Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257781 3.5 注意 オラクル - Oracle Sun Products Suite の Oracle Communications Unified コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-3507 2011-10-27 16:16 2011-10-18 Show GitHub Exploit DB Packet Storm
257782 4.3 警告 オラクル - Oracle OpenSSO における認証の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2011-3506 2011-10-27 16:14 2011-10-18 Show GitHub Exploit DB Packet Storm
257783 2.1 注意 オラクル - Oracle Sun Products Suite の Oracle Communications Unified コンポーネントおける脆弱性 CWE-noinfo
情報不足
CVE-2011-2327 2011-10-27 16:14 2011-10-18 Show GitHub Exploit DB Packet Storm
257784 7.5 危険 オラクル - Oracle Sun Products Suite の Oracle Waveset コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-2310 2011-10-27 16:12 2011-10-18 Show GitHub Exploit DB Packet Storm
257785 7.8 危険 オラクル - Oracle Solaris 11 Express における iSCSI DataMover の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2011-3543 2011-10-27 16:11 2011-10-18 Show GitHub Exploit DB Packet Storm
257786 4.9 警告 オラクル - Oracle Solaris における Kernel/Performance Counter BackEnd Module の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2011-3542 2011-10-27 16:10 2011-10-18 Show GitHub Exploit DB Packet Storm
257787 5.6 警告 オラクル - Oracle Solaris における Process File System (procfs) の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2011-3515 2011-10-27 16:09 2011-10-18 Show GitHub Exploit DB Packet Storm
257788 9.3 危険 オラクル - Oracle Solaris における LDAP library の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2011-3508 2011-10-27 16:09 2011-10-18 Show GitHub Exploit DB Packet Storm
257789 4.3 警告 オラクル - Oracle Solaris における ZFS の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2011-2313 2011-10-27 16:08 2011-10-18 Show GitHub Exploit DB Packet Storm
257790 5 警告 オラクル - Oracle Supply Chain Products Suite の Oracle Agile Product Supplier Collaboration for Process コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-3532 2011-10-27 16:06 2011-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246481 6.5 MEDIUM
Network
graphicsmagick
debian
graphicsmagick
debian_linux
In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-based buffer overflow in the WriteTGAImage function of tga.c, which allows attackers to cause a denial of service via a crafted image file,… CWE-787
 Out-of-bounds Write
CVE-2018-20184 2024-11-21 13:01 2018-12-18 Show GitHub Exploit DB Packet Storm
246482 6.1 MEDIUM
Network
nagios nagios_xi An issue was discovered in Nagios XI before 5.5.8. The rss_url parameter of rss_dashlet/magpierss/scripts/magpie_slashbox.php is not filtered, resulting in an XSS vulnerability. CWE-79
Cross-site Scripting
CVE-2018-20172 2024-11-21 13:01 2018-12-18 Show GitHub Exploit DB Packet Storm
246483 6.1 MEDIUM
Network
nagios nagios_xi An issue was discovered in Nagios XI before 5.5.8. The url parameter of rss_dashlet/magpierss/scripts/magpie_simple.php is not filtered, resulting in an XSS vulnerability. CWE-79
Cross-site Scripting
CVE-2018-20171 2024-11-21 13:01 2018-12-18 Show GitHub Exploit DB Packet Storm
246484 9.8 CRITICAL
Network
zohocorp manageengine_opmanager Zoho ManageEngine OpManager 12.3 before 123238 allows SQL injection via the getGraphData API. CWE-89
SQL Injection
CVE-2018-20173 2024-11-21 13:01 2018-12-17 Show GitHub Exploit DB Packet Storm
246485 5.3 MEDIUM
Network
openstack keystone OpenStack Keystone through 14.0.1 has a user enumeration vulnerability because invalid usernames have much faster responses than valid ones for a POST /v3/auth/tokens request. NOTE: the vendor's posi… CWE-200
Information Exposure
CVE-2018-20170 2024-11-21 13:01 2018-12-17 Show GitHub Exploit DB Packet Storm
246486 6.8 MEDIUM
Physics
linux
canonical
debian
linux_kernel
ubuntu_linux
debian_linux
An issue was discovered in the Linux kernel before 4.19.9. The USB subsystem mishandles size checks during the reading of an extra descriptor, related to __usb_get_extra_descriptor in drivers/usb/cor… CWE-400
 Uncontrolled Resource Consumption
CVE-2018-20169 2024-11-21 13:01 2018-12-17 Show GitHub Exploit DB Packet Storm
246487 2.3 LOW
Local
ibm qradar_security_information_and_event_manager IBM QRadar SIEM 7.3 and 7.4 n a multi tenant configuration could be vulnerable to information disclosure. IBM X-Force ID: 147440. NVD-CWE-noinfo
CVE-2018-1725 2024-11-21 13:00 2020-11-6 Show GitHub Exploit DB Packet Storm
246488 4.4 MEDIUM
Local
ibm security_rapport IBM Trusteer Rapport/Apex 3.6.1908.22 contains an unused legacy driver which could allow a user with administrator privileges to cause a buffer overflow that would result in a kernel panic. IBM X-For… CWE-120
Classic Buffer Overflow
CVE-2018-1985 2024-11-21 13:00 2020-08-25 Show GitHub Exploit DB Packet Storm
246489 5.5 MEDIUM
Local
yast2-rmt_project
opensuse
suse
yast2-rmt
leap
suse_linux_enterprise_server
A Inclusion of Sensitive Information in Log Files vulnerability in yast2-rmt of SUSE Linux Enterprise Server 15; openSUSE Leap allows local attackers to learn the password if they can access the log … CWE-532
 Inclusion of Sensitive Information in Log Files
CVE-2018-20105 2024-11-21 13:00 2020-01-27 Show GitHub Exploit DB Packet Storm
246490 5.3 MEDIUM
Network
ibm watston_studio_local IBM Watson Studio Local 1.2.3 could disclose sensitive information over the network that an attacked could use in further attacks against the system. IBM X-Force ID: 145238. CWE-200
Information Exposure
CVE-2018-1682 2024-11-21 13:00 2019-12-31 Show GitHub Exploit DB Packet Storm