Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253901 6.8 警告 レッドハット
Pango.org
オラクル		 - HarfBuzz の hb-buffer.c 内にある hb_buffer_ensure 関数における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2011-0064 2011-09-14 10:45 2011-03-1 Show GitHub Exploit DB Packet Storm
253902 6.5 警告 ヒューレット・パッカード
シマンテック
日立		 - Symantec Backup Exec における NDMP コマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0546 2011-09-14 10:44 2011-05-26 Show GitHub Exploit DB Packet Storm
253903 5 警告 The PHP Group - PHP で使用される crypt_blowfish におけるクリアテキストのパスワードを容易に推測される脆弱性 CWE-310
暗号の問題 		CVE-2011-2483 2011-09-13 10:43 2011-08-25 Show GitHub Exploit DB Packet Storm
253904 6.4 警告 The PHP Group - PHP の main/rfc1867.c 内にある rfc1867_post_handler 関数における任意のファイルを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2202 2011-09-13 10:42 2011-06-16 Show GitHub Exploit DB Packet Storm
253905 7.5 危険 The PHP Group - PHP の socket_connect 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-1938 2011-09-13 10:41 2011-05-31 Show GitHub Exploit DB Packet Storm
253906 7.5 危険 The PHP Group - PHP の substr_replace 関数におけるサービス運用妨害 (メモリ破損) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1148 2011-09-13 10:39 2011-03-18 Show GitHub Exploit DB Packet Storm
253907 6.8 警告 GNU Project
オラクル		 - GNU Wget における任意のファイルを作成される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2252 2011-09-12 09:56 2010-07-6 Show GitHub Exploit DB Packet Storm
253908 9.3 危険 リアルネットワークス - RealNetworks RealPlayer および RealPlayer Enterprise における任意のコードを実行されるの脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2955 2011-09-12 09:53 2011-08-16 Show GitHub Exploit DB Packet Storm
253909 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の AutoUpdate 機能における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2954 2011-09-12 09:41 2011-08-16 Show GitHub Exploit DB Packet Storm
253910 10 危険 リアルネットワークス - RealNetworks RealPlayer および RealPlayer Enterprise における任意のコードを実行されるの脆弱性 CWE-119
バッファエラー 		CVE-2011-2953 2011-09-12 09:40 2011-08-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264561 9.8 CRITICAL
Network 		ibm system_storage_ts3100-ts3200_tape_library IBM System Storage TS3100-TS3200 Tape Library could allow an unauthenticated user with access to the company network, to change a user's password and gain remote access to the system. CWE-284
Improper Access Control 		CVE-2016-9005 2024-11-21 12:00 2017-02-9 Show GitHub Exploit DB Packet Storm
264562 9.8 CRITICAL
Network 		ibm dashdb_local IBM dashDB Local uses hard-coded credentials that could allow a remote attacker to gain access to the Docker container or database. CWE-798
 Use of Hard-coded Credentials 		CVE-2016-8954 2024-11-21 12:00 2017-02-9 Show GitHub Exploit DB Packet Storm
264563 7.5 HIGH
Network 		fedoraproject
artifex 		fedora
mujs 		Integer overflow in the js_regcomp function in regexp.c in Artifex Software, Inc. MuJS before commit b6de34ac6d8bb7dd5461c57940acfbd3ee7fd93e allows attackers to cause a denial of service (applicatio… CWE-190
 Integer Overflow or Wraparound 		CVE-2016-9108 2024-11-21 12:00 2017-02-4 Show GitHub Exploit DB Packet Storm
264564 3.3 LOW
Local 		webmproject
fedoraproject 		libwebp
fedora 		Multiple integer overflows in libwebp allows attackers to have unspecified impact via unknown vectors. CWE-190
 Integer Overflow or Wraparound 		CVE-2016-9085 2024-11-21 12:00 2017-02-4 Show GitHub Exploit DB Packet Storm
264565 5.5 MEDIUM
Local 		cairographics cairo Integer overflow in the write_png function in cairo 1.14.6 allows remote attackers to cause a denial of service (invalid pointer dereference) via a large svg file. CWE-190
 Integer Overflow or Wraparound 		CVE-2016-9082 2024-11-21 12:00 2017-02-4 Show GitHub Exploit DB Packet Storm
264566 7.5 HIGH
Network 		ibm urbancode_deploy IBM UrbanCode Deploy could allow a malicious user to access the Agent Relay ActiveMQ Broker JMX interface and run plugins on the agent. CWE-284
Improper Access Control 		CVE-2016-9008 2024-11-21 12:00 2017-02-2 Show GitHub Exploit DB Packet Storm
264567 6.1 MEDIUM
Network 		ibm infosphere_information_server_on_cloud
infosphere_datastage 		IBM InfoSphere DataStage is vulnerable to cross-frame scripting, caused by insufficient HTML iframe protection. A remote attacker could exploit this vulnerability using a specially-crafted URL to nav… CWE-79
Cross-site Scripting 		CVE-2016-9000 2024-11-21 12:00 2017-02-2 Show GitHub Exploit DB Packet Storm
264568 5.4 MEDIUM
Network 		ibm infosphere_information_server
infosphere_information_server_on_cloud
infosphere_datastage 		IBM InfoSphere Information Server contains a Path-relative stylesheet import vulnerability that allows attackers to render a page in quirks mode thereby facilitating an attacker to inject malicious C… CWE-79
Cross-site Scripting 		CVE-2016-8999 2024-11-21 12:00 2017-02-2 Show GitHub Exploit DB Packet Storm
264569 5.3 MEDIUM
Network 		ibm infosphere_datastage IBM InfoSphere Information Server stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer hea… CWE-200
Information Exposure 		CVE-2016-8982 2024-11-21 12:00 2017-02-2 Show GitHub Exploit DB Packet Storm
264570 5.3 MEDIUM
Network 		ibm license_metric_tool
bigfix_inventory 		IBM BigFix Inventory v9 could disclose sensitive information to an unauthorized user using HTTP GET requests. This information could be used to mount further attacks against the system. CWE-200
Information Exposure 		CVE-2016-8977 2024-11-21 12:00 2017-02-2 Show GitHub Exploit DB Packet Storm