Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258321 9.3 危険 アップル - Apple Mac OS X の アカウント環境設定の実装におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0512 2010-04-15 18:38 2010-03-29 Show GitHub Exploit DB Packet Storm
258322 5 警告 アップル - Apple Mac OS X の Podcast プロデューサーにおけるワークフローにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0511 2010-04-15 18:38 2010-03-29 Show GitHub Exploit DB Packet Storm
258323 9 危険 アップル - Apple Mac OS X のパスワードサーバにおけるログインアクセスを取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0510 2010-04-15 18:37 2010-03-29 Show GitHub Exploit DB Packet Storm
258324 7.2 危険 アップル - Apple Mac OS X の SFLServer における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0509 2010-04-15 18:37 2010-03-29 Show GitHub Exploit DB Packet Storm
258325 7.8 危険 アップル - Apple Mac OS X の Mail における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2010-0525 2010-04-15 18:36 2010-03-29 Show GitHub Exploit DB Packet Storm
258326 4 警告 アップル
サイバートラスト株式会社
MySQL AB
レッドハット		 - MySQL の mysqld におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2009-4019 2010-04-15 18:16 2009-11-30 Show GitHub Exploit DB Packet Storm
258327 6.8 警告 The PHP Group
アップル		 - PHP の posix_mkfifo 関数における open_basedir の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3558 2010-04-15 18:16 2009-11-23 Show GitHub Exploit DB Packet Storm
258328 4.4 警告 アップル
サイバートラスト株式会社
MySQL AB
レッドハット		 - MySQL における権限チェックを回避される脆弱性 CWE-59
リンク解釈の問題 		CVE-2009-4030 2010-04-15 18:16 2009-11-5 Show GitHub Exploit DB Packet Storm
258329 2.6 注意 アップル
サイバートラスト株式会社
MySQL AB
レッドハット		 - MySQL のコマンドラインクライアントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4456 2010-04-15 18:15 2008-10-6 Show GitHub Exploit DB Packet Storm
258330 10 危険 アップル - Apple Mac OS X の Mail における脆弱性 CWE-noinfo
情報不足 		CVE-2010-0508 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248901 7.5 HIGH
Network 		qemu
canonical
debian 		qemu
ubuntu_linux
debian_linux 		qmp_guest_file_read in qga/commands-posix.c and qga/commands-win32.c in qemu-ga (aka QEMU Guest Agent) in QEMU 2.12.50 has an integer overflow causing a g_malloc0() call to trigger a segmentation fau… CWE-190
 Integer Overflow or Wraparound 		CVE-2018-12617 2024-11-21 12:45 2018-06-22 Show GitHub Exploit DB Packet Storm
248902 5.3 MEDIUM
Network 		phusion passenger An issue was discovered in switchGroup() in agent/ExecHelper/ExecHelperMain.cpp in Phusion Passenger before 5.3.2. The set of groups (gidset) is not set correctly, leaving it up to randomness (i.e., … CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-12615 2024-11-21 12:45 2018-06-22 Show GitHub Exploit DB Packet Storm
248903 9.8 CRITICAL
Network 		telesquare sdt-cs3b1_firmware
sdt-cw3b1_firmware 		Telesquare SDT-CS3B1 and SDT-CW3B1 devices through 1.2.0 have a default factory account. Remote attackers can obtain access to the device via TELNET using a hardcoded account. CWE-798
 Use of Hard-coded Credentials 		CVE-2018-12526 2024-11-21 12:45 2018-06-22 Show GitHub Exploit DB Packet Storm
248904 7.5 HIGH
Network 		njtech greencms GreenCMS 2.3.0603 allows remote attackers to obtain sensitive information via a direct request for Data/Log/year_month_day.log. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2018-12604 2024-11-21 12:45 2018-06-21 Show GitHub Exploit DB Packet Storm
248905 9.8 CRITICAL
Network 		sam2p_project
debian 		sam2p
debian_linux 		There is a heap-based buffer overflow in ReadImage in input-tga.ci in sam2p 0.49.4 that leads to a denial of service or possibly unspecified other impact. CWE-787
 Out-of-bounds Write 		CVE-2018-12601 2024-11-21 12:45 2018-06-21 Show GitHub Exploit DB Packet Storm
248906 8.8 HIGH
Network 		debian
canonical
imagemagick 		debian_linux
ubuntu_linux
imagemagick 		In ImageMagick 7.0.8-3 Q16, ReadDIBImage and WriteDIBImage in coders/dib.c allow attackers to cause an out of bounds write via a crafted file. CWE-787
 Out-of-bounds Write 		CVE-2018-12600 2024-11-21 12:45 2018-06-21 Show GitHub Exploit DB Packet Storm
248907 8.8 HIGH
Network 		debian
canonical
imagemagick 		debian_linux
ubuntu_linux
imagemagick 		In ImageMagick 7.0.8-3 Q16, ReadBMPImage and WriteBMPImage in coders/bmp.c allow attackers to cause an out of bounds write via a crafted file. CWE-787
 Out-of-bounds Write 		CVE-2018-12599 2024-11-21 12:45 2018-06-21 Show GitHub Exploit DB Packet Storm
248908 7.5 HIGH
Network 		email\ \ The parse() method in the Email::Address module through 1.909 for Perl is vulnerable to Algorithmic complexity on specially prepared input, leading to Denial of Service. Prepared special input that c… CWE-407
 Inefficient Algorithmic Complexity 		CVE-2018-12558 2024-11-21 12:45 2018-06-20 Show GitHub Exploit DB Packet Storm
248909 7.5 HIGH
Network 		reliablecontrols mach-prowebcom_firmware Reliable Controls MACH-ProWebCom 7.80 devices allow remote attackers to obtain sensitive information via a direct request for the data/fileinfo.xml or job/job.json file, as demonstrated the Master Pa… CWE-200
Information Exposure 		CVE-2018-12594 2024-11-21 12:45 2018-06-20 Show GitHub Exploit DB Packet Storm
248910 7.5 HIGH
Network 		polycom realpresence_web_suite Polycom RealPresence Web Suite before 2.2.0 does not block a user's video for a few seconds upon joining a meeting (when the user has explicitly chosen to turn off the video using a specific option).… CWE-200
Information Exposure 		CVE-2018-12592 2024-11-21 12:45 2018-06-20 Show GitHub Exploit DB Packet Storm