Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254241 9.3 危険 マイクロソフト - 複数の Microsoft Office 製品における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0097 2011-05-2 14:14 2011-04-12 Show GitHub Exploit DB Packet Storm
254242 9.3 危険 マイクロソフト - Microsoft Windows の OpenType Compact Font Format ドライバにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0034 2011-05-2 14:14 2011-04-12 Show GitHub Exploit DB Packet Storm
254243 9.3 危険 マイクロソフト - Microsoft の JScript および VBScript スクリプトエンジンにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0663 2011-05-2 14:13 2011-04-12 Show GitHub Exploit DB Packet Storm
254244 7.5 危険 マイクロソフト - Microsoft Windows の DNS クライアント内にある DNSAPI.dll における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0657 2011-05-2 14:12 2011-04-12 Show GitHub Exploit DB Packet Storm
254245 9.3 危険 マイクロソフト - Microsoft Windows および Office XP の GDI+ 内にある gdiplus.dll における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0041 2011-05-2 14:11 2011-04-12 Show GitHub Exploit DB Packet Storm
254246 9.3 危険 マイクロソフト - Microsoft .NET Framework の x86 JIT コンパイラにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3958 2011-05-2 14:09 2011-04-12 Show GitHub Exploit DB Packet Storm
254247 9.3 危険 マイクロソフト - Microsoft Windows XP の Windows Messenger ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-1243 2011-05-2 14:08 2011-04-12 Show GitHub Exploit DB Packet Storm
254248 10 危険 マイクロソフト - Microsoft Windows の SMB サーバサービスにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0661 2011-05-2 14:06 2011-04-12 Show GitHub Exploit DB Packet Storm
254249 9.3 危険 マイクロソフト - 複数の Microsoft 製品の SMB クライアントにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0660 2011-05-2 14:05 2011-04-12 Show GitHub Exploit DB Packet Storm
254250 10 危険 マイクロソフト - 複数の Microsoft 製品の BowserWriteErrorLogEntry 関数における整数アンダーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0654 2011-05-2 14:03 2011-02-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264911 6.5 MEDIUM
Network 		redhat openshift The API server in Kubernetes, as used in Red Hat OpenShift Enterprise 3.2, in a multi tenant environment allows remote authenticated users with knowledge of other project names to obtain sensitive pr… CWE-200
Information Exposure 		CVE-2016-5392 2024-11-21 11:54 2016-08-6 Show GitHub Exploit DB Packet Storm
264912 8.8 HIGH
Network 		crestron dm-txrx-100-str_firmware Multiple cross-site request forgery (CSRF) vulnerabilities on Crestron Electronics DM-TXRX-100-STR devices with firmware through 1.3039.00040 allow remote attackers to hijack the authentication of ar… CWE-352
 Origin Validation Error 		CVE-2016-5671 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
264913 9.8 CRITICAL
Network 		crestron dm-txrx-100-str_firmware Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 have a hardcoded password of admin for the admin account, which makes it easier for remote attackers to obtain access vi… CWE-255
Credentials Management 		CVE-2016-5670 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
264914 9.8 CRITICAL
Network 		crestron dm-txrx-100-str_firmware Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 use a hardcoded 0xb9eed4d955a59eb3 X.509 certificate from an OpenSSL Test Certification Authority, which makes it easier… NVD-CWE-Other
CVE-2016-5669 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
264915 9.8 CRITICAL
Network 		crestron dm-txrx-100-str_firmware Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 allow remote attackers to bypass authentication and change settings via a JSON API call. NVD-CWE-Other
CVE-2016-5668 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
264916 9.8 CRITICAL
Network 		crestron dm-txrx-100-str_firmware Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 allow remote attackers to bypass authentication via a direct request to a page other than index.html. NVD-CWE-Other
CVE-2016-5667 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
264917 9.8 CRITICAL
Network 		crestron dm-txrx-100-str_firmware Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 rely on the client to perform authentication, which allows remote attackers to obtain access by setting the value of obj… NVD-CWE-Other
CVE-2016-5666 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
264918 9.8 CRITICAL
Network 		crestron airmedia_am-100_firmware Directory traversal vulnerability in cgi-bin/rftest.cgi on Crestron AirMedia AM-100 devices with firmware before 1.4.0.13 allows remote attackers to execute arbitrary commands via a .. (dot dot) in t… CWE-77
Command Injection 		CVE-2016-5640 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
264919 7.5 HIGH
Network 		crestron airmedia_am-100_firmware Directory traversal vulnerability in cgi-bin/login.cgi on Crestron AirMedia AM-100 devices with firmware before 1.4.0.13 allows remote attackers to read arbitrary files via a .. (dot dot) in the src … CWE-22
Path Traversal 		CVE-2016-5639 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
264920 5.5 MEDIUM
Local 		canonical
oracle
qemu
debian
redhat 		ubuntu_linux
vm_server
linux
qemu
debian_linux
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux_server_tus
openstack
en… 		The virtqueue_pop function in hw/virtio/virtio.c in QEMU allows local guest OS administrators to cause a denial of service (memory consumption and QEMU process crash) by submitting requests without w… CWE-400
 Uncontrolled Resource Consumption 		CVE-2016-5403 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm