Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 4, 2026, 4 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257701 | 10 | 危険 | サイバートラスト株式会社 XEmacs |
- | XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-2688 | 2010-01-12 14:48 | 2009-08-5 | Show | GitHub Exploit DB Packet Storm |
| 257702 | 6.8 | 警告 | IBM | - | IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2009-2746 | 2010-01-12 14:48 | 2009-11-13 | Show | GitHub Exploit DB Packet Storm |
| 257703 | 5 | 警告 | アップル | - | Apple Safari におけるローカル HTML ファイルを読まれる脆弱性 |
CWE-Other
その他 |
CVE-2009-2842 | 2010-01-7 12:09 | 2009-11-11 | Show | GitHub Exploit DB Packet Storm |
| 257704 | 5.5 | 警告 | シックス・アパート株式会社 | - | Movable Type におけるアクセス制限回避の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
- | 2010-01-6 15:01 | 2010-01-6 | Show | GitHub Exploit DB Packet Storm |
| 257705 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Word および Open XML File Format Converter における、任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3135 | 2010-01-6 14:44 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 257706 | 5 | 警告 | トレンドマイクロ 日本電気 Apache Software Foundation 富士通 サイバートラスト株式会社 サン・マイクロシステムズ ヒューレット・パッカード レッドハット |
- | Apache Tomcat の Apache HTTP Server との組合せによるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2007-0450 | 2010-01-6 14:43 | 2007-03-16 | Show | GitHub Exploit DB Packet Storm |
| 257707 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Excel および Open XML File Format Converter におけるオブジェクトを含むスプレッドシートの処理に関する任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3133 | 2010-01-5 16:18 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 257708 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Excel および Open XML File Format Converter における BIFF レコードの処理に関する任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2009-3130 | 2010-01-5 16:18 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 257709 | 9.3 | 危険 | マイクロソフト | - | 複数の Microsoft 製品におけるエクセルファイルのフォーマットの処理に関する任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3134 | 2010-01-5 16:18 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 257710 | 9.3 | 危険 | マイクロソフト | - | 複数の Microsoft 製品における計算式を含むスプレッドシートの処理に関する任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3132 | 2010-01-5 16:18 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 5, 2026, 4:11 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 249721 | 9.8 |
CRITICAL
Network |
cisco |
mobility_services_engine policy_suite |
A vulnerability in the Policy Builder interface of Cisco Policy Suite before 18.2.0 could allow an unauthenticated, remote attacker to access the Policy Builder interface. The vulnerability is due to… |
CWE-306
Missing Authentication for Critical Function |
CVE-2018-0376 | 2024-11-21 12:38 | 2018-07-19 | Show | GitHub Exploit DB Packet Storm |
| 249722 | 9.8 |
CRITICAL
Network |
cisco |
mobility_services_engine policy_suite |
A vulnerability in the Cluster Manager of Cisco Policy Suite before 18.2.0 could allow an unauthenticated, remote attacker to log in to an affected system using the root account, which has default, s… |
CWE-798
Use of Hard-coded Credentials |
CVE-2018-0375 | 2024-11-21 12:38 | 2018-07-19 | Show | GitHub Exploit DB Packet Storm |
| 249723 | 9.8 |
CRITICAL
Network |
cisco | mobility_services_engine | A vulnerability in the Policy Builder database of Cisco Policy Suite before 18.2.0 could allow an unauthenticated, remote attacker to connect directly to the Policy Builder database. The vulnerabilit… |
CWE-306
Missing Authentication for Critical Function |
CVE-2018-0374 | 2024-11-21 12:38 | 2018-07-19 | Show | GitHub Exploit DB Packet Storm |
| 249724 | 7.5 |
HIGH
Network |
cisco | nx-os | A vulnerability in the DHCPv6 feature of the Cisco Nexus 9000 Series Fabric Switches in Application-Centric Infrastructure (ACI) Mode could allow an unauthenticated, remote attacker to cause the devi… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2018-0372 | 2024-11-21 12:38 | 2018-07-19 | Show | GitHub Exploit DB Packet Storm |
| 249725 | 7.8 |
HIGH
Local |
cisco |
vbond_orchestrator vedge-plus vedge-pro vsmart_controller vmanage_network_management vedge-100_firmware vedge_100b_firmware vedge_100m_firmware vedge_100wm_firmware vedge-1… |
A vulnerability in the command-line tcpdump utility in the Cisco SD-WAN Solution could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The … |
CWE-77
Command Injection |
CVE-2018-0351 | 2024-11-21 12:38 | 2018-07-19 | Show | GitHub Exploit DB Packet Storm |
| 249726 | 8.8 |
HIGH
Network |
cisco |
vbond_orchestrator vedge-plus vedge-pro vsmart_controller vmanage_network_management vedge-100_firmware vedge_100b_firmware vedge_100m_firmware vedge_100wm_firmware vedge-1… |
A vulnerability in the VPN subsystem configuration in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges. The … |
CWE-77
Command Injection |
CVE-2018-0350 | 2024-11-21 12:38 | 2018-07-19 | Show | GitHub Exploit DB Packet Storm |
| 249727 | 9.8 |
CRITICAL
Network |
cisco |
vbond_orchestrator vedge-plus vedge-pro vsmart_controller vmanage_network_management vedge-100_firmware vedge_100b_firmware vedge_100m_firmware vedge_100wm_firmware vedge-1… |
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is … |
CWE-78
OS Command |
CVE-2018-0349 | 2024-11-21 12:38 | 2018-07-19 | Show | GitHub Exploit DB Packet Storm |
| 249728 | 7.2 |
HIGH
Network |
cisco |
vbond_orchestrator vedge-plus vedge-pro vsmart_controller vmanage_network_management vedge-100_firmware vedge_100b_firmware vedge_100m_firmware vedge_100wm_firmware vedge-1… |
A vulnerability in the CLI of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due to … |
CWE-78
OS Command |
CVE-2018-0348 | 2024-11-21 12:38 | 2018-07-19 | Show | GitHub Exploit DB Packet Storm |
| 249729 | 7.8 |
HIGH
Local |
cisco |
vbond_orchestrator vedge-plus vedge-pro vsmart_controller vmanage_network_management vedge-100_firmware vedge_100b_firmware vedge_100m_firmware vedge_100wm_firmware vedge-1… |
A vulnerability in the Zero Touch Provisioning (ZTP) subsystem of the Cisco SD-WAN Solution could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privi… |
CWE-77
Command Injection |
CVE-2018-0347 | 2024-11-21 12:38 | 2018-07-19 | Show | GitHub Exploit DB Packet Storm |
| 249730 | 7.5 |
HIGH
Network |
cisco |
vbond_orchestrator vedge-plus vedge-pro vsmart_controller vmanage_network_management vedge-100_firmware vedge_100b_firmware vedge_100m_firmware vedge_100wm_firmware vedge-1… |
A vulnerability in the Zero Touch Provisioning service of the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-0346 | 2024-11-21 12:38 | 2018-07-19 | Show | GitHub Exploit DB Packet Storm |