Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258761	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

258762	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

258763	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248561	5.3	MEDIUM Network	phusion	passenger	An issue was discovered in switchGroup() in agent/ExecHelper/ExecHelperMain.cpp in Phusion Passenger before 5.3.2. The set of groups (gidset) is not set correctly, leaving it up to randomness (i.e., …	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-12615	2024-11-21 12:45	2018-06-22	Show	GitHub Exploit DB Packet Storm

248562	9.8	CRITICAL Network	telesquare	sdt-cs3b1_firmware sdt-cw3b1_firmware	Telesquare SDT-CS3B1 and SDT-CW3B1 devices through 1.2.0 have a default factory account. Remote attackers can obtain access to the device via TELNET using a hardcoded account.	CWE-798 Use of Hard-coded Credentials	CVE-2018-12526	2024-11-21 12:45	2018-06-22	Show	GitHub Exploit DB Packet Storm

248563	7.5	HIGH Network	njtech	greencms	GreenCMS 2.3.0603 allows remote attackers to obtain sensitive information via a direct request for Data/Log/year_month_day.log.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2018-12604	2024-11-21 12:45	2018-06-21	Show	GitHub Exploit DB Packet Storm

248564	9.8	CRITICAL Network	sam2p_project debian	sam2p debian_linux	There is a heap-based buffer overflow in ReadImage in input-tga.ci in sam2p 0.49.4 that leads to a denial of service or possibly unspecified other impact.	CWE-787 Out-of-bounds Write	CVE-2018-12601	2024-11-21 12:45	2018-06-21	Show	GitHub Exploit DB Packet Storm

248565	8.8	HIGH Network	debian canonical imagemagick	debian_linux ubuntu_linux imagemagick	In ImageMagick 7.0.8-3 Q16, ReadDIBImage and WriteDIBImage in coders/dib.c allow attackers to cause an out of bounds write via a crafted file.	CWE-787 Out-of-bounds Write	CVE-2018-12600	2024-11-21 12:45	2018-06-21	Show	GitHub Exploit DB Packet Storm

248566	8.8	HIGH Network	debian canonical imagemagick	debian_linux ubuntu_linux imagemagick	In ImageMagick 7.0.8-3 Q16, ReadBMPImage and WriteBMPImage in coders/bmp.c allow attackers to cause an out of bounds write via a crafted file.	CWE-787 Out-of-bounds Write	CVE-2018-12599	2024-11-21 12:45	2018-06-21	Show	GitHub Exploit DB Packet Storm

248567	7.5	HIGH Network	email\	\	The parse() method in the Email::Address module through 1.909 for Perl is vulnerable to Algorithmic complexity on specially prepared input, leading to Denial of Service. Prepared special input that c…	CWE-407 Inefficient Algorithmic Complexity	CVE-2018-12558	2024-11-21 12:45	2018-06-20	Show	GitHub Exploit DB Packet Storm

248568	7.5	HIGH Network	reliablecontrols	mach-prowebcom_firmware	Reliable Controls MACH-ProWebCom 7.80 devices allow remote attackers to obtain sensitive information via a direct request for the data/fileinfo.xml or job/job.json file, as demonstrated the Master Pa…	CWE-200 Information Exposure	CVE-2018-12594	2024-11-21 12:45	2018-06-20	Show	GitHub Exploit DB Packet Storm

248569	7.5	HIGH Network	polycom	realpresence_web_suite	Polycom RealPresence Web Suite before 2.2.0 does not block a user's video for a few seconds upon joining a meeting (when the user has explicitly chosen to turn off the video using a specific option).…	CWE-200 Information Exposure	CVE-2018-12592	2024-11-21 12:45	2018-06-20	Show	GitHub Exploit DB Packet Storm

248570	7.2	HIGH Network	ubnt	edgeswitch_firmware	Ubiquiti Networks EdgeSwitch version 1.7.3 and prior suffer from an improperly neutralized element in an OS command due to lack of protection on the admin CLI, leading to code execution and privilege…	CWE-78 OS Command	CVE-2018-12591	2024-11-21 12:45	2018-06-20	Show	GitHub Exploit DB Packet Storm