Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258361 5 警告 オラクル - Oracle Fusion Middleware の Oracle Business Intelligence Enterprise Edition コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-2241 2011-08-1 11:42 2011-07-19 Show GitHub Exploit DB Packet Storm
258362 4 警告 オラクル - Oracle Fusion Middleware の Oracle BPEL Process Manager コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-0884 2011-08-1 11:40 2011-07-19 Show GitHub Exploit DB Packet Storm
258363 4 警告 オラクル - Oracle Fusion Middleware の Oracle Containers for J2EE コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-0883 2011-08-1 11:33 2011-07-19 Show GitHub Exploit DB Packet Storm
258364 6 警告 オラクル - Oracle Database Server および Oracle Fusion Middleware における脆弱性 CWE-noinfo
情報不足
CVE-2011-2232 2011-08-1 11:32 2011-07-19 Show GitHub Exploit DB Packet Storm
258365 4.3 警告 オラクル - Oracle Database Server および Oracle Fusion Middleware における脆弱性 CWE-noinfo
情報不足
CVE-2011-2231 2011-08-1 11:31 2011-07-19 Show GitHub Exploit DB Packet Storm
258366 10 危険 オラクル - Oracle Secure Backup における脆弱性 CWE-noinfo
情報不足
CVE-2011-2261 2011-08-1 11:30 2011-07-19 Show GitHub Exploit DB Packet Storm
258367 5.1 警告 サイバートラスト株式会社
Carnegie Mellon University (Project Cyrus)
レッドハット
- Cyrus IMAP Server の STARTTLS 実装における暗号化セッションにコマンドを挿入される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1926 2011-08-1 11:02 2011-05-23 Show GitHub Exploit DB Packet Storm
258368 6.9 警告 GNU Project
サイバートラスト株式会社
レッドハット
- bash-doc における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題
CVE-2008-5374 2011-08-1 10:58 2008-12-8 Show GitHub Exploit DB Packet Storm
258369 2.1 注意 レッドハット
fedorahosted.org
- SSSD の pam_parse_in_data_v2 関数におけるサービス運用妨害 (無限ループ、クラッシュおよびログイン防止) の脆弱性 CWE-399
リソース管理の問題
CVE-2010-4341 2011-08-1 10:57 2011-01-25 Show GitHub Exploit DB Packet Storm
258370 10 危険 rsync.samba.org
アップル
レッドハット
- rsync における隠しファイルを読込/書込される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2007-6200 2011-08-1 10:54 2007-12-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278681 5.5 MEDIUM
Local
lg lg_mobile An issue was discovered on LG devices using the MTK chipset with L(5.0/5.1), M(6.0/6.0.1), and N(7.0) software, and RCA Voyager Tablet, BLU Advance 5.0, and BLU R1 HD devices. The MTKLogger app with … CWE-200
Information Exposure
CVE-2016-10135 2024-11-21 11:43 2017-01-13 Show GitHub Exploit DB Packet Storm
278682 5.9 MEDIUM
Network
igniterealtime
fedoraproject
smack
fedora
Race condition in the XMPP library in Smack before 4.1.9, when the SecurityMode.required TLS setting has been set, allows man-in-the-middle attackers to bypass TLS protections and trigger use of clea… CWE-362
Race Condition
CVE-2016-10027 2024-11-21 11:43 2017-01-13 Show GitHub Exploit DB Packet Storm
278683 9.8 CRITICAL
Network
codeigniter codeigniter system/libraries/Email.php in CodeIgniter before 3.1.3 allows remote attackers to execute arbitrary code by leveraging control over the email->from field to insert sendmail command-line arguments. CWE-74
Injection
CVE-2016-10131 2024-11-21 11:43 2017-01-12 Show GitHub Exploit DB Packet Storm
278684 9.8 CRITICAL
Network
splunk splunk Splunk Web in Splunk Enterprise 5.0.x before 5.0.17, 6.0.x before 6.0.13, 6.1.x before 6.1.12, 6.2.x before 6.2.12, 6.3.x before 6.3.8, and 6.4.x before 6.4.4 allows remote attackers to conduct HTTP … CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-10126 2024-11-21 11:43 2017-01-10 Show GitHub Exploit DB Packet Storm
278685 8.1 HIGH
Network
dlink dgs-1100_firmware D-Link DGS-1100 devices with Rev.B firmware 1.01.018 have a hardcoded SSL private key, which allows man-in-the-middle attackers to spoof devices by hijacking an HTTPS session. CWE-798
 Use of Hard-coded Credentials
CVE-2016-10125 2024-11-21 11:43 2017-01-10 Show GitHub Exploit DB Packet Storm
278686 8.6 HIGH
Network
linuxcontainers lxc An issue was discovered in Linux Containers (LXC) before 2016-02-22. When executing a program via lxc-attach, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push c… CWE-284
Improper Access Control
CVE-2016-10124 2024-11-21 11:43 2017-01-9 Show GitHub Exploit DB Packet Storm
278687 8.1 HIGH
Network
schedmd slurm The _prolog_error function in slurmd/req.c in Slurm before 15.08.13, 16.x before 16.05.7, and 17.x before 17.02.0-pre4 has a vulnerability in how the slurmd daemon informs users of a Prolog failure o… CWE-284
Improper Access Control
CVE-2016-10030 2024-11-21 11:43 2017-01-5 Show GitHub Exploit DB Packet Storm
278688 7.8 HIGH
Local
openbsd openssh The shared memory manager (associated with pre-authentication compression) in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local use… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-10012 2024-11-21 11:43 2017-01-5 Show GitHub Exploit DB Packet Storm
278689 5.5 MEDIUM
Local
openbsd openssh authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging … CWE-320
 Key Management Errors
CVE-2016-10011 2024-11-21 11:43 2017-01-5 Show GitHub Exploit DB Packet Storm
278690 7.0 HIGH
Local
openbsd openssh sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to … CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-10010 2024-11-21 11:43 2017-01-5 Show GitHub Exploit DB Packet Storm