Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 12:08 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259801 2.6 注意 CA Technologies - CA eHealth Performance Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-0640 2010-12-27 11:44 2010-02-24 Show GitHub Exploit DB Packet Storm
259802 9.3 危険 CA Technologies - CA eTrust PestPatrol の PestPatrol ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-4225 2010-12-27 11:41 2009-12-8 Show GitHub Exploit DB Packet Storm
259803 4.3 警告 CA Technologies - CA Service Desk の Web インターフェイスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-4149 2010-12-27 11:38 2009-12-8 Show GitHub Exploit DB Packet Storm
259804 4.3 警告 CA Technologies - 複数の CA 製品の Anti-Virus エンジン内にある arclib コンポーネントおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2009-3588 2010-12-27 11:36 2009-10-8 Show GitHub Exploit DB Packet Storm
259805 9.3 危険 CA Technologies - 複数の CA 製品の Anti-Virus エンジン内にある arclib コンポーネントにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2009-3587 2010-12-27 11:32 2009-10-8 Show GitHub Exploit DB Packet Storm
259806 5 警告 CA Technologies - CA Host-Based Intrusion Prevention System の kmxIds.sys におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2009-2740 2010-12-27 11:24 2009-08-18 Show GitHub Exploit DB Packet Storm
259807 4.3 警告 CA Technologies - CA SiteMinder における J2EE アプリケーションのクロスサイトスクリプティングに対する保護を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-2705 2010-12-27 11:19 2009-08-11 Show GitHub Exploit DB Packet Storm
259808 4.3 警告 CA Technologies - CA SiteMinder における J2EE アプリケーションのクロスサイトスクリプティングに対する保護を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-2704 2010-12-27 10:47 2009-08-11 Show GitHub Exploit DB Packet Storm
259809 10 危険 CA Technologies - 複数の CA 製品の Data Transport Services におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-2026 2010-12-27 10:45 2009-08-6 Show GitHub Exploit DB Packet Storm
259810 5 警告 CA Technologies - CA ARCserve Backup のメッセージエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2009-1761 2010-12-27 10:41 2009-06-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
249411 9.8 CRITICAL
Network
cimtechniques cimscan In CIMTechniques CIMScan 6.x through 6.2, the SOAP WSDL parser allows attackers to execute SQL code. CWE-89
SQL Injection
CVE-2018-16803 2024-11-21 12:53 2019-01-11 Show GitHub Exploit DB Packet Storm
249412 9.8 CRITICAL
Network
freebsd freebsd In FreeBSD before 11.2-STABLE(r348229), 11.2-RELEASE-p7, 12.0-STABLE(r342228), and 12.0-RELEASE-p1, insufficient validation of network-provided data in bootpd may make it possible for a malicious att… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-17161 2024-11-21 12:53 2019-01-4 Show GitHub Exploit DB Packet Storm
249413 5.5 MEDIUM
Local
linux
redhat
linux_kernel
enterprise_linux_server
A flaw was found in the Linux kernel that allows the userspace to call memcpy_fromiovecend() and similar functions with a zero offset and buffer length which causes the read beyond the buffer boundar… - CVE-2018-16885 2024-11-21 12:53 2019-01-4 Show GitHub Exploit DB Packet Storm
249414 8.8 HIGH
Local
linux
canonical
linux_kernel
ubuntu_linux
A use-after-free issue was found in the way the Linux kernel's KVM hypervisor processed posted interrupts when nested(=1) virtualization is enabled. In nested_get_vmcs12_pages(), in case of an error … CWE-416
 Use After Free
CVE-2018-16882 2024-11-21 12:53 2019-01-4 Show GitHub Exploit DB Packet Storm
249415 5.9 MEDIUM
Network
wolfssl wolfssl It was found that wolfssl before 3.15.7 is vulnerable to a new variant of the Bleichenbacher attack to perform downgrade attacks against TLS. This may lead to leakage of sensible data. CWE-310
Cryptographic Issues
CVE-2018-16870 2024-11-21 12:53 2019-01-4 Show GitHub Exploit DB Packet Storm
249416 5.3 MEDIUM
Network
redhat
debian
suse
canonical
ansible
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
ansible_engine
openstack
package_hub
ubuntu_linux
ansible before versions 2.5.14, 2.6.11, 2.7.5 is vulnerable to a information disclosure flaw in vvv+ mode with no_log on that can lead to leakage of sensible data. CWE-200
Information Exposure
CVE-2018-16876 2024-11-21 12:53 2019-01-4 Show GitHub Exploit DB Packet Storm
249417 9.8 CRITICAL
Network
redhat ansible_tower Ansible Tower before version 3.3.3 does not set a secure channel as it is using the default insecure configuration channel settings for messaging celery workers from RabbitMQ. This could lead in data… CWE-311
Missing Encryption of Sensitive Data
CVE-2018-16879 2024-11-21 12:53 2019-01-3 Show GitHub Exploit DB Packet Storm
249418 5.4 MEDIUM
Network
modx evolution_cms Evolution CMS 1.4.x allows XSS via the manager/ search parameter. CWE-79
Cross-site Scripting
CVE-2018-16638 2024-11-21 12:53 2018-12-29 Show GitHub Exploit DB Packet Storm
249419 5.4 MEDIUM
Network
modx evolution_cms Evolution CMS 1.4.x allows XSS via the page weblink title parameter to the manager/ URI. CWE-79
Cross-site Scripting
CVE-2018-16637 2024-11-21 12:53 2018-12-29 Show GitHub Exploit DB Packet Storm
249420 4.8 MEDIUM
Network
jupo mezzanine Mezzanine CMS v4.3.1 allows XSS via the /admin/blog/blogcategory/add/?_to_field=id&_popup=1 title parameter at admin/blog/blogpost/add/. CWE-79
Cross-site Scripting
CVE-2018-16632 2024-11-21 12:53 2018-12-29 Show GitHub Exploit DB Packet Storm