Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 20, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253121 | 4.3 | 警告 | PNG Development Group レッドハット |
- | libpng の pngerror.c 内にある png_format_buffer 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-DesignError
|
CVE-2011-2501 | 2011-08-17 13:34 | 2011-07-7 | Show | GitHub Exploit DB Packet Storm |
| 253122 | 1.2 | 注意 | サイバートラスト株式会社 VMware Linux レッドハット |
- | Linux kernel の net/core/ethtool.c における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-4655 | 2011-08-17 13:30 | 2011-03-1 | Show | GitHub Exploit DB Packet Storm |
| 253123 | 6.9 | 警告 | レッドハット | - | Linux-HA の SAPDatabase および SAPInstance スクリプトにおける権限を取得される脆弱性 |
CWE-DesignError
|
CVE-2010-3389 | 2011-08-17 13:29 | 2010-10-20 | Show | GitHub Exploit DB Packet Storm |
| 253124 | 6.5 | 警告 | エイムラック | - | Aipo における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2011-1342 | 2011-08-16 12:02 | 2011-08-16 | Show | GitHub Exploit DB Packet Storm |
| 253125 | 2.6 | 注意 | エイムラック | - | Aipo におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2011-1341 | 2011-08-16 12:01 | 2011-08-16 | Show | GitHub Exploit DB Packet Storm |
| 253126 | 5 | 警告 | Opera Software ASA | - | Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-2641 | 2011-08-16 11:34 | 2011-05-18 | Show | GitHub Exploit DB Packet Storm |
| 253127 | 5 | 警告 | Opera Software ASA | - | Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-2640 | 2011-08-16 11:33 | 2011-04-12 | Show | GitHub Exploit DB Packet Storm |
| 253128 | 5 | 警告 | Opera Software ASA | - | Opera におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-2639 | 2011-08-16 11:33 | 2011-04-12 | Show | GitHub Exploit DB Packet Storm |
| 253129 | 5 | 警告 | Opera Software ASA | - | Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-2638 | 2011-08-16 11:32 | 2011-04-12 | Show | GitHub Exploit DB Packet Storm |
| 253130 | 5 | 警告 | Opera Software ASA | - | Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-2637 | 2011-08-16 11:31 | 2011-04-12 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 20, 2026, 4:14 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 246831 | 6.6 |
MEDIUM
Physics |
infineon | s-gold_2_pmb_8876 | A Stack-Based Buffer Overflow issue was discovered in the Continental AG Infineon S-Gold 2 (PMB 8876) chipset on BMW several models produced between 2009-2010, Ford a limited number of P-HEV vehicles… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-9647 | 2024-11-21 12:36 | 2017-08-7 | Show | GitHub Exploit DB Packet Storm |
| 246832 | 8.8 |
HIGH
Adjacent |
infineon | s-gold_2_pmb_8876 | An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was discovered in the Continental AG Infineon S-Gold 2 (PMB 8876) chipset on BMW several models produced between 2009-… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-9633 | 2024-11-21 12:36 | 2017-08-7 | Show | GitHub Exploit DB Packet Storm |
| 246833 | 9.8 |
CRITICAL
Network |
pdqinc |
laserwash_g5_firmware laserwash_g5_s_firmware laserwash_m5_firmware laserwash_360_firmware laserwash_360_plus_firmware laserwash_autoxpress_firmware laserwash_autoxpress_plus_firmwa… |
A Missing Encryption of Sensitive Data issue was discovered in PDQ Manufacturing LaserWash G5 and G5 S Series all versions, LaserWash M5, all versions, LaserWash 360 and 360 Plus, all versions, Laser… |
CWE-311
Missing Encryption of Sensitive Data |
CVE-2017-9632 | 2024-11-21 12:36 | 2017-08-7 | Show | GitHub Exploit DB Packet Storm |
