Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258631	7.8	危険	アップル MIT Kerberos	-	MIT Kerberos 5 の Key Distribution Center におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0283	2010-07-9 16:25	2010-02-16	Show	GitHub Exploit DB Packet Storm

258632	4	警告	アップル MIT Kerberos	-	MIT Kerberos 5 の Key Distribution Center における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1320	2010-07-9 16:25	2010-04-20	Show	GitHub Exploit DB Packet Storm

258633	6.8	警告	アップル	-	Apple Mac OS X の ImageIO における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0543	2010-07-9 16:24	2010-06-15	Show	GitHub Exploit DB Packet Storm

258634	4.3	警告	アップル	-	Apple Mac OS X の iChat におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1374	2010-07-8 18:27	2010-06-15	Show	GitHub Exploit DB Packet Storm

258635	4.3	警告	アップル	-	Apple Mac OS X のヘルプビューアにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1373	2010-07-8 18:27	2010-06-15	Show	GitHub Exploit DB Packet Storm

258636	3.3	注意	アップル	-	Apple Mac OS X の Folder Manager における任意のフォルダを削除される脆弱性	CWE-59 リンク解釈の問題	CVE-2010-0546	2010-07-8 18:27	2010-06-15	Show	GitHub Exploit DB Packet Storm

258637	4.4	警告	アップル	-	Apple Mac OS X の DesktopServices におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0545	2010-07-8 18:26	2010-06-15	Show	GitHub Exploit DB Packet Storm

258638	10	危険	ヒューレット・パッカード SGI IBM	-	rpc.pcnfsd の _msgout 関数における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-1039	2010-07-8 18:03	2010-05-18	Show	GitHub Exploit DB Packet Storm

258639	1.2	注意	IBM OpenBSD	-	OpenSSH における X11 転送ポートをハイジャックされる脆弱性	CWE-200 情報漏えい	CVE-2008-3259	2010-07-7 16:40	2008-07-22	Show	GitHub Exploit DB Packet Storm

258640	4.3	警告	アップルサイバートラスト株式会社レッドハット SquirrelMail Project	-	SquirrelMail におけるユーザインターフェースを偽装される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1581	2010-07-6 19:19	2009-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246661	7.5	HIGH Network	apereo	opencast	An issue was discovered in Apereo Opencast 4.x through 10.x before 10.6. It sends system digest credentials during authentication attempts to arbitrary external services in some situations.	CWE-522 Insufficiently Protected Credentials	CVE-2018-16153	2024-11-21 12:52	2023-12-13	Show	GitHub Exploit DB Packet Storm

246662	6.5	MEDIUM Network	opera	opera_mini	The Opera Mini application 47.1.2249.129326 for Android allows remote attackers to spoof the Location Permission dialog via a crafted web site.	NVD-CWE-noinfo	CVE-2018-16135	2024-11-21 12:52	2022-12-27	Show	GitHub Exploit DB Packet Storm

246663	6.1	MEDIUM Network	mitsubishielectric	smartrtu_firmware	Mitsubishi Electric Europe B.V. SmartRTU devices allow XSS via the username parameter or PATH_INFO to login.php.	CWE-79 Cross-site Scripting	CVE-2018-16061	2024-11-21 12:52	2021-10-16	Show	GitHub Exploit DB Packet Storm

246664	7.5	HIGH Network	mitsubishielectric	smartrtu_firmware	Mitsubishi Electric Europe B.V. SmartRTU devices allow remote attackers to obtain sensitive information (directory listing and source code) via a direct request to the /web URI.	CWE-425 Direct Request ('Forced Browsing')	CVE-2018-16060	2024-11-21 12:52	2021-10-16	Show	GitHub Exploit DB Packet Storm

246665	5.9	MEDIUM Network	versa-networks	versa_operating_system	In VOS compromised, an attacker at network endpoints can possibly view communications between an unsuspecting user and the service using man-in-the-middle attacks. Usage of unapproved SSH encryption …	CWE-326 Inadequate Encryption Strength	CVE-2018-16499	2024-11-21 12:52	2021-05-27	Show	GitHub Exploit DB Packet Storm

246666	5.5	MEDIUM Local	versa-networks	versa_director	In Versa Director, the unencrypted backup files stored on the Versa deployment contain credentials stored within configuration files. These credentials are for various application components such as …	CWE-312 Cleartext Storage of Sensitive Information	CVE-2018-16498	2024-11-21 12:52	2021-05-27	Show	GitHub Exploit DB Packet Storm

246667	7.8	HIGH Local	versa-networks	versa_analytics	In Versa Analytics, the cron jobs are used for scheduling tasks by executing commands at specific dates and times on the server. If the job is run as the user root, there is a potential privilege esc…	CWE-269 Improper Privilege Management	CVE-2018-16497	2024-11-21 12:52	2021-05-27	Show	GitHub Exploit DB Packet Storm

246668	5.3	MEDIUM Network	versa-networks	versa_director	In Versa Director, the un-authentication request found.	CWE-287 Improper Authentication	CVE-2018-16496	2024-11-21 12:52	2021-05-27	Show	GitHub Exploit DB Packet Storm

246669	8.8	HIGH Network	versa-networks	versa_operating_system	In VOS user session identifier (authentication token) is issued to the browser prior to authentication but is not changed after the user successfully logs into the application. Failing to issue a new…	CWE-384 Session Fixation	CVE-2018-16495	2024-11-21 12:52	2021-05-27	Show	GitHub Exploit DB Packet Storm

246670	8.8	HIGH Network	versa-networks	versa_operating_system	In VOS and overly permissive "umask" may allow for authorized users of the server to gain unauthorized access through insecure file permissions that can result in an arbitrary read, write, or executi…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2018-16494	2024-11-21 12:52	2021-05-27	Show	GitHub Exploit DB Packet Storm