Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 11, 2026, 12:16 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253381 | 8.3 | 危険 | 日立 | - | 日立の Groupmax 関連製品におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
- | 2010-12-21 14:06 | 2010-11-17 | Show | GitHub Exploit DB Packet Storm |
| 253382 | 4.3 | 警告 | The PHP Group アップル サイバートラスト株式会社 レッドハット |
- | PHP の var_export 関数における、重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-2531 | 2010-12-20 16:08 | 2010-07-22 | Show | GitHub Exploit DB Packet Storm |
| 253383 | 4.6 | 警告 | サイバートラスト株式会社 Linux レッドハット |
- | Hypervisor の命令のエミュレーションにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2010-0435 | 2010-12-20 16:01 | 2010-08-19 | Show | GitHub Exploit DB Packet Storm |
| 253384 | 5 | 警告 | レッドハット Pidgin オラクル |
- | Pidgin の MSN プロトコルプラグインの msn_emoticon_msg 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-1624 | 2010-12-20 16:00 | 2010-05-12 | Show | GitHub Exploit DB Packet Storm |
| 253385 | 4.3 | 警告 | IBM Apache Software Foundation アップル サイバートラスト株式会社 富士通 ヒューレット・パッカード ターボリナックス 日立 |
- | Apache HTTP Server の 413 エラーメッセージにおける HTTP メソッドを適切に検査しない問題 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-6203 | 2010-12-20 15:38 | 2007-12-3 | Show | GitHub Exploit DB Packet Storm |
| 253386 | 4.3 | 警告 | シマンテック | - | PGP Desktop にデータインジェクションの脆弱性 |
CWE-310
暗号の問題 |
CVE-2010-3618 | 2010-12-20 14:44 | 2010-11-19 | Show | GitHub Exploit DB Packet Storm |
| 253387 | 6.8 | 警告 | アップル | - | Apple iOS の Telephony 内にある GSM 方式の通信管理の実装におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3832 | 2010-12-20 14:39 | 2010-11-26 | Show | GitHub Exploit DB Packet Storm |
| 253388 | 4.3 | 警告 | アップル | - | Apple iOS の Photos における MobileMe アカウントのパスワードを読まれる脆弱性 |
CWE-200
情報漏えい |
CVE-2010-3831 | 2010-12-20 14:32 | 2010-11-26 | Show | GitHub Exploit DB Packet Storm |
| 253389 | 7.2 | 危険 | アップル | - | Apple iOS の Networking における権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-3830 | 2010-12-20 14:30 | 2010-11-26 | Show | GitHub Exploit DB Packet Storm |
| 253390 | 4.3 | 警告 | アップル | - | Apple iOS の iAd Content Display における電話をかけられる脆弱性 |
CWE-Other
その他 |
CVE-2010-3828 | 2010-12-20 14:17 | 2010-11-26 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 11, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 265611 | 5.5 |
MEDIUM
Local |
canonical |
ubuntu_linux lxd |
LXD before 2.0.2 uses world-readable permissions for /var/lib/lxd/zfs.img when setting up a loop based ZFS pool, which allows local users to copy and read data from arbitrary containers via unspecifi… |
CWE-284
Improper Access Control |
CVE-2016-1581 | 2024-11-21 11:46 | 2016-06-10 | Show | GitHub Exploit DB Packet Storm |
| 265612 | 7.8 |
HIGH
Local |
cisco | aironet_access_point_software_ | Cisco Aironet Access Point Software 8.2(100.0) on 1830e, 1830i, 1850e, 1850i, 2800, and 3800 access points allows local users to obtain Linux root access via crafted CLI command parameters, aka Bug I… |
CWE-20
Improper Input Validation |
CVE-2016-1418 | 2024-11-21 11:46 | 2016-06-8 | Show | GitHub Exploit DB Packet Storm |
| 265613 | 7.5 |
HIGH
Network |
clamav cisco |
clamav email_security_appliance web_security_appliance |
libclamav in ClamAV (aka Clam AntiVirus), as used in Advanced Malware Protection (AMP) on Cisco Email Security Appliance (ESA) devices before 9.7.0-125 and Web Security Appliance (WSA) devices before… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-1405 | 2024-11-21 11:46 | 2016-06-8 | Show | GitHub Exploit DB Packet Storm |
| 265614 | 8.8 |
HIGH
Network |
google debian canonical redhat suse opensuse |
chrome debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
Multiple unspecified vulnerabilities in Google Chrome before 51.0.2704.79 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. |
NVD-CWE-noinfo
|
CVE-2016-1703 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 265615 | 6.5 |
MEDIUM
Network |
debian canonical redhat suse opensuse |
debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse chrome |
The SkRegion::readFromMemory function in core/SkRegion.cpp in Skia, as used in Google Chrome before 51.0.2704.79, does not validate the interval count, which allows remote attackers to cause a denial… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-1702 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 265616 | 8.8 |
HIGH
Network |
google debian redhat suse opensuse |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
The Autofill implementation in Google Chrome before 51.0.2704.79 mishandles the interaction between field updates and JavaScript code that triggers a frame deletion, which allows remote attackers to … |
NVD-CWE-Other
|
CVE-2016-1701 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 265617 | 6.5 |
MEDIUM
Network |
debian redhat suse opensuse |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse chrome |
The createCustomType function in extensions/renderer/resources/binding.js in the extension bindings in Google Chrome before 51.0.2704.79 does not validate module types, which might allow attackers to… |
CWE-200
Information Exposure |
CVE-2016-1698 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 265618 | 8.8 |
HIGH
Network |
google debian redhat suse opensuse |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
The extensions subsystem in Google Chrome before 51.0.2704.79 does not properly restrict bindings access, which allows remote attackers to bypass the Same Origin Policy via unspecified vectors. |
CWE-254 CWE-284 7PK - Security Features Improper Access Control |
CVE-2016-1696 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 265619 | 8.8 |
HIGH
Network |
google debian canonical redhat suse opensuse |
chrome debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
Multiple unspecified vulnerabilities in Google Chrome before 51.0.2704.63 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. |
NVD-CWE-noinfo
|
CVE-2016-1695 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 265620 | 7.5 |
HIGH
Network |
debian redhat suse opensuse |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse chrome |
extensions/renderer/runtime_custom_bindings.cc in Google Chrome before 51.0.2704.79 does not consider side effects during creation of an array of extension views, which allows remote attackers to cau… |
NVD-CWE-Other
|
CVE-2016-1700 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |