Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
256451 9.3 危険 シーメンス - 複数の Siemens 製品の HmiLoad におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2011-4876 2012-02-8 11:07 2012-01-24 Show GitHub Exploit DB Packet Storm
256452 9.3 危険 シーメンス - 複数の Siemens 製品の HmiLoad におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-4875 2012-02-8 11:06 2012-01-24 Show GitHub Exploit DB Packet Storm
256453 10 危険 シーメンス - 複数の Siemens 製品の TELNET デーモンにおけるアクセス権を取得される脆弱性 CWE-287
不適切な認証
CVE-2011-4514 2012-02-8 11:00 2012-01-24 Show GitHub Exploit DB Packet Storm
256454 10 危険 シーメンス - 複数の Siemens 製品における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2011-4513 2012-02-8 10:56 2012-01-24 Show GitHub Exploit DB Packet Storm
256455 5 警告 シーメンス - 複数の Siemens 製品の HMI Web サーバにおける CRLF インジェクションの脆弱性 CWE-94
コード・インジェクション
CVE-2011-4512 2012-02-8 10:54 2012-01-24 Show GitHub Exploit DB Packet Storm
256456 4.3 警告 シーメンス - 複数の Siemens 製品の HMI Web サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-4511 2012-02-8 10:53 2012-01-24 Show GitHub Exploit DB Packet Storm
256457 4.3 警告 シーメンス - 複数の Siemens 製品の HMI Web サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-4510 2012-02-8 10:51 2012-01-24 Show GitHub Exploit DB Packet Storm
256458 10 危険 シーメンス - 複数の Siemens 製品の HMI Web サーバにおけるアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-4509 2012-02-8 10:50 2012-01-24 Show GitHub Exploit DB Packet Storm
256459 10 危険 シーメンス - 複数の Siemens 製品の HMI Web サーバにおける認証を回避される脆弱性 CWE-287
不適切な認証
CVE-2011-4508 2012-02-8 10:49 2012-01-24 Show GitHub Exploit DB Packet Storm
256460 2.6 注意 HTC Corporation - HTC 製 Android 端末に Wi-Fi 認証情報漏えいの脆弱性 CWE-200
情報漏えい
CVE-2011-4872 2012-02-7 16:21 2012-02-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275081 7.8 HIGH
Local
adobe connect Untrusted search path vulnerability in the installer in Adobe Connect Add-In before 11.9.976.291 on Windows allows local users to gain privileges via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-4118 2024-11-21 11:51 2016-05-30 Show GitHub Exploit DB Packet Storm
275082 7.5 HIGH
Network
fedoraproject
pgpdump_project
fedora
pgpdump
The read_binary function in buffer.c in pgpdump before 0.30 allows context-dependent attackers to cause a denial of service (infinite loop and CPU consumption) via crafted input, as demonstrated by t… CWE-399
 Resource Management Errors
CVE-2016-4021 2024-11-21 11:51 2016-05-26 Show GitHub Exploit DB Packet Storm
275083 6.5 MEDIUM
Local
qemu
canonical
debian
redhat
qemu
ubuntu_linux
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
openstack
enterprise_linux_server_aus
enterprise_linux_eus
ente…
The patch_instruction function in hw/i386/kvmvapic.c in QEMU does not initialize the imm32 variable, which allows local guest OS administrators to obtain sensitive information from host stack memory … NVD-CWE-noinfo
CVE-2016-4020 2024-11-21 11:51 2016-05-26 Show GitHub Exploit DB Packet Storm
275084 8.1 HIGH
Network
huawei s12700_firmware
s5700_firmware
Huawei S12700 switches with software before V200R008C00SPC500 and S5700 switches with software before V200R005SPH010, when the debug switch is enabled, allows remote attackers to cause a denial of se… CWE-20
 Improper Input Validation 
CVE-2016-4087 2024-11-21 11:51 2016-05-24 Show GitHub Exploit DB Packet Storm
275085 7.5 HIGH
Network
quagga
opensuse
quagga
leap
opensuse
The bgp_dump_routes_func function in bgpd/bgp_dump.c in Quagga does not perform size checks when dumping data, which might allow remote attackers to cause a denial of service (assertion failure and d… CWE-20
 Improper Input Validation 
CVE-2016-4049 2024-11-21 11:51 2016-05-24 Show GitHub Exploit DB Packet Storm
275086 6.0 MEDIUM
Local
fedoraproject
canonical
qemu
debian
fedora
ubuntu_linux
qemu
debian_linux
The ehci_advance_state function in hw/usb/hcd-ehci.c in QEMU allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) via a circular split isochronous tra… CWE-400
 Uncontrolled Resource Consumption
CVE-2016-4037 2024-11-21 11:51 2016-05-24 Show GitHub Exploit DB Packet Storm
275087 8.6 HIGH
Network
qemu
canonical
fedoraproject
debian
qemu
ubuntu_linux
fedora
debian_linux
Buffer overflow in the stellaris_enet_receive function in hw/net/stellaris_enet.c in QEMU, when the Stellaris ethernet controller is configured to accept large packets, allows remote attackers to cau… CWE-120
Classic Buffer Overflow
CVE-2016-4001 2024-11-21 11:51 2016-05-24 Show GitHub Exploit DB Packet Storm
275088 7.5 HIGH
Network
opensuse
golang
fedoraproject
leap
go
fedora
The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and 1.6.x before 1.6.1 does not properly check parameters passed to the big integer library, which might allow remote attackers to cause a … CWE-20
 Improper Input Validation 
CVE-2016-3959 2024-11-21 11:51 2016-05-24 Show GitHub Exploit DB Packet Storm
275089 7.8 HIGH
Local
golang go Untrusted search path vulnerability in Go before 1.5.4 and 1.6.x before 1.6.1 on Windows allows local users to gain privileges via a Trojan horse DLL in the current working directory, related to use … CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-3958 2024-11-21 11:51 2016-05-24 Show GitHub Exploit DB Packet Storm
275090 9.8 CRITICAL
Network
php
opensuse
php
leap
opensuse
Integer overflow in the str_pad function in ext/standard/string.c in PHP before 7.0.4 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a long string,… CWE-190
 Integer Overflow or Wraparound
CVE-2016-4346 2024-11-21 11:51 2016-05-22 Show GitHub Exploit DB Packet Storm