Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
256481 4.3 警告 アップル - Apple Mac OS X の CFNetwork における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3447 2012-02-6 16:27 2012-02-2 Show GitHub Exploit DB Packet Storm
256482 7.5 危険 アップル - Apple Mac OS X の Apple Type Services における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2011-3446 2012-02-6 16:26 2012-02-2 Show GitHub Exploit DB Packet Storm
256483 4.3 警告 アップル - Apple Mac OS X の Address Book における CardDAV データを読まれる脆弱性 CWE-310
暗号の問題
CVE-2011-3444 2012-02-6 16:25 2012-02-2 Show GitHub Exploit DB Packet Storm
256484 9.3 危険 Invensys - Invensys Wonderware InBatch の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-3141 2012-02-3 16:59 2011-08-16 Show GitHub Exploit DB Packet Storm
256485 9.3 危険 Invensys - Invensys Wonderware Information Server におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-2962 2012-02-3 16:58 2011-07-29 Show GitHub Exploit DB Packet Storm
256486 9.3 危険 Schneider Electric - InduSoft Web Studio の CEServer.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-4052 2012-02-3 16:58 2011-12-5 Show GitHub Exploit DB Packet Storm
256487 10 危険 Schneider Electric - InduSoft Web Studio の CEServer.exe における任意のコードを実行される脆弱性 CWE-287
不適切な認証
CVE-2011-4051 2012-02-3 16:57 2011-12-5 Show GitHub Exploit DB Packet Storm
256488 4.3 警告 General Electric Company - GE Intelligent Platforms Proficy Historian におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-3320 2012-02-3 16:56 2011-11-2 Show GitHub Exploit DB Packet Storm
256489 10 危険 General Electric Company - GE Intelligent Platforms Proficy Applications におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-1919 2012-02-3 16:55 2011-11-2 Show GitHub Exploit DB Packet Storm
256490 10 危険 General Electric Company - GE Intelligent Platforms Proficy Historian におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-1918 2012-02-3 16:54 2011-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
245561 6.6 MEDIUM
Network
sap hana_extended_application_services XS Command-Line Interface (CLI) user sessions with the SAP HANA Extended Application Services (XS), version 1, advanced server may have an unintentional prolonged period of validity. Consequently, a … CWE-613
 Insufficient Session Expiration
CVE-2018-2451 2024-11-21 13:03 2018-08-15 Show GitHub Exploit DB Packet Storm
245562 5.3 MEDIUM
Network
sap supplier_relationship_management_mdm_catalog Under certain conditions SAP SRM-MDM (CATALOG versions 3.0, 7.01, 7.02) utilities functionality allows an attacker to access information of user existence which would otherwise be restricted. NVD-CWE-noinfo
CVE-2018-2448 2024-11-21 13:03 2018-08-15 Show GitHub Exploit DB Packet Storm
245563 6.5 MEDIUM
Network
sap businessobjects_business_intelligence SAP BusinessObjects Business Intelligence (Launchpad Web Intelligence), version 4.2, allows an attacker to execute crafted InfoObject queries, exposing the CMS InfoObjects database. CWE-89
SQL Injection
CVE-2018-2447 2024-11-21 13:03 2018-08-15 Show GitHub Exploit DB Packet Storm
245564 7.5 HIGH
Network
sap businessobjects_business_intelligence Admin tools in SAP BusinessObjects Business Intelligence, versions 4.1, 4.2, allow an unauthenticated user to read sensitive information (server name), hence leading to an information disclosure. NVD-CWE-noinfo
CVE-2018-2446 2024-11-21 13:03 2018-08-15 Show GitHub Exploit DB Packet Storm
245565 9.6 CRITICAL
Network
sap businessobjects_business_intelligence AdminTools in SAP BusinessObjects Business Intelligence, versions 4.1, 4.2, allows an attacker to manipulate the vulnerable application to send crafted requests on behalf of the application, resultin… CWE-918
Server-Side Request Forgery (SSRF) 
CVE-2018-2445 2024-11-21 13:03 2018-08-15 Show GitHub Exploit DB Packet Storm
245566 6.1 MEDIUM
Network
sap businessobjects_financial_consolidation SAP BusinessObjects Financial Consolidation, versions 10.0, 10.1, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. CWE-79
Cross-site Scripting
CVE-2018-2444 2024-11-21 13:03 2018-08-15 Show GitHub Exploit DB Packet Storm
245567 8.8 HIGH
Network
sap businessobjects_business_intelligence
internet_graphics_server
In SAP BusinessObjects Business Intelligence, versions 4.0, 4.1 and 4.2, while viewing a Web Intelligence report from BI Launchpad, the user session details captured by an HTTP analysis tool could be… CWE-352
 Origin Validation Error
CVE-2018-2442 2024-11-21 13:03 2018-08-15 Show GitHub Exploit DB Packet Storm
245568 5.5 MEDIUM
Network
sap sap_kernel Under certain conditions the SAP Change and Transport System (ABAP), SAP KERNEL 32 NUC, SAP KERNEL 32 Unicode, SAP KERNEL 64 NUC, SAP KERNEL 64 Unicode 7.21, 7.21EXT, 7.22 and 7.22EXT; SAP KERNEL 7.2… NVD-CWE-noinfo
CVE-2018-2441 2024-11-21 13:03 2018-08-15 Show GitHub Exploit DB Packet Storm
245569 4.4 MEDIUM
Local
sap dynamic_authorization_management Under certain circumstances SAP Dynamic Authorization Management (DAM) by NextLabs (Java Policy Controller versions 7.7 and 8.5) exposes sensitive information in the application logs. CWE-532
 Inclusion of Sensitive Information in Log Files
CVE-2018-2440 2024-11-21 13:03 2018-07-11 Show GitHub Exploit DB Packet Storm
245570 7.5 HIGH
Network
sap internet_graphics_server The SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, has several denial-of-service vulnerabilities that allow an attacker to prevent legitimate users from accessing a service, eit… NVD-CWE-noinfo
CVE-2018-2438 2024-11-21 13:03 2018-07-11 Show GitHub Exploit DB Packet Storm