Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257121 4.1 警告 Linux
レッドハット		 - Linux kernel の smbfs に関する脆弱性 - CVE-2006-5871 2010-03-15 16:40 2005-10-5 Show GitHub Exploit DB Packet Storm
257122 7.8 危険 Linux
レッドハット		 - Linux kernel の selinux_parse_skb_ipv6 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2005-4886 2010-03-15 16:40 2005-10-5 Show GitHub Exploit DB Packet Storm
257123 5 警告 サン・マイクロシステムズ - Sun ONE/iPlanet Web Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2003-1589 2010-03-15 16:39 2003-12-2 Show GitHub Exploit DB Packet Storm
257124 5 警告 サン・マイクロシステムズ - Sun ONE/iPlanet Web Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2003-1590 2010-03-15 16:39 2003-08-13 Show GitHub Exploit DB Packet Storm
257125 7.1 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の handle_dr 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3722 2010-03-15 15:23 2009-10-30 Show GitHub Exploit DB Packet Storm
257126 4.3 警告 シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン) - APC Switched Rack PDU におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4406 2010-03-12 15:13 2009-12-23 Show GitHub Exploit DB Packet Storm
257127 4.3 警告 シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン) - APC Network Management Card におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1798 2010-03-12 15:13 2009-12-28 Show GitHub Exploit DB Packet Storm
257128 6.8 警告 シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン) - APC Network Management Card におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-1797 2010-03-12 15:12 2009-12-28 Show GitHub Exploit DB Packet Storm
257129 6.6 警告 日立 - JP1/Cm2/Network Node Manager のリモートコンソールにおけるファイルパーミッションの脆弱性 CWE-264
認可・権限・アクセス制御 		- 2010-03-12 15:12 2010-02-26 Show GitHub Exploit DB Packet Storm
257130 9.3 危険 Panda Security - Panda Security ActiveScan におけるコンポーネントのデジタル署名を検証しない問題 CWE-94
コード・インジェクション 		CVE-2009-3735 2010-03-12 15:12 2010-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247091 6.8 MEDIUM
Network 		nic knot_resolver Improper input validation bug in DNS resolver component of Knot Resolver before 2.4.1 allows remote attacker to poison cache. CWE-20
 Improper Input Validation  		CVE-2018-10920 2024-11-21 12:42 2018-08-2 Show GitHub Exploit DB Packet Storm
247092 7.1 HIGH
Local 		canonical cloud-init The default cloud-init configuration, in cloud-init 0.6.2 and newer, included "ssh_deletekeys: 0", disabling cloud-init's deletion of ssh host keys. In some environments, this could lead to instances… - CVE-2018-10896 2024-11-21 12:42 2018-08-2 Show GitHub Exploit DB Packet Storm
247093 5.4 MEDIUM
Network 		redhat keycloak
single_sign-on 		It was found that SAML authentication in Keycloak 3.4.3.Final incorrectly authenticated expired certificates. A malicious user could use this to access unauthorized data or possibly conduct further a… CWE-295
Improper Certificate Validation  		CVE-2018-10894 2024-11-21 12:42 2018-08-2 Show GitHub Exploit DB Packet Storm
247094 8.1 HIGH
Network 		rpm
redhat 		yum-utils
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
virtualization 		A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may… - CVE-2018-10897 2024-11-21 12:42 2018-08-2 Show GitHub Exploit DB Packet Storm
247095 6.5 MEDIUM
Network 		lftp_project
canonical
opensuse 		lftp
ubuntu_linux
leap 		It has been discovered that lftp up to and including version 4.8.3 does not properly sanitize remote file names, leading to a loss of integrity on the local system when reverse mirroring is used. A r… CWE-20
 Improper Input Validation  		CVE-2018-10916 2024-11-21 12:42 2018-08-1 Show GitHub Exploit DB Packet Storm
247096 8.8 HIGH
Adjacent 		dell emc_networker Dell EMC NetWorker versions between 9.0 and 9.1.1.8 through 9.2.1.3, and the version 18.1.0.1 contain a Clear-Text authentication over network vulnerability in the Rabbit MQ Advanced Message Queuing … CWE-319
CWE-522
Cleartext Transmission of Sensitive Information
 Insufficiently Protected Credentials 		CVE-2018-11050 2024-11-21 12:42 2018-08-1 Show GitHub Exploit DB Packet Storm
247097 8.8 HIGH
Adjacent 		redhat
openstack 		openstack
tripleo_heat_templates 		A vulnerability was found in openstack-tripleo-heat-templates before version 8.0.2-40. When deployed using Director using default configuration, Opendaylight in RHOSP13 is configured with easily gues… CWE-798
 Use of Hard-coded Credentials 		CVE-2018-10898 2024-11-21 12:42 2018-07-31 Show GitHub Exploit DB Packet Storm
247098 8.8 HIGH
Network 		prosody prosody prosody before versions 0.10.2, 0.9.14 is vulnerable to an Authentication Bypass. Prosody did not verify that the virtual host associated with a user session remained the same across stream restarts.… CWE-287
Improper Authentication 		CVE-2018-10847 2024-11-21 12:42 2018-07-31 Show GitHub Exploit DB Packet Storm
247099 7.5 HIGH
Network 		cryptography
canonical
redhat 		python-cryptography
ubuntu_linux
openstack 		A flaw was found in python-cryptography versions between >=1.9.0 and <2.3. The finalize_with_tag API did not enforce a minimum tag length. If a user did not validate the input length prior to passing… CWE-20
 Improper Input Validation  		CVE-2018-10903 2024-11-21 12:42 2018-07-31 Show GitHub Exploit DB Packet Storm
247100 5.5 MEDIUM
Local 		debian
linux
canonical
redhat 		debian_linux
linux_kernel
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server 		A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write in jbd2_journal_dirty_metadata(), a denial of service, and a system crash by mounting and operati… - CVE-2018-10883 2024-11-21 12:42 2018-07-31 Show GitHub Exploit DB Packet Storm