Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 30, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257391 | 5.8 | 警告 | アップル サイバートラスト株式会社 Python Software Foundation サン・マイクロシステムズ レッドハット |
- | Python の imageop モジュールにおける複数の整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2007-4965 | 2010-01-19 15:47 | 2007-09-18 | Show | GitHub Exploit DB Packet Storm |
| 257392 | 7.5 | 危険 | アップル | - | Mac OS X 用の Java における任意のコードを実行される脆弱性 |
CWE-310
暗号の問題 |
CVE-2009-2843 | 2010-01-18 12:22 | 2009-12-3 | Show | GitHub Exploit DB Packet Storm |
| 257393 | 6.8 | 警告 | アップル GNU Project サン・マイクロシステムズ サイバートラスト株式会社 レッドハット |
- | GNU tar の contains_dot_dot() 関数におけるディレクトリトラバーサルの脆弱性 | - | CVE-2007-4131 | 2010-01-18 12:21 | 2007-08-23 | Show | GitHub Exploit DB Packet Storm |
| 257394 | 4.6 | 警告 | IBM | - | IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-4150 | 2010-01-15 14:10 | 2009-12-2 | Show | GitHub Exploit DB Packet Storm |
| 257395 | 2.1 | 注意 | サン・マイクロシステムズ | - | Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2009-4080 | 2010-01-15 14:10 | 2009-11-24 | Show | GitHub Exploit DB Packet Storm |
| 257396 | 5 | 警告 | サン・マイクロシステムズ | - | Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-4075 | 2010-01-15 14:09 | 2009-11-23 | Show | GitHub Exploit DB Packet Storm |
| 257397 | 2.6 | 注意 | オラクル | - | Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
- | 2010-01-14 15:01 | 2010-01-14 | Show | GitHub Exploit DB Packet Storm |
| 257398 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer に脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3672 | 2010-01-14 12:08 | 2009-11-25 | Show | GitHub Exploit DB Packet Storm |
| 257399 | 9.3 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の java.lang パッケージにおける脆弱性 |
CWE-362
競合状態 |
CVE-2009-2724 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
| 257400 | 10 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の Provider クラスにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-2721 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 30, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 249441 | 6.6 |
MEDIUM
Physics |
infineon | s-gold_2_pmb_8876 | A Stack-Based Buffer Overflow issue was discovered in the Continental AG Infineon S-Gold 2 (PMB 8876) chipset on BMW several models produced between 2009-2010, Ford a limited number of P-HEV vehicles… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-9647 | 2024-11-21 12:36 | 2017-08-7 | Show | GitHub Exploit DB Packet Storm |
| 249442 | 8.8 |
HIGH
Adjacent |
infineon | s-gold_2_pmb_8876 | An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was discovered in the Continental AG Infineon S-Gold 2 (PMB 8876) chipset on BMW several models produced between 2009-… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-9633 | 2024-11-21 12:36 | 2017-08-7 | Show | GitHub Exploit DB Packet Storm |
| 249443 | 9.8 |
CRITICAL
Network |
pdqinc |
laserwash_g5_firmware laserwash_g5_s_firmware laserwash_m5_firmware laserwash_360_firmware laserwash_360_plus_firmware laserwash_autoxpress_firmware laserwash_autoxpress_plus_firmwa… |
A Missing Encryption of Sensitive Data issue was discovered in PDQ Manufacturing LaserWash G5 and G5 S Series all versions, LaserWash M5, all versions, LaserWash 360 and 360 Plus, all versions, Laser… |
CWE-311
Missing Encryption of Sensitive Data |
CVE-2017-9632 | 2024-11-21 12:36 | 2017-08-7 | Show | GitHub Exploit DB Packet Storm |
