Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257501 6.4 警告 マイクロソフト - 複数の Microsoft 製品の Kerberos 実装における権限昇格の脆弱性 CWE-287
不適切な認証 		CVE-2011-0091 2011-03-7 15:08 2011-02-8 Show GitHub Exploit DB Packet Storm
257502 7.2 危険 マイクロソフト - 複数の Microsoft 製品の Kerberos 実装における権限昇格の脆弱性 CWE-310
暗号の問題 		CVE-2011-0043 2011-03-7 15:05 2011-02-8 Show GitHub Exploit DB Packet Storm
257503 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0090 2011-03-7 15:03 2011-02-8 Show GitHub Exploit DB Packet Storm
257504 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0089 2011-03-7 15:00 2011-02-8 Show GitHub Exploit DB Packet Storm
257505 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0088 2011-03-7 14:57 2011-02-8 Show GitHub Exploit DB Packet Storm
257506 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0087 2011-03-7 14:54 2011-02-8 Show GitHub Exploit DB Packet Storm
257507 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0086 2011-03-7 14:52 2011-02-8 Show GitHub Exploit DB Packet Storm
257508 7.2 危険 マイクロソフト - Microsoft Windows XP の Trace Events 機能における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2011-0045 2011-03-7 14:49 2011-02-8 Show GitHub Exploit DB Packet Storm
257509 7.2 危険 マイクロソフト - 複数の Microsoft 製品の Local Security Authority Subsystem Service における権限昇格の脆弱性 CWE-287
不適切な認証 		CVE-2011-0039 2011-03-7 14:47 2011-02-8 Show GitHub Exploit DB Packet Storm
257510 6.8 警告 OTRS プロジェクト - OTRS における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2011-0456 2011-03-7 12:02 2011-03-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250091 7.4 HIGH
Network 		ecos system_management_appliance Authentication Bypass by Spoofing vulnerability in ECOS System Management Appliance (aka SMA) 5.2.68 allows a man-in-the-middle attacker to compromise authentication keys and configurations via IP sp… CWE-290
 Authentication Bypass by Spoofing 		CVE-2018-12331 2024-11-21 12:45 2018-06-18 Show GitHub Exploit DB Packet Storm
250092 8.1 HIGH
Network 		ecos secure_boot_stick_firmware Protection Mechanism Failure in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to compromise authentication and encryption keys via compromised firmware. NVD-CWE-noinfo
CVE-2018-12330 2024-11-21 12:45 2018-06-18 Show GitHub Exploit DB Packet Storm
250093 5.9 MEDIUM
Network 		ecos secure_boot_stick_firmware Protection Mechanism Failure in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows a local attacker to duplicate an authentication factor via cloning. CWE-200
Information Exposure 		CVE-2018-12329 2024-11-21 12:45 2018-06-18 Show GitHub Exploit DB Packet Storm
250094 7.5 HIGH
Network 		1000guess 1000_guess The _addguess function of a simplelottery smart contract implementation for 1000 Guess, an Ethereum gambling game, generates a random value with publicly readable variables such as the current block … CWE-338
 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) 		CVE-2018-12454 2024-11-21 12:45 2018-06-17 Show GitHub Exploit DB Packet Storm
250095 7.5 HIGH
Network 		redislabs redis Type confusion in the xgroupCommand function in t_stream.c in redis-server in Redis before 5.0 allows remote attackers to cause denial-of-service via an XGROUP command in which the key is not a strea… CWE-704
 Incorrect Type Conversion or Cast 		CVE-2018-12453 2024-11-21 12:45 2018-06-17 Show GitHub Exploit DB Packet Storm
250096 7.5 HIGH
Network 		tinyexr_project tinyexr tinyexr 0.9.5 has an assertion failure in ComputeChannelLayout in tinyexr.h. CWE-617
 Reachable Assertion 		CVE-2018-12504 2024-11-21 12:45 2018-06-17 Show GitHub Exploit DB Packet Storm
250097 9.8 CRITICAL
Network 		tinyexr_project tinyexr tinyexr 0.9.5 has a heap-based buffer over-read in LoadEXRImageFromMemory in tinyexr.h. CWE-125
Out-of-bounds Read 		CVE-2018-12503 2024-11-21 12:45 2018-06-17 Show GitHub Exploit DB Packet Storm
250098 6.1 MEDIUM
Network 		nagios fusion Nagios Fusion before 4.1.4 has XSS, aka TPS#13332-13335. CWE-79
Cross-site Scripting 		CVE-2018-12501 2024-11-21 12:45 2018-06-16 Show GitHub Exploit DB Packet Storm
250099 9.8 CRITICAL
Network 		icmsdev icms spider.admincp.php in iCMS v7.0.8 has SQL Injection via the id parameter in an app=spider&do=batch request to admincp.php. CWE-89
SQL Injection 		CVE-2018-12498 2024-11-21 12:45 2018-06-16 Show GitHub Exploit DB Packet Storm
250100 5.5 MEDIUM
Local 		discount_project
debian 		discount
debian_linux 		The quoteblock function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file. CWE-125
Out-of-bounds Read 		CVE-2018-12495 2024-11-21 12:45 2018-06-16 Show GitHub Exploit DB Packet Storm