Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259111 5.8 警告 Apache Software Foundation - Apache Tomcat におけるアクセス制限を回避される脆弱性 CWE-DesignError
CVE-2011-1088 2011-04-6 17:23 2011-03-11 Show GitHub Exploit DB Packet Storm
259112 9.3 危険 マイクロソフト - Microsoft Groove 2007 における権限昇格の脆弱性 CWE-Other
その他
CVE-2010-3146 2011-04-6 17:09 2011-03-8 Show GitHub Exploit DB Packet Storm
259113 9.3 危険 マイクロソフト - Microsoft Remote Desktop Connection のクライアントにおける権限昇格の脆弱性 CWE-Other
その他
CVE-2011-0029 2011-04-6 16:57 2011-03-8 Show GitHub Exploit DB Packet Storm
259114 9.3 危険 マイクロソフト - 複数の Microsoft 製品の SBE.dll における権限昇格の脆弱性 CWE-20
不適切な入力確認
CVE-2011-0042 2011-04-6 16:53 2011-03-8 Show GitHub Exploit DB Packet Storm
259115 9.3 危険 マイクロソフト - 複数の Microsoft 製品の DirectShow における権限昇格の脆弱性 CWE-Other
その他
CVE-2011-0032 2011-04-6 16:17 2011-03-8 Show GitHub Exploit DB Packet Storm
259116 7.5 危険 IBM - IBM WAS の Plug-in コンポーネントにおける Trace リクエストの処理に関する脆弱性 CWE-20
不適切な入力確認
CVE-2011-1309 2011-04-5 15:52 2011-02-28 Show GitHub Exploit DB Packet Storm
259117 4.3 警告 IBM - IBM WAS の Installation Verification Test アプリケーションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-1308 2011-04-5 15:47 2011-02-28 Show GitHub Exploit DB Packet Storm
259118 10 危険 サイバートラスト株式会社
レッドハット
- Logwatch の logwatch.pl における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-1018 2011-04-5 15:20 2011-02-25 Show GitHub Exploit DB Packet Storm
259119 2.1 注意 レッドハット - Control Group Configuration Library の cgre_receive_netlink_msg 関数におけるリソース制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1022 2011-04-5 15:01 2011-03-3 Show GitHub Exploit DB Packet Storm
259120 7.2 危険 レッドハット - Control Group Configuration Library の parse_cgroup_spec 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-1006 2011-04-5 14:58 2011-03-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
249461 6.5 MEDIUM
Network
samba
canonical
debian
samba
ubuntu_linux
debian_linux
Samba from version 4.0.0 and before versions 4.7.12, 4.8.7, 4.9.3 is vulnerable to a denial of service. During the processing of an LDAP search before Samba's AD DC returns the LDAP entries to the cl… CWE-476
 NULL Pointer Dereference
CVE-2018-16851 2024-11-21 12:53 2018-11-28 Show GitHub Exploit DB Packet Storm
249462 6.5 MEDIUM
Network
samba
canonical
debian
samba
ubuntu_linux
debian_linux
Samba from version 4.3.0 and before versions 4.7.12, 4.8.7 and 4.9.3 are vulnerable to a denial of service. When configured to accept smart-card authentication, Samba's KDC will call talloc_free() tw… CWE-415
 Double Free
CVE-2018-16841 2024-11-21 12:53 2018-11-28 Show GitHub Exploit DB Packet Storm
249463 5.5 MEDIUM
Local
linux
redhat
canonical
debian
linux_kernel
enterprise_linux
ubuntu_linux
debian_linux
A security flaw was found in the Linux kernel in a way that the cleancache subsystem clears an inode after the final file truncation (removal). The new file created with the same inode may contain le… CWE-200
Information Exposure
CVE-2018-16862 2024-11-21 12:53 2018-11-27 Show GitHub Exploit DB Packet Storm
249464 8.8 HIGH
Network
moodle moodle A flaw was found in moodle versions 3.5 to 3.5.2, 3.4 to 3.4.5, 3.3 to 3.3.8, 3.1 to 3.1.14 and earlier. The login form is not protected by a token to prevent login cross-site request forgery. Fixed … CWE-352
 Origin Validation Error
CVE-2018-16854 2024-11-21 12:53 2018-11-27 Show GitHub Exploit DB Packet Storm
249465 7.2 HIGH
Network
sonatype nexus_repository_manager Sonatype Nexus Repository Manager before 3.14 allows Java Expression Language Injection. CWE-917
 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')
CVE-2018-16621 2024-11-21 12:53 2018-11-16 Show GitHub Exploit DB Packet Storm
249466 7.5 HIGH
Network
sonatype nexus_repository_manager Sonatype Nexus Repository Manager before 3.14 has Incorrect Access Control. CWE-863
 Incorrect Authorization
CVE-2018-16620 2024-11-21 12:53 2018-11-16 Show GitHub Exploit DB Packet Storm
249467 6.1 MEDIUM
Network
sonatype nexus_repository_manager Sonatype Nexus Repository Manager before 3.14 allows XSS. CWE-79
Cross-site Scripting
CVE-2018-16619 2024-11-21 12:53 2018-11-16 Show GitHub Exploit DB Packet Storm
249468 9.8 CRITICAL
Network
postgresql
redhat
canonical
postgresql
enterprise_linux
ubuntu_linux
postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cau… CWE-89
SQL Injection
CVE-2018-16850 2024-11-21 12:53 2018-11-14 Show GitHub Exploit DB Packet Storm
249469 6.1 MEDIUM
Local
f5
debian
canonical
opensuse
apple
nginx
debian_linux
ubuntu_linux
leap
xcode
nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might r… - CVE-2018-16845 2024-11-21 12:53 2018-11-7 Show GitHub Exploit DB Packet Storm
249470 7.5 HIGH
Network
f5
debian
canonical
apple
nginx
debian_linux
ubuntu_linux
xcode
nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not … - CVE-2018-16844 2024-11-21 12:53 2018-11-7 Show GitHub Exploit DB Packet Storm