NVD脆弱性情報トップ
検索メニュー表示
ベンダー名
プロダクト・サービス名
タイトル
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
公表日降順
更新日降順
表示数

NVD(National Vulnerability Database)で管理されている脆弱性の一覧を検索することが出来ます。
JVN(Japan Vulnerability Note)より先に脆弱性情報が更新される事が多いため、JVNに未記載の脆弱性が更新されている場合があります。

JVN(Japan Vulnerability Note)に関連した脆弱性がある場合は詳細画面で情報を表示します。

CWEで検索する場合は、CWE概要を参照して、CWE番号を確認してください。

  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW

更新日:2026年6月13日4:20

No CVSS レベル
攻撃区分		 ベンダー名 プロダクト名 タイトル CWE CVE 更新日 公表日 影響表示 Exploit
PoC
検索
249201 7.5 HIGH
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader versions 2018.011.20058 and earlier, 2017.011.30099 and earlier, and 2015.006.30448 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead t… CWE-125
境界外読み取り 		CVE-2018-12840 2024-11-21 12:45 2018-09-25 表示 GitHub Exploit DB Packet Storm
249202 7.5 HIGH
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader versions 2018.011.20058 and earlier, 2017.011.30099 and earlier, and 2015.006.30448 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead t… CWE-125
境界外読み取り 		CVE-2018-12801 2024-11-21 12:45 2018-09-25 表示 GitHub Exploit DB Packet Storm
249203 7.5 HIGH
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader versions 2018.011.20058 and earlier, 2017.011.30099 and earlier, and 2015.006.30448 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead t… CWE-125
境界外読み取り 		CVE-2018-12778 2024-11-21 12:45 2018-09-25 表示 GitHub Exploit DB Packet Storm
249204 7.5 HIGH
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader versions 2018.011.20058 and earlier, 2017.011.30099 and earlier, and 2015.006.30448 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead t… CWE-125
境界外読み取り 		CVE-2018-12775 2024-11-21 12:45 2018-09-25 表示 GitHub Exploit DB Packet Storm
249205 7.5 HIGH
ネットワーク 		substratum substratum In the mintToken function of a smart contract implementation for Substratum (SUB), an Ethereum ERC20 token, the administrator can control mintedAmount, leverage an integer overflow, and modify a user… CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2018-12511 2024-11-21 12:45 2018-09-22 表示 GitHub Exploit DB Packet Storm
249206 8.2 HIGH
ネットワーク 		opcfoundation ua-.net-legacy
ua-java 		An XXE vulnerability in the OPC UA Java and .NET Legacy Stack can allow remote attackers to trigger a denial of service. CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2018-12585 2024-11-21 12:45 2018-09-15 表示 GitHub Exploit DB Packet Storm
249207 7.5 HIGH
ネットワーク 		mobyproject moby An issue was discovered in Docker Moby before 17.06.0. The Docker engine validated a client TLS certificate using both the configured client CA root certificate and all system roots on non-Windows sy… CWE-295
不正な証明書検証 		CVE-2018-12608 2024-11-21 12:45 2018-09-11 表示 GitHub Exploit DB Packet Storm
249208 8.0 HIGH
隣接 		dlink dir-601_firmware An issue was discovered on D-Link DIR-601 2.02NA devices. Being local to the network and having only "User" account (which is a low privilege account) access, an attacker can intercept the response f… CWE-319
重要な情報の平文での送信 		CVE-2018-12710 2024-11-21 12:45 2018-08-30 表示 GitHub Exploit DB Packet Storm
249209 9.8 CRITICAL
ネットワーク 		adobe creative_cloud Adobe Creative Cloud Desktop Application before 4.6.1 has an improper certificate validation vulnerability. Successful exploitation could lead to privilege escalation. CWE-295
不正な証明書検証 		CVE-2018-12829 2024-11-21 12:45 2018-08-29 表示 GitHub Exploit DB Packet Storm
249210 9.8 CRITICAL
ネットワーク 		adobe
redhat 		flash_player
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation 		Adobe Flash Player 30.0.0.134 and earlier have a "use of a component with a known vulnerability" vulnerability. Successful exploitation could lead to privilege escalation. NVD-CWE-noinfo
CVE-2018-12828 2024-11-21 12:45 2018-08-29 表示 GitHub Exploit DB Packet Storm
249211 7.5 HIGH
ネットワーク 		adobe
redhat 		flash_player
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation 		Adobe Flash Player 30.0.0.134 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. CWE-125
境界外読み取り 		CVE-2018-12827 2024-11-21 12:45 2018-08-29 表示 GitHub Exploit DB Packet Storm
249212 7.5 HIGH
ネットワーク 		adobe
redhat 		flash_player
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation 		Adobe Flash Player 30.0.0.134 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. CWE-125
境界外読み取り 		CVE-2018-12826 2024-11-21 12:45 2018-08-29 表示 GitHub Exploit DB Packet Storm
249213 9.8 CRITICAL
ネットワーク 		adobe
redhat 		flash_player
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation 		Adobe Flash Player 30.0.0.134 and earlier have a security bypass vulnerability. Successful exploitation could lead to security mitigation bypass. NVD-CWE-noinfo
CVE-2018-12825 2024-11-21 12:45 2018-08-29 表示 GitHub Exploit DB Packet Storm
249214 5.9 MEDIUM
ネットワーク 		adobe
redhat 		flash_player_desktop_runtime
flash_player
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation 		Adobe Flash Player 30.0.0.134 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. CWE-125
境界外読み取り 		CVE-2018-12824 2024-11-21 12:45 2018-08-29 表示 GitHub Exploit DB Packet Storm
249215 9.8 CRITICAL
ネットワーク 		adobe photoshop_cc Adobe Photoshop CC 2018 before 19.1.6 and Photoshop CC 2017 before 18.1.6 have a memory corruption vulnerability. Successful exploitation could lead to remote code execution. CWE-119
バッファエラー 		CVE-2018-12811 2024-11-21 12:45 2018-08-29 表示 GitHub Exploit DB Packet Storm
249216 9.8 CRITICAL
ネットワーク 		adobe photoshop_cc Adobe Photoshop CC 2018 before 19.1.6 and Photoshop CC 2017 before 18.1.6 have a memory corruption vulnerability. Successful exploitation could lead to remote code execution. CWE-119
バッファエラー 		CVE-2018-12810 2024-11-21 12:45 2018-08-29 表示 GitHub Exploit DB Packet Storm
249217 9.8 CRITICAL
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader versions 2018.011.20055 and earlier, 2017.011.30096 and earlier, and 2015.006.30434 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead … CWE-787
境界外書き込み 		CVE-2018-12808 2024-11-21 12:45 2018-08-29 表示 GitHub Exploit DB Packet Storm
249218 5.3 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have an input validation bypass vulnerability. Successful exploitation could lead to unauthorized information modification. CWE-20
不適切な入力確認 		CVE-2018-12807 2024-11-21 12:45 2018-08-29 表示 GitHub Exploit DB Packet Storm
249219 6.1 MEDIUM
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have a reflected cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2018-12806 2024-11-21 12:45 2018-08-29 表示 GitHub Exploit DB Packet Storm
249220 8.8 HIGH
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader versions 2018.011.20055 and earlier, 2017.011.30096 and earlier, and 2015.006.30434 and earlier have an untrusted pointer dereference vulnerability. Successful exploitation c… CWE-476
NULL ポインタデリファレンス 		CVE-2018-12799 2024-11-21 12:45 2018-08-29 表示 GitHub Exploit DB Packet Storm
249221 8.1 HIGH
ネットワーク 		oxid-esales eshop An issue was discovered in OXID eShop Enterprise Edition before 5.3.8, 6.0.x before 6.0.3, and 6.1.x before 6.1.0; Professional Edition before 4.10.8, 5.x and 6.0.x before 6.0.3, and 6.1.x before 6.1… CWE-640
パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み 		CVE-2018-12579 2024-11-21 12:45 2018-08-21 表示 GitHub Exploit DB Packet Storm
249222 7.8 HIGH
ローカル 		eclipse
oracle 		openj9
enterprise_manager_base_platform 		In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach API to connect to an Eclipse OpenJ9 or IBM JVM on the same machine and use Attach API operations, whic… CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2018-12539 2024-11-21 12:45 2018-08-15 表示 GitHub Exploit DB Packet Storm
249223 5.3 MEDIUM
ネットワーク 		eclipse vert.x In Eclipse Vert.x version 3.0 to 3.5.1, the HttpServer response headers and HttpClient request headers do not filter carriage return and line feed characters from the header value. This allow unfilte… CWE-20
不適切な入力確認 		CVE-2018-12537 2024-11-21 12:45 2018-08-15 表示 GitHub Exploit DB Packet Storm
249224 6.1 MEDIUM
ネットワーク 		german_spelling_dictionary_project german_spelling_dictionary A cross-site scripting (XSS) vulnerability was found in valeuraddons German Spelling Dictionary v1.3 (an Opera Browser add-on). Instead of providing text for a spelling check, remote attackers may in… CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2018-12587 2024-11-21 12:45 2018-08-14 表示 GitHub Exploit DB Packet Storm
249225 7.5 HIGH
ネットワーク 		tibco activematrix_businessworks
activematrix_businessworks_distribution_for_tibco_silver_fabric 		The BusinessWorks engine component of TIBCO Software Inc.'s TIBCO ActiveMatrix BusinessWorks, TIBCO ActiveMatrix BusinessWorks for z/Linux, and TIBCO ActiveMatrix BusinessWorks Distribution for TIBCO… CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2018-12408 2024-11-21 12:45 2018-08-8 表示 GitHub Exploit DB Packet Storm
249226 8.8 HIGH
ネットワーク 		ocsinventory-ng ocsinventory_ng OCS Inventory 2.4.1 is prone to a remote command-execution vulnerability. Specifically, this issue occurs because the content of the ipdiscover_analyser rzo GET parameter is concatenated to a string … CWE-78
OSコマンド・インジェクション 		CVE-2018-12483 2024-11-21 12:45 2018-08-4 表示 GitHub Exploit DB Packet Storm
249227 8.8 HIGH
ネットワーク 		ocsinventory-ng ocsinventory_ng OCS Inventory 2.4.1 contains multiple SQL injections in the search engine. Authentication is needed in order to exploit the issues. CWE-89
SQLインジェクション 		CVE-2018-12482 2024-11-21 12:45 2018-08-4 表示 GitHub Exploit DB Packet Storm
249228 5.4 MEDIUM
ネットワーク 		gitlab gitlab An issue was discovered in GitLab Community Edition and Enterprise Edition before 10.7.6, 10.8.x before 10.8.5, and 11.x before 11.0.1. The charts feature contained a persistent XSS issue due to a la… CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2018-12607 2024-11-21 12:45 2018-08-4 表示 GitHub Exploit DB Packet Storm
249229 5.4 MEDIUM
ネットワーク 		gitlab gitlab An issue was discovered in GitLab Community Edition and Enterprise Edition before 10.7.6, 10.8.x before 10.8.5, and 11.x before 11.0.1. The wiki contains a persistent XSS issue due to a lack of outpu… CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2018-12606 2024-11-21 12:45 2018-08-4 表示 GitHub Exploit DB Packet Storm
249230 5.4 MEDIUM
ネットワーク 		gitlab gitlab An issue was discovered in GitLab Community Edition and Enterprise Edition 10.7.x before 10.7.6. The usage of 'url_for' contained a XSS issue due to it allowing arbitrary protocols as a parameter. CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2018-12605 2024-11-21 12:45 2018-08-4 表示 GitHub Exploit DB Packet Storm
249231 5.3 MEDIUM
ネットワーク 		navercorp whale Whale Browser before 1.3.48.4 displays no URL information but only a title of a web page on the browser's address bar when visiting a non-http page, which allows an attacker to display a malicious we… CWE-20
不適切な入力確認 		CVE-2018-12448 2024-11-21 12:45 2018-08-2 表示 GitHub Exploit DB Packet Storm
249232 7.2 HIGH
ネットワーク 		microfocus groupwise A vulnerability in the administration console of Micro Focus GroupWise prior to version 18.0.2 may allow a remote attacker authenticated as an administrator to upload files to an arbitrary path on th… CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2018-12468 2024-11-21 12:45 2018-08-2 表示 GitHub Exploit DB Packet Storm
249233 6.5 MEDIUM
ネットワーク 		opensuse open_build_service Authorized users of the openbuildservice before 2.9.4 could delete packages by using a malicious request against projects having the OBS:InitializeDevelPackage attribute, a similar issue to CVE-2018-… CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2018-12467 2024-11-21 12:45 2018-08-2 表示 GitHub Exploit DB Packet Storm
249234 6.5 MEDIUM
ネットワーク 		opensuse open_build_service openSUSE openbuildservice before 9.2.4 allowed authenticated users to delete packages on specific projects with project links. CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2018-12466 2024-11-21 12:45 2018-08-2 表示 GitHub Exploit DB Packet Storm
