Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 8, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 254771 | 6.8 | 警告 | マイクロソフト | - | Microsoft Windows の kernel における権限を取得される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-1127 | 2010-01-4 15:24 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 254772 | 10 | 危険 | マイクロソフト | - | Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2009-2523 | 2010-01-4 15:24 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 254773 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-2512 | 2010-01-4 15:23 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 254774 | 10 | 危険 | アップル VMware サン・マイクロシステムズ |
- | Sun Java SE の Provider クラスにおける詳細不明な脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-2722 | 2010-01-4 14:56 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
| 254775 | 10 | 危険 | アップル VMware サン・マイクロシステムズ |
- | Sun Java SE の Provider クラスにおける詳細不明な脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-2723 | 2010-01-4 14:55 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 8, 2026, 4:54 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 248671 | 5.9 |
MEDIUM
Network |
isc redhat debian |
bind enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_aus enterprise_linux_server_eus debian_linux |
An attacker who is able to send and receive messages to an authoritative DNS server and who has knowledge of a valid TSIG key name for the zone and service being targeted may be able to manipulate BI… |
NVD-CWE-noinfo
|
CVE-2017-3143 | 2024-11-21 12:24 | 2019-01-17 | Show | GitHub Exploit DB Packet Storm |
| 248672 | 3.7 |
LOW
Network |
isc redhat debian |
bind enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_aus enterprise_linux_server_eus debian_linux |
An attacker who is able to send and receive messages to an authoritative DNS server and who has knowledge of a valid TSIG key name may be able to circumvent TSIG authentication of AXFR requests via a… |
CWE-20
Improper Input Validation |
CVE-2017-3142 | 2024-11-21 12:24 | 2019-01-17 | Show | GitHub Exploit DB Packet Storm |
| 248673 | 5.3 |
MEDIUM
Network |
isc netapp debian |
bind data_ontap_edge oncommand_balance element_software debian_linux |
named contains a feature which allows operators to issue commands to a running server by communicating with the server process over a control channel, using a utility program such as rndc. A regressi… |
CWE-617
Reachable Assertion |
CVE-2017-3138 | 2024-11-21 12:24 | 2019-01-17 | Show | GitHub Exploit DB Packet Storm |
| 248674 | 7.5 |
HIGH
Network |
isc redhat netapp debian |
bind enterprise_linux_desktop enterprise_linux_server_aus enterprise_linux_workstation enterprise_linux_server_tus enterprise_linux_server enterprise_linux_server_eus data_ontap_… |
Mistaken assumptions about the ordering of records in the answer section of a response containing CNAME or DNAME resource records could lead to a situation in which named would exit with an assertion… |
CWE-617
Reachable Assertion |
CVE-2017-3137 | 2024-11-21 12:24 | 2019-01-17 | Show | GitHub Exploit DB Packet Storm |
| 248675 | 5.9 |
MEDIUM
Network |
isc redhat netapp debian |
bind enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_aus enterprise_linux_server_eus data_ontap_… |
A query with a specific set of characteristics could cause a server using DNS64 to encounter an assertion failure and terminate. An attacker could deliberately construct a query, enabling denial-of-s… |
CWE-617
Reachable Assertion |
CVE-2017-3136 | 2024-11-21 12:24 | 2019-01-17 | Show | GitHub Exploit DB Packet Storm |
| 248676 | 5.9 |
MEDIUM
Network |
isc redhat netapp debian |
bind enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_aus enterprise_linux_server_eus data_ontap_… |
Under some conditions when using both DNS64 and RPZ to rewrite query responses, query processing can resume in an inconsistent state leading to either an INSIST assertion failure or an attempt to rea… |
CWE-476
NULL Pointer Dereference |
CVE-2017-3135 | 2024-11-21 12:24 | 2019-01-17 | Show | GitHub Exploit DB Packet Storm |
| 248677 | 4.6 |
MEDIUM
Physics |
hp |
hp_240_g1_firmware hp_245_g1_firmware hp_1000-1300_firmware hp_250_g1_notebook_pc_firmware hp_255_g1_notebook_pc_firmware hp_envy_15-j000_firmware hp_envy_15-j100_firmware hp_pav… |
A BIOS password extraction vulnerability has been reported on certain consumer notebooks with firmware F.22 and others. The BIOS password was stored in CMOS in a way that allowed it to be extracted. … |
CWE-522
Insufficiently Protected Credentials |
CVE-2017-2751 | 2024-11-21 12:24 | 2018-10-4 | Show | GitHub Exploit DB Packet Storm |
| 248678 | 9.8 |
CRITICAL
Network |
foscam | c1_firmware | A missing error check exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted request on port 10001 could allow an atta… |
CWE-755
Improper Handling of Exceptional Conditions |
CVE-2017-2877 | 2024-11-21 12:24 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 248679 | 7.5 |
HIGH
Network |
foscam | c1_firmware | An exploitable buffer overflow vulnerability exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted request on port 10… |
CWE-120
Classic Buffer Overflow |
CVE-2017-2876 | 2024-11-21 12:24 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 248680 | 7.2 |
HIGH
Network |
foscam | c1_firmware | An exploitable command injection vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted HTTP request c… |
CWE-78
OS Command |
CVE-2017-2873 | 2024-11-21 12:24 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |