Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 22, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 256571 | 5 | 警告 | VMware | - | VMware Studio の Web インターフェースにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2009-2968 | 2010-03-24 12:22 | 2009-08-31 | Show | GitHub Exploit DB Packet Storm |
| 256572 | 4 | 警告 | VMware | - | 複数の VMware 製品の Descheduled Time Accounting ドライバにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-1805 | 2010-03-24 12:22 | 2009-05-28 | Show | GitHub Exploit DB Packet Storm |
| 256573 | 6.8 | 警告 | VMware | - | 複数の VMware 製品の仮想マシン表示機能における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-1244 | 2010-03-24 12:21 | 2009-04-10 | Show | GitHub Exploit DB Packet Storm |
| 256574 | 7.2 | 危険 | VMware | - | 複数の VMware 製品の仮想マシン通信インターフェイスにおける権限昇格の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-1147 | 2010-03-24 12:21 | 2009-04-3 | Show | GitHub Exploit DB Packet Storm |
| 256575 | 4.9 | 警告 | VMware | - | 複数の VMware 製品の ioctl におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-1146 | 2010-03-23 14:11 | 2010-04-3 | Show | GitHub Exploit DB Packet Storm |
| 256576 | 6.8 | 警告 | VMware | - | 複数の VMware 製品の VNnc コーデックにおけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-0910 | 2010-03-23 14:11 | 2010-04-3 | Show | GitHub Exploit DB Packet Storm |
| 256577 | 9.3 | 危険 | VMware | - | 複数の VMware 製品の VNnc コーデックにおけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-0909 | 2010-03-23 14:10 | 2010-04-3 | Show | GitHub Exploit DB Packet Storm |
| 256578 | 6.4 | 警告 | VMware | - | VMware ACE の ACE 共有フォルダ実装における無効にされた共有フォルダを有効にされる脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-0908 | 2010-03-23 14:10 | 2010-04-3 | Show | GitHub Exploit DB Packet Storm |
| 256579 | 2.1 | 注意 | VMware | - | 複数の VMware 製品の VI Client におけるパスワードを取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2009-0518 | 2010-03-23 14:10 | 2010-04-3 | Show | GitHub Exploit DB Packet Storm |
| 256580 | 4.4 | 警告 | KVM レッドハット |
- | KVM の x86 エミュレータにおける権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0419 | 2010-03-23 14:09 | 2010-03-1 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 23, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 256381 | 7.8 |
HIGH
Local |
spice-space debian |
spice-vdagent debian_linux |
spice-vdagent up to and including 0.17.0 does not properly escape save directory before passing to shell, allowing local attacker with access to the session the agent runs in to inject arbitrary comm… | - | CVE-2017-15108 | 2024-11-21 12:14 | 2018-01-20 | Show | GitHub Exploit DB Packet Storm |
| 256382 | 5.5 |
MEDIUM
Local |
linux redhat |
linux_kernel enterprise_linux enterprise_mrg |
A flaw was found in the hugetlb_mcopy_atomic_pte function in mm/hugetlb.c in the Linux kernel before 4.13.12. A lack of size check could cause a denial of service (BUG). |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-15128 | 2024-11-21 12:14 | 2018-01-14 | Show | GitHub Exploit DB Packet Storm |
| 256383 | 5.5 |
MEDIUM
Local |
linux redhat |
linux_kernel enterprise_linux enterprise_mrg |
A flaw was found in the hugetlb_mcopy_atomic_pte function in mm/hugetlb.c in the Linux kernel before 4.13. A superfluous implicit page unlock for VM_SHARED hugetlbfs mapping could trigger a local den… | - | CVE-2017-15127 | 2024-11-21 12:14 | 2018-01-14 | Show | GitHub Exploit DB Packet Storm |
| 256384 | 8.1 |
HIGH
Network |
linux | linux_kernel | A use-after-free flaw was found in fs/userfaultfd.c in the Linux kernel before 4.13.6. The issue is related to the handling of fork failure when dealing with event messages. Failure to fork correctly… | - | CVE-2017-15126 | 2024-11-21 12:14 | 2018-01-14 | Show | GitHub Exploit DB Packet Storm |
| 256385 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the pptphellointerval variable in the pptp_server.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15637 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |
| 256386 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-time variable in the webfilter.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15636 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |
| 256387 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the max_conn variable in the session_limits.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15635 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |
| 256388 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the name variable in the wportal.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15634 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |
| 256389 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-ipgroup variable in the session_limits.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15633 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |
| 256390 | 7.2 |
HIGH
Network |
tp-link |
er5110g_firmware er5120g_firmware er5510g_firmware er5520g_firmware r4149g_firmware r4239g_firmware r4299g_firmware r473gp-ac_firmware r473g_firmware r473p-ac_firmware r… |
TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-mppeencryption variable in the pptp_server.lua file. |
NVD-CWE-noinfo
|
CVE-2017-15632 | 2024-11-21 12:14 | 2018-01-12 | Show | GitHub Exploit DB Packet Storm |