249235 9.8 CRITICAL
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have a Use-after-free vulnerability. Successful exploitation could lead to arb… CWE-416
解放済みメモリの使用 		CVE-2018-12815 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm
249236 9.8 CRITICAL
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier versions have a Type Confusion vulnerability. Successful exploitation could lead to arb… CWE-704
不正な型変換またはキャスト 		CVE-2018-12812 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm
249237 7.5 HIGH
ネットワーク 		adobe experience_manager Adobe Experience Manager versions 6.4 and earlier have a Server-Side Request Forgery vulnerability. Successful exploitation could lead to sensitive information disclosure. CWE-918
サーバサイドリクエストフォージェリ 		CVE-2018-12809 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm
249238 9.8 CRITICAL
ネットワーク 		adobe connect Adobe Connect versions 9.7.5 and earlier have an Insecure Library Loading vulnerability. Successful exploitation could lead to privilege escalation. CWE-427
制御されていない検索パスの要素 		CVE-2018-12805 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm
249239 9.8 CRITICAL
ネットワーク 		adobe connect Adobe Connect versions 9.7.5 and earlier have an Authentication Bypass vulnerability. Successful exploitation could lead to session hijacking. CWE-287
不適切な認証 		CVE-2018-12804 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm
249240 6.5 MEDIUM
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead t… CWE-125
境界外読み取り 		CVE-2018-12803 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm
249241 9.8 CRITICAL
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have a Security Bypass vulnerability. Successful exploitation could lead to pr… NVD-CWE-noinfo
CVE-2018-12802 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm
249242 9.8 CRITICAL
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have a Heap Overflow vulnerability. Successful exploitation could lead to arbi… CWE-787
境界外書き込み 		CVE-2018-12798 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm
249243 8.8 HIGH
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have a Use-after-free vulnerability. Successful exploitation could lead to arb… CWE-416
解放済みメモリの使用 		CVE-2018-12797 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm
249244 8.8 HIGH
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have a Use-after-free vulnerability. Successful exploitation could lead to arb… CWE-416
解放済みメモリの使用 		CVE-2018-12796 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm
249245 7.5 HIGH
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead t… CWE-125
境界外読み取り 		CVE-2018-12795 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm
249246 8.8 HIGH
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have a Type Confusion vulnerability. Successful exploitation could lead to arb… CWE-704
不正な型変換またはキャスト 		CVE-2018-12794 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm
249247 6.5 MEDIUM
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have a Type Confusion vulnerability. Successful exploitation could lead to arb… CWE-704
不正な型変換またはキャスト 		CVE-2018-12793 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm
249248 9.8 CRITICAL
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have a Use-after-free vulnerability. Successful exploitation could lead to arb… CWE-416
解放済みメモリの使用 		CVE-2018-12792 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm
249249 9.8 CRITICAL
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have a Use-after-free vulnerability. Successful exploitation could lead to arb… CWE-416
解放済みメモリの使用 		CVE-2018-12791 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm
249250 6.5 MEDIUM
ネットワーク 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have an Out-of-bounds read vulnerability. Successful exploitation could lead t… CWE-125
境界外読み取り 		CVE-2018-12790 2024-11-21 12:45 2018-07-21 表示 GitHub Exploit DB Packet Storm