Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 7, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257591 | 5 | 警告 | サン・マイクロシステムズ | - | Sun ONE/iPlanet Web Server におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2003-1590 | 2010-03-15 16:39 | 2003-08-13 | Show | GitHub Exploit DB Packet Storm |
| 257592 | 7.1 | 危険 | サイバートラスト株式会社 Linux レッドハット |
- | Linux kernel の handle_dr 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-3722 | 2010-03-15 15:23 | 2009-10-30 | Show | GitHub Exploit DB Packet Storm |
| 257593 | 4.3 | 警告 | シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン) | - | APC Switched Rack PDU におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4406 | 2010-03-12 15:13 | 2009-12-23 | Show | GitHub Exploit DB Packet Storm |
| 257594 | 4.3 | 警告 | シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン) | - | APC Network Management Card におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-1798 | 2010-03-12 15:13 | 2009-12-28 | Show | GitHub Exploit DB Packet Storm |
| 257595 | 6.8 | 警告 | シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン) | - | APC Network Management Card におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2009-1797 | 2010-03-12 15:12 | 2009-12-28 | Show | GitHub Exploit DB Packet Storm |
| 257596 | 6.6 | 警告 | 日立 | - | JP1/Cm2/Network Node Manager のリモートコンソールにおけるファイルパーミッションの脆弱性 |
CWE-264
認可・権限・アクセス制御 |
- | 2010-03-12 15:12 | 2010-02-26 | Show | GitHub Exploit DB Packet Storm |
| 257597 | 9.3 | 危険 | Panda Security | - | Panda Security ActiveScan におけるコンポーネントのデジタル署名を検証しない問題 |
CWE-94
コード・インジェクション |
CVE-2009-3735 | 2010-03-12 15:12 | 2010-02-12 | Show | GitHub Exploit DB Packet Storm |
| 257598 | 5 | 警告 | サイバートラスト株式会社 OpenSSL Project IBM レッドハット |
- | OpenSSL の dtls1_retrieve_buffered_fragment 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-1379 | 2010-03-12 14:44 | 2009-05-19 | Show | GitHub Exploit DB Packet Storm |
| 257599 | 5 | 警告 | サイバートラスト株式会社 OpenSSL Project IBM レッドハット |
- | OpenSSL の dtls1_process_out_of_seq_message 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-1378 | 2010-03-12 14:44 | 2009-05-19 | Show | GitHub Exploit DB Packet Storm |
| 257600 | 5 | 警告 | サイバートラスト株式会社 OpenSSL Project IBM レッドハット |
- | OpenSSL の dtls1_buffer_record 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-119
バッファエラー |
CVE-2009-1377 | 2010-03-12 14:43 | 2009-05-19 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 7, 2026, 4:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 246341 | 9.8 |
CRITICAL
Network |
phoenixcontact |
fl_switch_3005_firmware fl_switch_3005t_firmware fl_switch_3004t-fx_firmware fl_switch_3004t-fx_st_firmware fl_switch_3008_firmware fl_switch_3008t_firmware fl_switch_3006t-2fx_firm… |
The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 allows for plaintext transmission (HTTP) of user credentials by default. |
CWE-311
Missing Encryption of Sensitive Data |
CVE-2018-13992 | 2024-11-21 12:48 | 2019-05-8 | Show | GitHub Exploit DB Packet Storm |
| 246342 | 5.3 |
MEDIUM
Network |
phoenixcontact |
fl_switch_3005_firmware fl_switch_3005t_firmware fl_switch_3004t-fx_firmware fl_switch_3004t-fx_st_firmware fl_switch_3008_firmware fl_switch_3008t_firmware fl_switch_3006t-2fx_firm… |
The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 leaks private information in firmware images. |
CWE-200
Information Exposure |
CVE-2018-13991 | 2024-11-21 12:48 | 2019-05-8 | Show | GitHub Exploit DB Packet Storm |
| 246343 | 6.1 |
MEDIUM
Network |
impresscms | impresscms | ImpressCMS 1.3.10 has XSS via the PATH_INFO to htdocs/install/index.php, htdocs/install/page_langselect.php, or htdocs/install/page_modcheck.php. |
CWE-79
Cross-site Scripting |
CVE-2018-13983 | 2024-11-21 12:48 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 246344 | 9.8 |
CRITICAL
Network |
phoenixcontact |
fl_switch_3005_firmware fl_switch_3005t_firmware fl_switch_3004t-fx_firmware fl_switch_3004t-fx_st_firmware fl_switch_3008_firmware fl_switch_3008t_firmware fl_switch_3006t-2fx_firm… |
The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions prior to 1.35 is vulnerable to brute-force attacks, because of Improper Restriction of Excessive Authentication Attempts. |
CWE-287
Improper Authentication |
CVE-2018-13990 | 2024-11-21 12:48 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 246345 | 6.5 |
MEDIUM
Network |
siemens |
cp_1604_firmware cp_1616_firmware |
A vulnerability has been identified in CP 1604 (All versions), CP 1616 (All versions). The integrated configuration web server of the affected CP devices could allow a Cross-Site Request Forgery (CSR… |
CWE-352
Origin Validation Error |
CVE-2018-13810 | 2024-11-21 12:48 | 2019-04-17 | Show | GitHub Exploit DB Packet Storm |
| 246346 | 6.1 |
MEDIUM
Network |
siemens |
cp_1604_firmware cp_1616_firmware |
A vulnerability has been identified in CP 1604 (All versions), CP 1616 (All versions). The integrated web server of the affected CP devices could allow Cross-Site Scripting (XSS) attacks if unsuspect… |
CWE-79
Cross-site Scripting |
CVE-2018-13809 | 2024-11-21 12:48 | 2019-04-17 | Show | GitHub Exploit DB Packet Storm |
| 246347 | 9.1 |
CRITICAL
Network |
siemens |
cp_1604_firmware cp_1616_firmware |
A vulnerability has been identified in CP 1604 (All versions), CP 1616 (All versions). An attacker with network access to port 23/tcp could extract internal communication data or cause a Denial-of-Se… |
CWE-200
Information Exposure |
CVE-2018-13808 | 2024-11-21 12:48 | 2019-04-17 | Show | GitHub Exploit DB Packet Storm |
| 246348 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware qcs605_firmware qm215_firmware sd_425_firmware sd_439_firmware sd_429_firmware sd_4… |
kernel could return a received message length higher than expected, which leads to buffer overflow in a subsequent operation and stops normal operation in Snapdragon Auto, Snapdragon Consumer IOT, Sn… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-13918 | 2024-11-21 12:48 | 2019-04-5 | Show | GitHub Exploit DB Packet Storm |
| 246349 | 7.5 |
HIGH
Network |
siemens |
sicam_a8000_cp-8000_firmware sicam_a8000_cp-802x_firmware sicam_a8000_cp-8050_firmware |
A vulnerability has been identified in SICAM A8000 CP-8000 (All versions < V14), SICAM A8000 CP-802X (All versions < V14), SICAM A8000 CP-8050 (All versions < V2.00). Specially crafted network packet… |
CWE-20
Improper Input Validation |
CVE-2018-13798 | 2024-11-21 12:48 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 246350 | 7.8 |
HIGH
Local |
qualcomm |
snapdragon_auto_firmware snapdragon_consumer_internet_of_things_firmware snapdragon_industrial_internet_of_things_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650… |
Lack of input validation for data received from user space can lead to an out of bound array issue in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdrago… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-13914 | 2024-11-21 12:48 | 2019-02-26 | Show | GitHub Exploit DB Packet Storm |