Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 9, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 254741 | 6.8 | 警告 | アップル サイバートラスト株式会社 Python Software Foundation サン・マイクロシステムズ レッドハット |
- | Python の imageop.c における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2008-1679 | 2010-01-19 15:48 | 2008-04-22 | Show | GitHub Exploit DB Packet Storm |
| 254742 | 5.8 | 警告 | アップル サイバートラスト株式会社 Python Software Foundation サン・マイクロシステムズ レッドハット |
- | Python の imageop モジュールにおける複数の整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2007-4965 | 2010-01-19 15:47 | 2007-09-18 | Show | GitHub Exploit DB Packet Storm |
| 254743 | 7.5 | 危険 | アップル | - | Mac OS X 用の Java における任意のコードを実行される脆弱性 |
CWE-310
暗号の問題 |
CVE-2009-2843 | 2010-01-18 12:22 | 2009-12-3 | Show | GitHub Exploit DB Packet Storm |
| 254744 | 6.8 | 警告 | アップル GNU Project サン・マイクロシステムズ サイバートラスト株式会社 レッドハット |
- | GNU tar の contains_dot_dot() 関数におけるディレクトリトラバーサルの脆弱性 | - | CVE-2007-4131 | 2010-01-18 12:21 | 2007-08-23 | Show | GitHub Exploit DB Packet Storm |
| 254745 | 4.6 | 警告 | IBM | - | IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-4150 | 2010-01-15 14:10 | 2009-12-2 | Show | GitHub Exploit DB Packet Storm |
| 254746 | 2.1 | 注意 | サン・マイクロシステムズ | - | Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2009-4080 | 2010-01-15 14:10 | 2009-11-24 | Show | GitHub Exploit DB Packet Storm |
| 254747 | 5 | 警告 | サン・マイクロシステムズ | - | Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-4075 | 2010-01-15 14:09 | 2009-11-23 | Show | GitHub Exploit DB Packet Storm |
| 254748 | 2.6 | 注意 | オラクル | - | Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
- | 2010-01-14 15:01 | 2010-01-14 | Show | GitHub Exploit DB Packet Storm |
| 254749 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer に脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3672 | 2010-01-14 12:08 | 2009-11-25 | Show | GitHub Exploit DB Packet Storm |
| 254750 | 9.3 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の java.lang パッケージにおける脆弱性 |
CWE-362
競合状態 |
CVE-2009-2724 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 9, 2026, 5:07 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 289221 | - | cisco | ios_xr | Memory leak in the SNMP module in Cisco IOS XR allows remote authenticated users to cause a denial of service (memory consumption and process restart) via crafted SNMP packets, aka Bug ID CSCue31546. |
CWE-200
Information Exposure |
CVE-2013-1216 | 2024-11-21 10:49 | 2013-04-29 | Show | GitHub Exploit DB Packet Storm | |
| 289222 | - | cisco | unified_computing_system_software | Cross-site scripting (XSS) vulnerability in a Flash component in Cisco Unified Computing System (UCS) Central allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a… |
CWE-79
Cross-site Scripting |
CVE-2013-1198 | 2024-11-21 10:49 | 2013-04-29 | Show | GitHub Exploit DB Packet Storm | |
| 289223 | - | tinc-vpn | tinc | Stack-based buffer overflow in the receive_tcppacket function in net_packet.c in tinc before 1.0.21 and 1.1 before 1.1pre7 allows remote authenticated peers to cause a denial of service (crash) or po… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2013-1428 | 2024-11-21 10:49 | 2013-04-27 | Show | GitHub Exploit DB Packet Storm | |
| 289224 | - | cisco |
adaptive_security_appliance_software 5500_series_adaptive_security_appliance asa_5500 |
The vpnclient program in the Easy VPN component on Cisco Adaptive Security Appliances (ASA) 5505 devices allows local users to gain privileges via unspecified vectors, aka Bug ID CSCuf85295. |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2013-1215 | 2024-11-21 10:49 | 2013-04-26 | Show | GitHub Exploit DB Packet Storm | |
| 289225 | - | cisco |
adaptive_security_appliance_device_manager nexus_5000 nexus_5010 nexus_5010p_switch nexus_5020 nexus_5020p_switch nexus_5548p nexus_5548up nexus_5596up mds_9000 |
The JAR files on Cisco Device Manager for Cisco MDS 9000 devices before 5.2.8, and Cisco Device Manager for Cisco Nexus 5000 devices, allow remote attackers to execute arbitrary commands on Windows c… |
CWE-20
Improper Input Validation |
CVE-2013-1192 | 2024-11-21 10:49 | 2013-04-25 | Show | GitHub Exploit DB Packet Storm | |
| 289226 | - | cisco |
unified_computing_system_infrastructure_and_unified_computing_system_software unified_computing_system_6120xp_fabric_interconnect unified_computing_system_6140xp_fabric_interconnect unified_… |
Cisco Unified Computing System (UCS) 1.x before 1.4(4) and 2.x before 2.0(2m) allows remote attackers to bypass KVM authentication via a crafted authentication request to a Cisco Integrated Managemen… |
CWE-287
Improper Authentication |
CVE-2013-1186 | 2024-11-21 10:49 | 2013-04-25 | Show | GitHub Exploit DB Packet Storm | |
| 289227 | - | cisco |
unified_computing_system_infrastructure_and_unified_computing_system_software unified_computing_system_6120xp_fabric_interconnect unified_computing_system_6140xp_fabric_interconnect unified_… |
The management API in the XML API management service in the Manager component in Cisco Unified Computing System (UCS) 1.x before 1.2(1b) allows remote attackers to cause a denial of service (service … |
CWE-20
Improper Input Validation |
CVE-2013-1184 | 2024-11-21 10:49 | 2013-04-25 | Show | GitHub Exploit DB Packet Storm | |
| 289228 | - | cisco |
unified_computing_system_infrastructure_and_unified_computing_system_software unified_computing_system_6120xp_fabric_interconnect unified_computing_system_6140xp_fabric_interconnect unified_… |
The web interface in the Manager component in Cisco Unified Computing System (UCS) 1.x and 2.x before 2.0(2m) allows remote attackers to obtain sensitive information by reading a (1) technical-suppor… |
CWE-200
Information Exposure |
CVE-2013-1185 | 2024-11-21 10:49 | 2013-04-25 | Show | GitHub Exploit DB Packet Storm | |
| 289229 | - | cisco |
unified_computing_system_infrastructure_and_unified_computing_system_software unified_computing_system_6120xp_fabric_interconnect unified_computing_system_6140xp_fabric_interconnect unified_… |
Buffer overflow in the Intelligent Platform Management Interface (IPMI) functionality in the Manager component in Cisco Unified Computing System (UCS) 1.0 and 1.1 before 1.1(1j) and 1.2 before 1.2(1b… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2013-1183 | 2024-11-21 10:49 | 2013-04-25 | Show | GitHub Exploit DB Packet Storm | |
| 289230 | - | cisco |
unified_computing_system_infrastructure_and_unified_computing_system_software unified_computing_system_6120xp_fabric_interconnect unified_computing_system_6140xp_fabric_interconnect unified_… |
The login page in the Web Console in the Manager component in Cisco Unified Computing System (UCS) before 1.0(2h), 1.1 before 1.1(1j), and 1.3(x) allows remote attackers to bypass LDAP authentication… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2013-1182 | 2024-11-21 10:49 | 2013-04-25 | Show | GitHub Exploit DB Packet Storm |