Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256561	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0675	2011-05-6 11:27	2011-04-12	Show	GitHub Exploit DB Packet Storm

256562	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0674	2011-05-6 11:27	2011-04-12	Show	GitHub Exploit DB Packet Storm

256563	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0672	2011-05-6 11:26	2011-04-12	Show	GitHub Exploit DB Packet Storm

256564	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0671	2011-05-6 11:25	2011-04-12	Show	GitHub Exploit DB Packet Storm

256565	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0670	2011-05-6 11:11	2011-04-12	Show	GitHub Exploit DB Packet Storm

256566	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0667	2011-05-6 11:10	2011-04-12	Show	GitHub Exploit DB Packet Storm

256567	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0666	2011-05-6 11:09	2011-04-12	Show	GitHub Exploit DB Packet Storm

256568	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0665	2011-05-6 11:07	2011-04-12	Show	GitHub Exploit DB Packet Storm

256569	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0662	2011-05-6 11:06	2011-04-12	Show	GitHub Exploit DB Packet Storm

256570	9.3	危険	マイクロソフト	-	Microsoft Windows のワードパッドにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0028	2011-05-6 11:03	2011-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246141	7.8	HIGH Local	redhat debian suse	ansible_engine ansible_tower debian_linux package_hub	Ansible "User" module leaks any data which is passed on as a parameter to ssh-keygen. This could lean in undesirable situations such as passphrases credentials passed as a parameter for the ssh-keyge…	CWE-311 Missing Encryption of Sensitive Data	CVE-2018-16837	2024-11-21 12:53	2018-10-24	Show	GitHub Exploit DB Packet Storm

246142	5.9	MEDIUM Network	tinc-vpn debian starwindsoftware	tinc debian_linux starwind_virtual_san	Missing message authentication in the meta-protocol in Tinc VPN version 1.0.34 and earlier allows a man-in-the-middle attack to disable the encryption of VPN packets.	CWE-306 Missing Authentication for Critical Function	CVE-2018-16758	2024-11-21 12:53	2018-10-11	Show	GitHub Exploit DB Packet Storm

246143	3.7	LOW Network	tinc-vpn debian starwindsoftware	tinc debian_linux starwind_virtual_san	tinc 1.0.30 through 1.0.34 has a broken authentication protocol, although there is a partial mitigation. This is fixed in 1.1.	CWE-287 Improper Authentication	CVE-2018-16738	2024-11-21 12:53	2018-10-11	Show	GitHub Exploit DB Packet Storm

246144	5.3	MEDIUM Network	tinc-vpn starwindsoftware	tinc starwind_virtual_san	tinc before 1.0.30 has a broken authentication protocol, without even a partial mitigation.	CWE-287 Improper Authentication	CVE-2018-16737	2024-11-21 12:53	2018-10-11	Show	GitHub Exploit DB Packet Storm

246145	5.3	MEDIUM Network	progress	telerik_extensions_for_asp.net_mvc	Telerik Extensions for ASP.NET MVC (all versions) does not whitelist requests, which can allow a remote attacker to access files inside the server's web directory. NOTE: this product has been obsole…	NVD-CWE-noinfo	CVE-2018-17060	2024-11-21 12:53	2018-10-9	Show	GitHub Exploit DB Packet Storm

246146	6.1	MEDIUM Network	progress	sitefinity_cms	Cross-site scripting (XSS) vulnerability in Identity Server in Progress Sitefinity CMS versions 10.0 through 11.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to…	CWE-79 Cross-site Scripting	CVE-2018-17054	2024-11-21 12:53	2018-10-4	Show	GitHub Exploit DB Packet Storm

246147	6.1	MEDIUM Network	progress	sitefinity_cms	Cross-site scripting (XSS) vulnerability in Identity Server in Progress Sitefinity CMS versions 10.0 through 11.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to…	CWE-79 Cross-site Scripting	CVE-2018-17053	2024-11-21 12:53	2018-10-4	Show	GitHub Exploit DB Packet Storm

246148	4.9	MEDIUM Network	djangoproject	django	An issue was discovered in Django 2.1 before 2.1.2, in which unprivileged users can read the password hashes of arbitrary accounts. The read-only password widget used by the Django Admin to display a…	CWE-522 Insufficiently Protected Credentials	CVE-2018-16984	2024-11-21 12:53	2018-10-3	Show	GitHub Exploit DB Packet Storm

246149	5.5	MEDIUM Local	freebsd	freebsd	In FreeBSD before 11.2-STABLE(r338983), 11.2-RELEASE-p4, 11.1-RELEASE-p15, 10.4-STABLE(r338984), and 10.4-RELEASE-p13, due to insufficient initialization of memory copied to userland in the getcontex…	CWE-200 Information Exposure	CVE-2018-17155	2024-11-21 12:53	2018-09-28	Show	GitHub Exploit DB Packet Storm

246150	5.5	MEDIUM Local	freebsd	freebsd	In FreeBSD before 11.2-STABLE(r338987), 11.2-RELEASE-p4, and 11.1-RELEASE-p15, due to insufficient memory checking in the freebsd4_getfsstat system call, a NULL pointer dereference can occur. Unprivi…	CWE-476 NULL Pointer Dereference	CVE-2018-17154	2024-11-21 12:53	2018-09-28	Show	GitHub Exploit DB Packet Storm