Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 11, 2026, 6:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 254061 | 10 | 危険 | VMware | - | 複数の VMware 製品のデフォルト設定における脆弱性 |
CWE-16
環境設定 |
CVE-2008-1392 | 2010-09-13 15:57 | 2008-03-20 | Show | GitHub Exploit DB Packet Storm |
| 254062 | 10 | 危険 | VMware | - | 複数の VMware 製品の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-3892 | 2010-09-13 15:57 | 2008-09-3 | Show | GitHub Exploit DB Packet Storm |
| 254063 | 7.2 | 危険 | VMware | - | 複数の VMware 製品の VIX API におけるバッファオーバーフローの脆弱性 |
CWE-119 CWE-noinfo |
CVE-2008-2100 | 2010-09-13 15:56 | 2008-06-4 | Show | GitHub Exploit DB Packet Storm |
| 254064 | 7.8 | 危険 | VMware | - | 複数の VMware 製品の DHCP サービスにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399 CWE-noinfo |
CVE-2008-1364 | 2010-09-13 15:56 | 2008-03-17 | Show | GitHub Exploit DB Packet Storm |
| 254065 | 6.8 | 警告 | VMware | - | 複数の VMware 製品における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-1363 | 2010-09-13 15:56 | 2008-03-17 | Show | GitHub Exploit DB Packet Storm |
| 254066 | 7.2 | 危険 | VMware | - | 複数の VMware 製品における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-1362 | 2010-09-13 15:55 | 2008-03-17 | Show | GitHub Exploit DB Packet Storm |
| 254067 | 6.8 | 警告 | VMware | - | 複数の VMware 製品における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-1361 | 2010-09-13 15:55 | 2008-03-17 | Show | GitHub Exploit DB Packet Storm |
| 254068 | 7.1 | 危険 | VMware | - | 複数の VMware 製品の Virtual Machine Communication Interface (VMCI) におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2008-1340 | 2010-09-13 15:55 | 2008-03-17 | Show | GitHub Exploit DB Packet Storm |
| 254069 | 6.9 | 警告 | VMware | - | 複数の VMware 製品におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-0923 | 2010-09-13 15:54 | 2008-02-26 | Show | GitHub Exploit DB Packet Storm |
| 254070 | 9.3 | 危険 | アドビシステムズ | - | Adobe Shockwave Player の DIRAPI.dll における任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2010-2882 | 2010-09-13 15:46 | 2010-08-24 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 11, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 265611 | 5.5 |
MEDIUM
Local |
canonical |
ubuntu_linux lxd |
LXD before 2.0.2 uses world-readable permissions for /var/lib/lxd/zfs.img when setting up a loop based ZFS pool, which allows local users to copy and read data from arbitrary containers via unspecifi… |
CWE-284
Improper Access Control |
CVE-2016-1581 | 2024-11-21 11:46 | 2016-06-10 | Show | GitHub Exploit DB Packet Storm |
| 265612 | 7.8 |
HIGH
Local |
cisco | aironet_access_point_software_ | Cisco Aironet Access Point Software 8.2(100.0) on 1830e, 1830i, 1850e, 1850i, 2800, and 3800 access points allows local users to obtain Linux root access via crafted CLI command parameters, aka Bug I… |
CWE-20
Improper Input Validation |
CVE-2016-1418 | 2024-11-21 11:46 | 2016-06-8 | Show | GitHub Exploit DB Packet Storm |
| 265613 | 7.5 |
HIGH
Network |
clamav cisco |
clamav email_security_appliance web_security_appliance |
libclamav in ClamAV (aka Clam AntiVirus), as used in Advanced Malware Protection (AMP) on Cisco Email Security Appliance (ESA) devices before 9.7.0-125 and Web Security Appliance (WSA) devices before… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-1405 | 2024-11-21 11:46 | 2016-06-8 | Show | GitHub Exploit DB Packet Storm |
| 265614 | 8.8 |
HIGH
Network |
google debian canonical redhat suse opensuse |
chrome debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
Multiple unspecified vulnerabilities in Google Chrome before 51.0.2704.79 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. |
NVD-CWE-noinfo
|
CVE-2016-1703 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 265615 | 6.5 |
MEDIUM
Network |
debian canonical redhat suse opensuse |
debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse chrome |
The SkRegion::readFromMemory function in core/SkRegion.cpp in Skia, as used in Google Chrome before 51.0.2704.79, does not validate the interval count, which allows remote attackers to cause a denial… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-1702 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 265616 | 8.8 |
HIGH
Network |
google debian redhat suse opensuse |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
The Autofill implementation in Google Chrome before 51.0.2704.79 mishandles the interaction between field updates and JavaScript code that triggers a frame deletion, which allows remote attackers to … |
NVD-CWE-Other
|
CVE-2016-1701 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 265617 | 6.5 |
MEDIUM
Network |
debian redhat suse opensuse |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse chrome |
The createCustomType function in extensions/renderer/resources/binding.js in the extension bindings in Google Chrome before 51.0.2704.79 does not validate module types, which might allow attackers to… |
CWE-200
Information Exposure |
CVE-2016-1698 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 265618 | 8.8 |
HIGH
Network |
google debian redhat suse opensuse |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
The extensions subsystem in Google Chrome before 51.0.2704.79 does not properly restrict bindings access, which allows remote attackers to bypass the Same Origin Policy via unspecified vectors. |
CWE-254 CWE-284 7PK - Security Features Improper Access Control |
CVE-2016-1696 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 265619 | 8.8 |
HIGH
Network |
google debian canonical redhat suse opensuse |
chrome debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
Multiple unspecified vulnerabilities in Google Chrome before 51.0.2704.63 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. |
NVD-CWE-noinfo
|
CVE-2016-1695 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 265620 | 7.5 |
HIGH
Network |
debian redhat suse opensuse |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse chrome |
extensions/renderer/runtime_custom_bindings.cc in Google Chrome before 51.0.2704.79 does not consider side effects during creation of an array of extension views, which allows remote attackers to cau… |
NVD-CWE-Other
|
CVE-2016-1700 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |