Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258781 4.4 警告 Todd C. Miller
レッドハット
- sudo の check.c における認証要求を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-0010 2011-05-31 11:41 2011-01-18 Show GitHub Exploit DB Packet Storm
258782 - - SmarterTools Inc. - SmarterTools 製ウェブサーバに複数の脆弱性 - - 2011-05-31 11:40 2011-05-19 Show GitHub Exploit DB Packet Storm
258783 - - OpenSSL Project - OpenSSL における ECDSA 秘密鍵が漏えいしてしまう問題 - - 2011-05-31 11:23 2011-05-18 Show GitHub Exploit DB Packet Storm
258784 4.3 警告 Apache Software Foundation - Apache Tomcat におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1582 2011-05-31 11:19 2011-05-8 Show GitHub Exploit DB Packet Storm
258785 4.3 警告 CA Technologies - CA eHealth におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-1899 2011-05-31 11:16 2011-05-10 Show GitHub Exploit DB Packet Storm
258786 4.3 警告 ISC, Inc. - ISC BIND におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1907 2011-05-31 11:09 2011-05-5 Show GitHub Exploit DB Packet Storm
258787 7.8 危険 日本電気
ヤマハ
- ヤマハルーターシリーズにおけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題
CVE-2011-1323 2011-05-31 10:37 2011-04-20 Show GitHub Exploit DB Packet Storm
258788 4 警告 シックス・アパート株式会社 - Movable Type におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-4634 2011-05-31 10:35 2008-10-17 Show GitHub Exploit DB Packet Storm
258789 5 警告 アドビシステムズ - Adobe Flash Media Server におけるサービス運用妨害 (XML データ破損) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-0612 2011-05-27 11:19 2011-05-12 Show GitHub Exploit DB Packet Storm
258790 9.3 危険 アドビシステムズ - Windows 上で稼働する Adobe Audition におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-0615 2011-05-27 10:50 2011-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
253621 3.1 LOW
Adjacent
polycom realpresence_debut_firmware An issue was discovered in versions earlier than 1.3.2 for Polycom RealPresence Debut where the admin cookie is reset only after a Debut is rebooted. CWE-20
 Improper Input Validation 
CVE-2018-10947 2024-11-21 12:42 2019-06-14 Show GitHub Exploit DB Packet Storm
253622 6.8 MEDIUM
Adjacent
polycom realpresence_debut_firmware An issue was discovered in versions earlier than 1.3.0-66872 for Polycom RealPresence Debut that allows attackers to arbitrarily read the admin user's password via the admin web UI. CWE-200
Information Exposure
CVE-2018-10946 2024-11-21 12:42 2019-06-14 Show GitHub Exploit DB Packet Storm
253623 4.8 MEDIUM
Network
synacor zimbra_collaboration_suite Synacor Zimbra Admin UI in Zimbra Collaboration Suite before 8.8.0 beta 2 has Persistent XSS via mail addrs. CWE-79
Cross-site Scripting
CVE-2018-10948 2024-11-21 12:42 2019-05-31 Show GitHub Exploit DB Packet Storm
253624 6.5 MEDIUM
Network
cloudera cloudera_manager An issue was discovered in Cloudera Manager before 5.13.4, 5.14.x before 5.14.4, and 5.15.x before 5.15.1. A read-only user can access sensitive cluster information. CWE-200
Information Exposure
CVE-2018-10815 2024-11-21 12:42 2019-05-25 Show GitHub Exploit DB Packet Storm
253625 7.5 HIGH
Network
beyondtrust avecto_defendpoint Avecto Defendpoint 4 prior to 4.4 SR6 and 5 prior to 5.1 SR1 has an Untrusted Search Path vulnerability, exploitable by modifying environment variables to trigger automatic elevation of an attacker's… CWE-426
 Untrusted Search Path
CVE-2018-10959 2024-11-21 12:42 2019-04-18 Show GitHub Exploit DB Packet Storm
253626 5.4 MEDIUM
Network
redhat jboss_enterprise_application_platform
single_sign-on
A cross-site scripting (XSS) vulnerability was found in the JBoss Management Console versions before 7.1.6.CR1, 7.1.6.GA. Users with roles that can create objects in the application can exploit this … CWE-79
Cross-site Scripting
CVE-2018-10934 2024-11-21 12:42 2019-03-27 Show GitHub Exploit DB Packet Storm
253627 3.3 LOW
Local
bluez
canonical
bluez
ubuntu_linux
A bug in Bluez may allow for the Bluetooth Discoverable state being set to on when no Bluetooth agent is registered with the system. This situation could lead to the unauthorized pairing of certain B… - CVE-2018-10910 2024-11-21 12:42 2019-01-29 Show GitHub Exploit DB Packet Storm
253628 7.5 HIGH
Network
powerdns recursor
authoritative
PowerDNS Authoritative Server 3.3.0 up to 4.1.4 excluding 4.1.5 and 4.0.6, and PowerDNS Recursor 3.2 up to 4.1.4 excluding 4.1.5 and 4.0.9, are vulnerable to a memory leak while parsing malformed rec… CWE-772
 Missing Release of Resource after Effective Lifetime
CVE-2018-10851 2024-11-21 12:42 2018-11-30 Show GitHub Exploit DB Packet Storm
253629 5.5 MEDIUM
Local
pulsesecure pulse_secure_desktop_client Pulse Secure Desktop Client 5.3 up to and including R6.0 build 1769 on Windows has Insecure Permissions. CWE-732
 Incorrect Permission Assignment for Critical Resource
CVE-2018-11002 2024-11-21 12:42 2018-11-30 Show GitHub Exploit DB Packet Storm
253630 6.7 MEDIUM
Local
dell
vmware
emc_integrated_data_protection_appliance
emc_avamar
vsphere_data_protection
'getlogs' utility in Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0, 7.4.1, 7.5.0, 7.5.1 and 18.1 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1 and 2.2… CWE-78
OS Command 
CVE-2018-11077 2024-11-21 12:42 2018-11-27 Show GitHub Exploit DB Packet Storm