| 246834 | 9.4 |
CRITICAL
Network |
pdqinc |
laserwash_g5_firmware laserwash_g5_s_firmware laserwash_m5_firmware laserwash_360_firmware laserwash_360_plus_firmware laserwash_autoxpress_firmware laserwash_autoxpress_plus_firmwa… |
An Improper Authentication issue was discovered in PDQ Manufacturing LaserWash G5 and G5 S Series all versions, LaserWash M5, all versions, LaserWash 360 and 360 Plus, all versions, LaserWash AutoXpr… |
CWE-287
Improper Authentication |
CVE-2017-9630 | 2024-11-21 12:36 | 2017-08-7 | Show | GitHub Exploit DB Packet Storm |
| 246835 | 9.8 |
CRITICAL
Network |
sma |
sunny_boy_3600_firmware sunny_boy_5000_firmware sunny_tripower_core1_firmware sunny_tripower_15000tl_firmware sunny_tripower_20000tl_firmware sunny_tripower_25000tl_firmware sunny_t… |
An issue was discovered in SMA Solar Technology products. By sniffing for specific packets on the localhost, plaintext passwords can be obtained as they are typed into Sunny Explorer by the user. The… |
CWE-311
Missing Encryption of Sensitive Data |
CVE-2017-9854 | 2024-11-21 12:36 | 2017-08-6 | Show | GitHub Exploit DB Packet Storm |
| 246836 | 9.8 |
CRITICAL
Network |
sma |
sunny_boy_3600_firmware sunny_boy_5000_firmware sunny_tripower_core1_firmware sunny_tripower_15000tl_firmware sunny_tripower_20000tl_firmware sunny_tripower_25000tl_firmware sunny_t… |
An issue was discovered in SMA Solar Technology products. All inverters have a very weak password policy for the user and installer password. No complexity requirements or length requirements are set… |
CWE-521
Weak Password Requirements |
CVE-2017-9853 | 2024-11-21 12:36 | 2017-08-6 | Show | GitHub Exploit DB Packet Storm |
| 246837 | 9.8 |
CRITICAL
Network |
sma |
sunny_boy_3600_firmware sunny_boy_5000_firmware sunny_tripower_core1_firmware sunny_tripower_15000tl_firmware sunny_tripower_20000tl_firmware sunny_tripower_25000tl_firmware sunny_t… |
An Incorrect Password Management issue was discovered in SMA Solar Technology products. Default passwords exist that are rarely changed. User passwords will almost always be default. Installer passwo… |
CWE-798
Use of Hard-coded Credentials |
CVE-2017-9852 | 2024-11-21 12:36 | 2017-08-6 | Show | GitHub Exploit DB Packet Storm |
| 246838 | 7.5 |
HIGH
Network |
spectrum | tc8717t_firmware | The Time Warner firmware on Technicolor TC8717T devices sets the default Wi-Fi passphrase to a combination of the SSID and BSSID, which makes it easier for remote attackers to obtain network access b… |
NVD-CWE-noinfo
|
CVE-2017-9522 | 2024-11-21 12:36 | 2017-07-31 | Show | GitHub Exploit DB Packet Storm |
| 246839 | 5.5 |
MEDIUM
Local |
motorola comcast |
mx011anm_firmware xfinity_xr11-20_firmware |
The Comcast firmware on Motorola MX011ANM (firmware version MX011AN_2.9p6s1_PROD_sey) and Xfinity XR11-20 Voice Remote devices allows local users to upload arbitrary firmware images to an XR11 by lev… |
CWE-354
Improper Validation of Integrity Check Value |
CVE-2017-9498 | 2024-11-21 12:36 | 2017-07-31 | Show | GitHub Exploit DB Packet Storm |
| 246840 | 9.8 |
CRITICAL
Network |
cisco commscope |
dpc3939_firmware dpc3939b_firmware dpc3941t_firmware arris_tg1682g_firmware |
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST); Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST); Cisco DPC3939B (firmw… |
NVD-CWE-noinfo
|
CVE-2017-9521 | 2024-11-21 12:36 | 2017-07-31 | Show | GitHub Exploit DB Packet Storm |