Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253281	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0619	2012-03-21 14:11	2012-03-8	Show	GitHub Exploit DB Packet Storm

253282	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0618	2012-03-21 14:09	2012-03-8	Show	GitHub Exploit DB Packet Storm

253283	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0617	2012-03-21 14:08	2012-03-8	Show	GitHub Exploit DB Packet Storm

253284	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0616	2012-03-21 14:06	2012-03-8	Show	GitHub Exploit DB Packet Storm

253285	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0615	2012-03-21 14:04	2012-03-8	Show	GitHub Exploit DB Packet Storm

253286	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0614	2012-03-21 14:03	2012-03-8	Show	GitHub Exploit DB Packet Storm

253287	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0613	2012-03-21 14:02	2012-03-8	Show	GitHub Exploit DB Packet Storm

253288	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0612	2012-03-21 14:00	2012-03-8	Show	GitHub Exploit DB Packet Storm

253289	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0611	2012-03-21 12:14	2012-03-8	Show	GitHub Exploit DB Packet Storm

253290	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0610	2012-03-21 12:13	2012-03-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246111	6.5	MEDIUM Network	rubyonrails	rails	A bypass vulnerability in Active Storage >= 5.2.0 for Google Cloud Storage and Disk services allow an attacker to modify the `content-disposition` and `content-type` parameters which can be used in w…	NVD-CWE-noinfo	CVE-2018-16477	2024-11-21 12:52	2018-12-1	Show	GitHub Exploit DB Packet Storm

246112	7.5	HIGH Network	rubyonrails redhat	rails cloudforms	A Broken Access Control vulnerability in Active Job versions >= 4.2.0 allows an attacker to craft user input which can cause Active Job to deserialize it using GlobalId and give them access to inform…	CWE-502 Deserialization of Untrusted Data	CVE-2018-16476	2024-11-21 12:52	2018-12-1	Show	GitHub Exploit DB Packet Storm

246113	6.5	MEDIUM Network	lenovo	xclarity_integrator	LXCI for VMware versions prior to 5.5 and LXCI for Microsoft System Center versions prior to 3.5, allow an authenticated user to write to any system file due to insufficient sanitization during the u…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2018-16097	2024-11-21 12:52	2018-11-30	Show	GitHub Exploit DB Packet Storm

246114	6.5	MEDIUM Network	lenovo	xclarity_integrator	In versions prior to 5.5, LXCI for VMware allows an authenticated user to write to any system file due to insufficient sanitization during the upload of a backup file.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2018-16093	2024-11-21 12:52	2018-11-30	Show	GitHub Exploit DB Packet Storm

246115	8.8	HIGH Network	mi	miwifi_os	System command injection in request_mitv in Xiaomi Mi Router 3 version 2.22.15 allows attackers to execute arbitrary system commands via the "payload" URL parameter.	CWE-78 OS Command	CVE-2018-16130	2024-11-21 12:52	2018-11-28	Show	GitHub Exploit DB Packet Storm

246116	6.1	MEDIUM Network	lenovo	system_management_module_firmware	In System Management Module (SMM) versions prior to 1.06, the SMM web interface for changing Enclosure VPD fails to sufficiently sanitize all input for HTML tags, possibly opening a path for cross-si…	CWE-79 Cross-site Scripting	CVE-2018-16096	2024-11-21 12:52	2018-11-27	Show	GitHub Exploit DB Packet Storm

246117	5.9	MEDIUM Network	lenovo	system_management_module_firmware	In System Management Module (SMM) versions prior to 1.06, the SMM records hashed passwords to a debug log when user authentication fails.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2018-16095	2024-11-21 12:52	2018-11-27	Show	GitHub Exploit DB Packet Storm

246118	8.1	HIGH Network	lenovo	system_management_module_firmware	In System Management Module (SMM) versions prior to 1.06, an internal SMM function that retrieves configuration settings is prone to a buffer overflow.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-16094	2024-11-21 12:52	2018-11-27	Show	GitHub Exploit DB Packet Storm

246119	8.1	HIGH Network	lenovo	system_management_module_firmware	In System Management Module (SMM) versions prior to 1.06, the FFDC feature includes the collection of SMM system files containing sensitive information; notably, the SMM user account credentials and …	NVD-CWE-noinfo	CVE-2018-16092	2024-11-21 12:52	2018-11-27	Show	GitHub Exploit DB Packet Storm

246120	8.1	HIGH Network	lenovo	system_management_module_firmware	In System Management Module (SMM) versions prior to 1.06, the SMM certificate creation and parsing logic is vulnerable to several buffer overflows.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-16091	2024-11-21 12:52	2018-11-27	Show	GitHub Exploit DB Packet Storm