Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254671 6.8 警告 DELL EMC (旧 EMC Corporation) - EMC RSA AAOP におけるアプリケーション制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2742 2011-12-15 16:59 2011-12-14 Show GitHub Exploit DB Packet Storm
254672 6.8 警告 DELL EMC (旧 EMC Corporation) - EMC RSA AAOP におけるセキュリティ制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2741 2011-12-15 16:58 2011-12-14 Show GitHub Exploit DB Packet Storm
254673 4.3 警告 アドビシステムズ - Adobe ColdFusion の RDS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4368 2011-12-15 16:57 2011-12-13 Show GitHub Exploit DB Packet Storm
254674 4.3 警告 アドビシステムズ - Adobe ColdFusion におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2463 2011-12-15 16:57 2011-12-13 Show GitHub Exploit DB Packet Storm
254675 4.3 警告 アップル - iOS 上の Safari におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		- 2011-12-15 12:02 2011-12-15 Show GitHub Exploit DB Packet Storm
254676 7.2 危険 TADASoft - Tadasoft Restorepoint の評価版における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4202 2011-12-14 15:50 2011-12-13 Show GitHub Exploit DB Packet Storm
254677 9.3 危険 TADASoft - Tadasoft Restorepoint の評価版における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4201 2011-12-14 15:50 2011-12-13 Show GitHub Exploit DB Packet Storm
254678 7.5 危険 Brandon Long - Clearsilver の p_cgi_error 関数におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-134
書式文字列の問題 		CVE-2011-4357 2011-12-13 15:11 2011-11-28 Show GitHub Exploit DB Packet Storm
254679 4.6 警告 freedesktop.org - colord の cd-mapping-db.c および cd-device-db.c における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4349 2011-12-13 15:10 2011-12-10 Show GitHub Exploit DB Packet Storm
254680 3.5 注意 レッドハット - Red Hat Network (RHN) Satellite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4346 2011-12-13 15:07 2011-12-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246271 4.4 MEDIUM
Network 		samba samba Samba from version 4.9.0 and before version 4.9.3 is vulnerable to a NULL pointer de-reference. During the processing of an DNS zone in the DNS management DCE/RPC server, the internal DNS server or t… CWE-476
 NULL Pointer Dereference 		CVE-2018-16852 2024-11-21 12:53 2018-11-28 Show GitHub Exploit DB Packet Storm
246272 5.9 MEDIUM
Network 		samba samba Samba from version 4.7.0 has a vulnerability that allows a user in a Samba AD domain to crash the KDC when Samba is built in the non-default MIT Kerberos configuration. With this advisory the Samba T… CWE-400
 Uncontrolled Resource Consumption 		CVE-2018-16853 2024-11-21 12:53 2018-11-28 Show GitHub Exploit DB Packet Storm
246273 6.5 MEDIUM
Network 		samba
canonical
debian 		samba
ubuntu_linux
debian_linux 		Samba from version 4.0.0 and before versions 4.7.12, 4.8.7, 4.9.3 is vulnerable to a denial of service. During the processing of an LDAP search before Samba's AD DC returns the LDAP entries to the cl… CWE-476
 NULL Pointer Dereference 		CVE-2018-16851 2024-11-21 12:53 2018-11-28 Show GitHub Exploit DB Packet Storm
246274 6.5 MEDIUM
Network 		samba
canonical
debian 		samba
ubuntu_linux
debian_linux 		Samba from version 4.3.0 and before versions 4.7.12, 4.8.7 and 4.9.3 are vulnerable to a denial of service. When configured to accept smart-card authentication, Samba's KDC will call talloc_free() tw… CWE-415
 Double Free 		CVE-2018-16841 2024-11-21 12:53 2018-11-28 Show GitHub Exploit DB Packet Storm
246275 5.5 MEDIUM
Local 		linux
redhat
canonical
debian 		linux_kernel
enterprise_linux
ubuntu_linux
debian_linux 		A security flaw was found in the Linux kernel in a way that the cleancache subsystem clears an inode after the final file truncation (removal). The new file created with the same inode may contain le… CWE-200
Information Exposure 		CVE-2018-16862 2024-11-21 12:53 2018-11-27 Show GitHub Exploit DB Packet Storm
246276 8.8 HIGH
Network 		moodle moodle A flaw was found in moodle versions 3.5 to 3.5.2, 3.4 to 3.4.5, 3.3 to 3.3.8, 3.1 to 3.1.14 and earlier. The login form is not protected by a token to prevent login cross-site request forgery. Fixed … CWE-352
 Origin Validation Error 		CVE-2018-16854 2024-11-21 12:53 2018-11-27 Show GitHub Exploit DB Packet Storm
246277 7.2 HIGH
Network 		sonatype nexus_repository_manager Sonatype Nexus Repository Manager before 3.14 allows Java Expression Language Injection. CWE-917
 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') 		CVE-2018-16621 2024-11-21 12:53 2018-11-16 Show GitHub Exploit DB Packet Storm
246278 7.5 HIGH
Network 		sonatype nexus_repository_manager Sonatype Nexus Repository Manager before 3.14 has Incorrect Access Control. CWE-863
 Incorrect Authorization 		CVE-2018-16620 2024-11-21 12:53 2018-11-16 Show GitHub Exploit DB Packet Storm
246279 6.1 MEDIUM
Network 		sonatype nexus_repository_manager Sonatype Nexus Repository Manager before 3.14 allows XSS. CWE-79
Cross-site Scripting 		CVE-2018-16619 2024-11-21 12:53 2018-11-16 Show GitHub Exploit DB Packet Storm
246280 9.8 CRITICAL
Network 		postgresql
redhat
canonical 		postgresql
enterprise_linux
ubuntu_linux 		postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cau… CWE-89
SQL Injection 		CVE-2018-16850 2024-11-21 12:53 2018-11-14 Show GitHub Exploit DB Packet Storm