Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 13, 2026, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257271 | 10 | 危険 | Ecava | - | Ecava IntegraXor にバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-4597 | 2011-01-20 13:33 | 2010-12-20 | Show | GitHub Exploit DB Packet Storm |
| 257272 | 9.3 | 危険 | アドビシステムズ | - | Adobe PhotoShop における任意のコードを実行される脆弱性 |
CWE-Other
その他 |
CVE-2010-3127 | 2011-01-20 13:29 | 2010-08-26 | Show | GitHub Exploit DB Packet Storm |
| 257273 | 6.1 | 警告 | アップル | - | 複数の Apple 製品上で稼働する ICMPv6 実装におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-2189 | 2011-01-20 11:14 | 2010-12-22 | Show | GitHub Exploit DB Packet Storm |
| 257274 | 7.1 | 危険 | アップル | - | 複数の Apple 製品上で稼働するネットワークブリッジ機能におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-1804 | 2011-01-19 16:36 | 2010-12-22 | Show | GitHub Exploit DB Packet Storm |
| 257275 | 2.6 | 注意 | アップル | - | 複数の Apple 製品上で稼働する Application-Level Gateway におけるデバイスの IP アドレスを使用される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0039 | 2011-01-19 16:34 | 2010-12-22 | Show | GitHub Exploit DB Packet Storm |
| 257276 | - | - | Invensys | - | Wonderware InBatch と I/A Series Batch の database lock manager service (lm_tcp) にバッファオーバーフローの脆弱性 | - | - | 2011-01-19 15:54 | 2010-12-16 | Show | GitHub Exploit DB Packet Storm |
| 257277 | 6.9 | 警告 | Exim Development レッドハット |
- | Exim における権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-4345 | 2011-01-19 15:41 | 2010-12-14 | Show | GitHub Exploit DB Packet Storm |
| 257278 | 4 | 警告 | マイクロソフト | - | x64 プラットフォーム上で稼働している Microsoft Exchange Server 2007 におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-3937 | 2011-01-19 15:31 | 2010-12-14 | Show | GitHub Exploit DB Packet Storm |
| 257279 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office XP および Office Converter Pack における任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3952 | 2011-01-19 15:28 | 2010-12-14 | Show | GitHub Exploit DB Packet Storm |
| 257280 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office XP および Office Converter Pack におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3951 | 2011-01-18 14:26 | 2010-12-14 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 13, 2026, 4:20 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 247981 | 5.3 |
MEDIUM
Network |
phoenixcontact |
fl_switch_3005_firmware fl_switch_3005t_firmware fl_switch_3004t-fx_firmware fl_switch_3004t-fx_st_firmware fl_switch_3008_firmware fl_switch_3008t_firmware fl_switch_3006t-2fx_firm… |
The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 leaks private information in firmware images. |
CWE-200
Information Exposure |
CVE-2018-13991 | 2024-11-21 12:48 | 2019-05-8 | Show | GitHub Exploit DB Packet Storm |
| 247982 | 6.1 |
MEDIUM
Network |
impresscms | impresscms | ImpressCMS 1.3.10 has XSS via the PATH_INFO to htdocs/install/index.php, htdocs/install/page_langselect.php, or htdocs/install/page_modcheck.php. |
CWE-79
Cross-site Scripting |
CVE-2018-13983 | 2024-11-21 12:48 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 247983 | 9.8 |
CRITICAL
Network |
phoenixcontact |
fl_switch_3005_firmware fl_switch_3005t_firmware fl_switch_3004t-fx_firmware fl_switch_3004t-fx_st_firmware fl_switch_3008_firmware fl_switch_3008t_firmware fl_switch_3006t-2fx_firm… |
The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions prior to 1.35 is vulnerable to brute-force attacks, because of Improper Restriction of Excessive Authentication Attempts. |
CWE-287
Improper Authentication |
CVE-2018-13990 | 2024-11-21 12:48 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 247984 | 6.5 |
MEDIUM
Network |
siemens |
cp_1604_firmware cp_1616_firmware |
A vulnerability has been identified in CP 1604 (All versions), CP 1616 (All versions). The integrated configuration web server of the affected CP devices could allow a Cross-Site Request Forgery (CSR… |
CWE-352
Origin Validation Error |
CVE-2018-13810 | 2024-11-21 12:48 | 2019-04-17 | Show | GitHub Exploit DB Packet Storm |
| 247985 | 6.1 |
MEDIUM
Network |
siemens |
cp_1604_firmware cp_1616_firmware |
A vulnerability has been identified in CP 1604 (All versions), CP 1616 (All versions). The integrated web server of the affected CP devices could allow Cross-Site Scripting (XSS) attacks if unsuspect… |
CWE-79
Cross-site Scripting |
CVE-2018-13809 | 2024-11-21 12:48 | 2019-04-17 | Show | GitHub Exploit DB Packet Storm |
| 247986 | 9.1 |
CRITICAL
Network |
siemens |
cp_1604_firmware cp_1616_firmware |
A vulnerability has been identified in CP 1604 (All versions), CP 1616 (All versions). An attacker with network access to port 23/tcp could extract internal communication data or cause a Denial-of-Se… |
CWE-200
Information Exposure |
CVE-2018-13808 | 2024-11-21 12:48 | 2019-04-17 | Show | GitHub Exploit DB Packet Storm |
| 247987 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware qcs605_firmware qm215_firmware sd_425_firmware sd_439_firmware sd_429_firmware sd_4… |
kernel could return a received message length higher than expected, which leads to buffer overflow in a subsequent operation and stops normal operation in Snapdragon Auto, Snapdragon Consumer IOT, Sn… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-13918 | 2024-11-21 12:48 | 2019-04-5 | Show | GitHub Exploit DB Packet Storm |
| 247988 | 7.5 |
HIGH
Network |
siemens |
sicam_a8000_cp-8000_firmware sicam_a8000_cp-802x_firmware sicam_a8000_cp-8050_firmware |
A vulnerability has been identified in SICAM A8000 CP-8000 (All versions < V14), SICAM A8000 CP-802X (All versions < V14), SICAM A8000 CP-8050 (All versions < V2.00). Specially crafted network packet… |
CWE-20
Improper Input Validation |
CVE-2018-13798 | 2024-11-21 12:48 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 247989 | 7.8 |
HIGH
Local |
qualcomm |
snapdragon_auto_firmware snapdragon_consumer_internet_of_things_firmware snapdragon_industrial_internet_of_things_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650… |
Lack of input validation for data received from user space can lead to an out of bound array issue in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdrago… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-13914 | 2024-11-21 12:48 | 2019-02-26 | Show | GitHub Exploit DB Packet Storm |
| 247990 | 7.8 |
HIGH
Local |
qualcomm |
snapdragon_auto_firmware snapdragon_consumer_internet_of_things_firmware snapdragon_industrial_internet_of_things_firmware snapdragon_internet_of_things_firmware snapdragon_mobile_firmwar… |
Improper validation of array index can lead to unauthorized access while processing debugFS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, … |
CWE-129
Improper Validation of Array Index |
CVE-2018-13913 | 2024-11-21 12:48 | 2019-02-26 | Show | GitHub Exploit DB Packet Storm |