CWE-287
Improper Authentication 		CVE-2016-5068 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
265133 8.8 HIGH
Network 		sierrawireless aleos_firmware Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT command injection. CWE-77
Command Injection 		CVE-2016-5067 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
265134 9.8 CRITICAL
Network 		sierrawireless aleos_firmware Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 have weak passwords for admin, rauser, sconsole, and user. CWE-255
Credentials Management 		CVE-2016-5066 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
265135 9.8 CRITICAL
Network 		sierrawireless aleos_firmware Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Embedded_Ace_Set_Task.cgi command injection. CWE-77
Command Injection 		CVE-2016-5065 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
265136 6.5 MEDIUM
Network 		osram lightify_pro OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 allows attackers to obtain sensitive information by reading screenshots under /private/var/mobile/Containers/Data/Application. CWE-200
Information Exposure 		CVE-2016-5059 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
265137 7.5 HIGH
Network 		osram lightify_pro OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 allows Zigbee replay. CWE-284
Improper Access Control 		CVE-2016-5058 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
265138 7.5 HIGH
Network 		osram lightify_pro OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 does not use SSL pinning. CWE-254
 7PK - Security Features 		CVE-2016-5057 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
265139 7.5 HIGH
Network 		osram lightify_pro OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 uses only 8 hex digits for a PSK. CWE-326
Inadequate Encryption Strength 		CVE-2016-5056 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
265140 6.1 MEDIUM
Network 		osram lightify_pro OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 has XSS in the username field and Wireless Client Mode configuration page. CWE-79
Cross-site Scripting 		CVE-2016-5055 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm