Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 21, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 258321 | 7.5 | 危険 | サイバートラスト株式会社 Zabbix |
- | Zabbix サーバの get_history_lastid 関数における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-4499 | 2010-11-15 15:40 | 2009-09-10 | Show | GitHub Exploit DB Packet Storm |
| 258322 | 6.8 | 警告 | サイバートラスト株式会社 Zabbix |
- | Zabbix サーバの node_process_command 関数における任意のコマンドを実行される脆弱性 |
CWE-78
OSコマンド・インジェクション |
CVE-2009-4498 | 2010-11-15 15:40 | 2009-09-10 | Show | GitHub Exploit DB Packet Storm |
| 258323 | 6.9 | 警告 | Mozilla Foundation | - | Windows 上で稼働する複数の Mozilla 製品における権限昇格の脆弱性 |
CWE-Other
その他 |
CVE-2010-3181 | 2010-11-11 15:07 | 2010-10-19 | Show | GitHub Exploit DB Packet Storm |
| 258324 | 9.3 | 危険 | アドビシステムズ | - | 複数の Adobe 製品における任意のコードを実行される脆弱性 |
CWE-Other
その他 |
CVE-2010-3153 | 2010-11-10 15:34 | 2010-10-18 | Show | GitHub Exploit DB Packet Storm |
| 258325 | 4.3 | 警告 | アドビシステムズ | - | Adobe RoboHelp および RoboHelp Server におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-2886 | 2010-11-10 15:34 | 2010-10-18 | Show | GitHub Exploit DB Packet Storm |
| 258326 | 4.3 | 警告 | アドビシステムズ | - | Adobe RoboHelp および RoboHelp Server におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-2885 | 2010-11-10 15:33 | 2010-10-18 | Show | GitHub Exploit DB Packet Storm |
| 258327 | 9.3 | 危険 | リアルネットワークス | - | RealNetworks RealPlayer の browser-plugin 実装における任意のプログラムを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-3749 | 2010-11-10 15:33 | 2010-10-15 | Show | GitHub Exploit DB Packet Storm |
| 258328 | 10 | 危険 | リアルネットワークス | - | RealNetworks RealPlayer の RichFX コンポーネントにおけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3748 | 2010-11-10 15:32 | 2010-10-15 | Show | GitHub Exploit DB Packet Storm |
| 258329 | 9.3 | 危険 | リアルネットワークス | - | RealNetworks RealPlayer の ActiveX コントロールにおけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3751 | 2010-11-10 15:32 | 2010-10-15 | Show | GitHub Exploit DB Packet Storm |
| 258330 | 10 | 危険 | SAP | - | SAP BusinessObjects Axis2 におけるデフォルトパスワードの問題 |
CWE-255
証明書・パスワード管理 |
CVE-2010-0219 | 2010-11-10 15:32 | 2010-10-14 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 21, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253541 | 6.6 |
MEDIUM
Physics |
infineon | s-gold_2_pmb_8876 | A Stack-Based Buffer Overflow issue was discovered in the Continental AG Infineon S-Gold 2 (PMB 8876) chipset on BMW several models produced between 2009-2010, Ford a limited number of P-HEV vehicles… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-9647 | 2024-11-21 12:36 | 2017-08-7 | Show | GitHub Exploit DB Packet Storm |
| 253542 | 8.8 |
HIGH
Adjacent |
infineon | s-gold_2_pmb_8876 | An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was discovered in the Continental AG Infineon S-Gold 2 (PMB 8876) chipset on BMW several models produced between 2009-… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-9633 | 2024-11-21 12:36 | 2017-08-7 | Show | GitHub Exploit DB Packet Storm |
| 253543 | 9.8 |
CRITICAL
Network |
pdqinc |
laserwash_g5_firmware laserwash_g5_s_firmware laserwash_m5_firmware laserwash_360_firmware laserwash_360_plus_firmware laserwash_autoxpress_firmware laserwash_autoxpress_plus_firmwa… |
A Missing Encryption of Sensitive Data issue was discovered in PDQ Manufacturing LaserWash G5 and G5 S Series all versions, LaserWash M5, all versions, LaserWash 360 and 360 Plus, all versions, Laser… |
CWE-311
Missing Encryption of Sensitive Data |
CVE-2017-9632 | 2024-11-21 12:36 | 2017-08-7 | Show | GitHub Exploit DB Packet Storm |
| 253544 | 9.4 |
CRITICAL
Network |
pdqinc |
laserwash_g5_firmware laserwash_g5_s_firmware laserwash_m5_firmware laserwash_360_firmware laserwash_360_plus_firmware laserwash_autoxpress_firmware laserwash_autoxpress_plus_firmwa… |
An Improper Authentication issue was discovered in PDQ Manufacturing LaserWash G5 and G5 S Series all versions, LaserWash M5, all versions, LaserWash 360 and 360 Plus, all versions, LaserWash AutoXpr… |
CWE-287
Improper Authentication |
CVE-2017-9630 | 2024-11-21 12:36 | 2017-08-7 | Show | GitHub Exploit DB Packet Storm |
| 253545 | 9.8 |
CRITICAL
Network |
sma |
sunny_boy_3600_firmware sunny_boy_5000_firmware sunny_tripower_core1_firmware sunny_tripower_15000tl_firmware sunny_tripower_20000tl_firmware sunny_tripower_25000tl_firmware sunny_t… |
An issue was discovered in SMA Solar Technology products. By sniffing for specific packets on the localhost, plaintext passwords can be obtained as they are typed into Sunny Explorer by the user. The… |
CWE-311
Missing Encryption of Sensitive Data |
CVE-2017-9854 | 2024-11-21 12:36 | 2017-08-6 | Show | GitHub Exploit DB Packet Storm |
| 253546 | 9.8 |
CRITICAL
Network |
sma |
sunny_boy_3600_firmware sunny_boy_5000_firmware sunny_tripower_core1_firmware sunny_tripower_15000tl_firmware sunny_tripower_20000tl_firmware sunny_tripower_25000tl_firmware sunny_t… |
An issue was discovered in SMA Solar Technology products. All inverters have a very weak password policy for the user and installer password. No complexity requirements or length requirements are set… |
CWE-521
Weak Password Requirements |
CVE-2017-9853 | 2024-11-21 12:36 | 2017-08-6 | Show | GitHub Exploit DB Packet Storm |
| 253547 | 9.8 |
CRITICAL
Network |
sma |
sunny_boy_3600_firmware sunny_boy_5000_firmware sunny_tripower_core1_firmware sunny_tripower_15000tl_firmware sunny_tripower_20000tl_firmware sunny_tripower_25000tl_firmware sunny_t… |
An Incorrect Password Management issue was discovered in SMA Solar Technology products. Default passwords exist that are rarely changed. User passwords will almost always be default. Installer passwo… |
CWE-798
Use of Hard-coded Credentials |
CVE-2017-9852 | 2024-11-21 12:36 | 2017-08-6 | Show | GitHub Exploit DB Packet Storm |
| 253548 | 7.5 |
HIGH
Network |
spectrum | tc8717t_firmware | The Time Warner firmware on Technicolor TC8717T devices sets the default Wi-Fi passphrase to a combination of the SSID and BSSID, which makes it easier for remote attackers to obtain network access b… |
NVD-CWE-noinfo
|
CVE-2017-9522 | 2024-11-21 12:36 | 2017-07-31 | Show | GitHub Exploit DB Packet Storm |
| 253549 | 5.5 |
MEDIUM
Local |
motorola comcast |
mx011anm_firmware xfinity_xr11-20_firmware |
The Comcast firmware on Motorola MX011ANM (firmware version MX011AN_2.9p6s1_PROD_sey) and Xfinity XR11-20 Voice Remote devices allows local users to upload arbitrary firmware images to an XR11 by lev… |
CWE-354
Improper Validation of Integrity Check Value |
CVE-2017-9498 | 2024-11-21 12:36 | 2017-07-31 | Show | GitHub Exploit DB Packet Storm |
| 253550 | 9.8 |
CRITICAL
Network |
cisco commscope |
dpc3939_firmware dpc3939b_firmware dpc3941t_firmware arris_tg1682g_firmware |
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST); Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST); Cisco DPC3939B (firmw… |
NVD-CWE-noinfo
|
CVE-2017-9521 | 2024-11-21 12:36 | 2017-07-31 | Show | GitHub Exploit DB Packet Storm |