| 249444 | 9.4 |
CRITICAL
Network |
pdqinc |
laserwash_g5_firmware laserwash_g5_s_firmware laserwash_m5_firmware laserwash_360_firmware laserwash_360_plus_firmware laserwash_autoxpress_firmware laserwash_autoxpress_plus_firmwa… |
An Improper Authentication issue was discovered in PDQ Manufacturing LaserWash G5 and G5 S Series all versions, LaserWash M5, all versions, LaserWash 360 and 360 Plus, all versions, LaserWash AutoXpr… |
CWE-287
Improper Authentication |
CVE-2017-9630 | 2024-11-21 12:36 | 2017-08-7 | Show | GitHub Exploit DB Packet Storm |
| 249445 | 9.8 |
CRITICAL
Network |
sma |
sunny_boy_3600_firmware sunny_boy_5000_firmware sunny_tripower_core1_firmware sunny_tripower_15000tl_firmware sunny_tripower_20000tl_firmware sunny_tripower_25000tl_firmware sunny_t… |
An issue was discovered in SMA Solar Technology products. By sniffing for specific packets on the localhost, plaintext passwords can be obtained as they are typed into Sunny Explorer by the user. The… |
CWE-311
Missing Encryption of Sensitive Data |
CVE-2017-9854 | 2024-11-21 12:36 | 2017-08-6 | Show | GitHub Exploit DB Packet Storm |
| 249446 | 9.8 |
CRITICAL
Network |
sma |
sunny_boy_3600_firmware sunny_boy_5000_firmware sunny_tripower_core1_firmware sunny_tripower_15000tl_firmware sunny_tripower_20000tl_firmware sunny_tripower_25000tl_firmware sunny_t… |
An issue was discovered in SMA Solar Technology products. All inverters have a very weak password policy for the user and installer password. No complexity requirements or length requirements are set… |
CWE-521
Weak Password Requirements |
CVE-2017-9853 | 2024-11-21 12:36 | 2017-08-6 | Show | GitHub Exploit DB Packet Storm |
| 249447 | 9.8 |
CRITICAL
Network |
sma |
sunny_boy_3600_firmware sunny_boy_5000_firmware sunny_tripower_core1_firmware sunny_tripower_15000tl_firmware sunny_tripower_20000tl_firmware sunny_tripower_25000tl_firmware sunny_t… |
An Incorrect Password Management issue was discovered in SMA Solar Technology products. Default passwords exist that are rarely changed. User passwords will almost always be default. Installer passwo… |
CWE-798
Use of Hard-coded Credentials |
CVE-2017-9852 | 2024-11-21 12:36 | 2017-08-6 | Show | GitHub Exploit DB Packet Storm |
| 249448 | 7.5 |
HIGH
Network |
spectrum | tc8717t_firmware | The Time Warner firmware on Technicolor TC8717T devices sets the default Wi-Fi passphrase to a combination of the SSID and BSSID, which makes it easier for remote attackers to obtain network access b… |
NVD-CWE-noinfo
|
CVE-2017-9522 | 2024-11-21 12:36 | 2017-07-31 | Show | GitHub Exploit DB Packet Storm |
| 249449 | 5.5 |
MEDIUM
Local |
motorola comcast |
mx011anm_firmware xfinity_xr11-20_firmware |
The Comcast firmware on Motorola MX011ANM (firmware version MX011AN_2.9p6s1_PROD_sey) and Xfinity XR11-20 Voice Remote devices allows local users to upload arbitrary firmware images to an XR11 by lev… |
CWE-354
Improper Validation of Integrity Check Value |
CVE-2017-9498 | 2024-11-21 12:36 | 2017-07-31 | Show | GitHub Exploit DB Packet Storm |
| 249450 | 9.8 |
CRITICAL
Network |
cisco commscope |
dpc3939_firmware dpc3939b_firmware dpc3941t_firmware arris_tg1682g_firmware |
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST); Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST); Cisco DPC3939B (firmw… |
NVD-CWE-noinfo
|
CVE-2017-9521 | 2024-11-21 12:36 | 2017-07-31 | Show | GitHub Exploit DB Packet Storm |