Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
259541 7.2 危険 マイクロソフト - 複数の Microsoft 製品の Consent User Interface における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3961 2011-01-17 15:06 2010-12-14 Show GitHub Exploit DB Packet Storm
259542 7.2 危険 マイクロソフト - Microsoft Windows 製品の Routing and Remote Access NDProxy コンポーネントにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3963 2011-01-17 15:03 2010-12-14 Show GitHub Exploit DB Packet Storm
259543 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3944 2011-01-17 14:45 2010-12-14 Show GitHub Exploit DB Packet Storm
259544 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3943 2011-01-17 14:38 2010-12-14 Show GitHub Exploit DB Packet Storm
259545 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2010-3942 2011-01-17 14:35 2010-12-14 Show GitHub Exploit DB Packet Storm
259546 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3941 2011-01-17 14:29 2010-12-14 Show GitHub Exploit DB Packet Storm
259547 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3940 2011-01-14 15:55 2010-12-14 Show GitHub Exploit DB Packet Storm
259548 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3939 2011-01-14 15:53 2010-12-14 Show GitHub Exploit DB Packet Storm
259549 9.3 危険 マイクロソフト - Microsoft Windows の Internet Connection Signup Wizard における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3144 2011-01-14 15:49 2010-12-14 Show GitHub Exploit DB Packet Storm
259550 9.3 危険 マイクロソフト - Windows Address Book の wab.exe における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3147 2011-01-14 15:47 2010-12-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248511 7.8 HIGH
Local 		advantech webaccess WebAccess Versions 8.3.2 and prior. During installation, the application installer disables user access control and does not re-enable it after the installation is complete. This could allow an attac… CWE-284
Improper Access Control 		CVE-2018-17908 2024-11-21 12:55 2018-10-30 Show GitHub Exploit DB Packet Storm
248512 6.1 MEDIUM
Network 		geovap reliance_4 Reliance 4 SCADA/HMI, Version 4.7.3 Update 3 and prior. This vulnerability could allow an unauthorized attacker to inject arbitrary code. CWE-79
Cross-site Scripting 		CVE-2018-17904 2024-11-21 12:55 2018-10-26 Show GitHub Exploit DB Packet Storm
248513 6.9 MEDIUM
Physics 		sagaradio saga1-l8b_firmware SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that an attacker with physical access to the product may able to reprogram it. CWE-287
Improper Authentication 		CVE-2018-17923 2024-11-21 12:55 2018-10-25 Show GitHub Exploit DB Packet Storm
248514 8.8 HIGH
Adjacent 		sagaradio saga1-l8b_firmware SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction. NVD-CWE-Other
CVE-2018-17921 2024-11-21 12:55 2018-10-25 Show GitHub Exploit DB Packet Storm
248515 9.1 CRITICAL
Network 		sagaradio saga1-l8b_firmware SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to a replay attack and command forgery. CWE-294
Authentication Bypass by Capture-replay  		CVE-2018-17903 2024-11-21 12:55 2018-10-25 Show GitHub Exploit DB Packet Storm
248516 7.8 HIGH
Local 		citrix xenmobile_server * Lack of authentication in Citrix Xen Mobile through 10.8 allows low-privileged local users to execute system commands as root by making requests to private services listening on ports 8000, 30000 a… CWE-287
Improper Authentication 		CVE-2018-18014 2024-11-21 12:55 2018-10-25 Show GitHub Exploit DB Packet Storm
248517 7.8 HIGH
Local 		citrix xenmobile_server * Xen Mobile through 10.8.0 includes a service listening on port 5001 within its firewall that accepts unauthenticated input. If this service is supplied with raw serialised Java objects, it deserial… CWE-502
 Deserialization of Untrusted Data 		CVE-2018-18013 2024-11-21 12:55 2018-10-25 Show GitHub Exploit DB Packet Storm
248518 8.1 HIGH
Adjacent 		telecrane f25-2s_firmware
f25-2d_firmware
f25-4s_firmware
f25-4d_firmware
f25-6s_firmware
f25-6d_firmware
f25-8s_firmware
f25-8d_firmware
f25-10s_firmware
f25-10d_firmware
f25-60_… 		All versions of Telecrane F25 Series Radio Controls before 00.0A use fixed codes that are reproducible by sniffing and re-transmission. This can lead to unauthorized replay of a command, spoofing of … CWE-294
Authentication Bypass by Capture-replay  		CVE-2018-17935 2024-11-21 12:55 2018-10-24 Show GitHub Exploit DB Packet Storm
248519 9.8 CRITICAL
Network 		zohocorp manageengine_opmanager Zoho ManageEngine OpManager before 12.3 build 123214 allows Unrestricted Arbitrary File Upload. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-18475 2024-11-21 12:55 2018-10-24 Show GitHub Exploit DB Packet Storm
248520 7.5 HIGH
Network 		conversations conversations An issue was discovered in Daniel Gultsch Conversations 2.3.4. It is possible to spoof a custom message to an existing opened conversation by sending an intent. CWE-200
Information Exposure 		CVE-2018-18467 2024-11-21 12:55 2018-10-24 Show GitHub Exploit DB Packet Storm