NVD Vulnerability Information Top

Show Search Menu

Vendor Name
プロダクト・サービス名
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

NVD Vulnerability Information Top

You can search the list of vulnerabilities managed by the NVD (National Vulnerability Database).
Since vulnerability information is often updated before JVN (Japan Vulnerability Note), vulnerabilities that are not listed in JVN may be updated.

If there is a vulnerability related to JVN (Japan Vulnerability Note), the information will be displayed on the detail page.

To search by CWE, please refer to the CWE Overview and check the CWE number.

CRITICAL
HIGH
MEDIUM
LOW

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346501	7.2	HIGH	caldera suse	openlinux suse_linux	Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname.	NVD-CWE-Other	CVE-2000-0218	2008-09-11 04:03	2000-02-3	Show	GitHub Exploit DB Packet Storm

346502	5.0	MEDIUM	nortel	nautica_marlin	The Nautica Marlin bridge allows remote attackers to cause a denial of service via a zero length UDP packet to the SNMP port.	NVD-CWE-Other	CVE-2000-0221	2008-09-11 04:03	2000-02-25	Show	GitHub Exploit DB Packet Storm

346503	7.2	HIGH	sam_hawker	wmcdplay	Buffer overflow in the wmcdplay CD player program for the WindowMaker desktop allows local users to gain root privileges via a long parameter.	NVD-CWE-Other	CVE-2000-0223	2008-09-11 04:03	2000-03-10	Show	GitHub Exploit DB Packet Storm

346504	7.2	HIGH	alessandro_rubini debian redhat suse	gpm debian_linux linux suse_linux	gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root.	NVD-CWE-Other	CVE-2000-0229	2008-09-11 04:03	2000-03-22	Show	GitHub Exploit DB Packet Storm

346505	7.2	HIGH	halloween redhat	halloween_linux linux	Buffer overflow in imwheel allows local users to gain root privileges via the imwheel-solo script and a long HOME environmental variable.	NVD-CWE-Other	CVE-2000-0230	2008-09-11 04:03	2000-03-13	Show	GitHub Exploit DB Packet Storm

346506	7.2	HIGH	halloween suse	halloween_linux suse_linux	Linux kreatecd trusts a user-supplied path that is used to find the cdrecord program, allowing local users to gain root privileges.	NVD-CWE-Other	CVE-2000-0231	2008-09-11 04:03	2000-03-16	Show	GitHub Exploit DB Packet Storm

346507	10.0	HIGH	suse	suse_linux_imap_server	SuSE Linux IMAP server allows remote attackers to bypass IMAP authentication and gain privileges.	NVD-CWE-Other	CVE-2000-0233	2008-09-11 04:03	2000-03-15	Show	GitHub Exploit DB Packet Storm

346508	6.4	MEDIUM	netscape	enterprise_server	Netscape Enterprise Server with Web Publishing enabled allows remote attackers to list arbitrary directories via a GET request for the /publisher directory, which provides a Java applet that allows t…	NVD-CWE-Other	CVE-2000-0237	2008-09-11 04:03	2000-03-11	Show	GitHub Exploit DB Packet Storm

346509	10.0	HIGH	redhat	linux	The web GUI for the Linux Virtual Server (LVS) software in the Red Hat Linux Piranha package has a backdoor password that allows remote attackers to execute arbitrary commands.	NVD-CWE-Other	CVE-2000-0248	2008-09-11 04:03	2000-04-24	Show	GitHub Exploit DB Packet Storm

346510	7.2	HIGH	ibm	aix	The AIX Fast Response Cache Accelerator (FRCA) allows local users to modify arbitrary files via the configuration capability in the frcactrl program.	NVD-CWE-Other	CVE-2000-0249	2008-09-11 04:03	2000-04-26	Show	GitHub Exploit DB Packet Storm

346511	7.2	HIGH	qnx	qnx	The crypt function in QNX uses weak encryption, which allows local users to decrypt passwords.	NVD-CWE-Other	CVE-2000-0250	2008-09-11 04:03	2000-04-14	Show	GitHub Exploit DB Packet Storm

346512	5.0	MEDIUM	hp	hp-ux vvos	HP-UX 11.04 VirtualVault (VVOS) sends data to unprivileged processes via an interface that has multiple aliased IP addresses.	NVD-CWE-Other	CVE-2000-0251	2008-09-11 04:03	2000-04-6	Show	GitHub Exploit DB Packet Storm

346513	5.0	MEDIUM	nbase-xyplex	edgeblaster	The Nbase-Xyplex EdgeBlaster router allows remote attackers to cause a denial of service via a scan for the FormMail CGI program.	NVD-CWE-Other	CVE-2000-0255	2008-09-11 04:03	2000-04-5	Show	GitHub Exploit DB Packet Storm

346514	2.1	LOW	redhat	linux	The X font server xfs in Red Hat Linux 6.x allows an attacker to cause a denial of service via a malformed request.	NVD-CWE-Other	CVE-2000-0263	2008-09-11 04:03	2000-04-16	Show	GitHub Exploit DB Packet Storm

346515	4.6	MEDIUM	cisco	catos	Cisco Catalyst 5.4.x allows a user to gain access to the "enable" mode without a password.	NVD-CWE-Other	CVE-2000-0267	2008-09-11 04:03	2000-04-20	Show	GitHub Exploit DB Packet Storm

346516	5.0	MEDIUM	cisco	ios accesspath as5200 as5300 as5800 system_controller_3640 voice_gateway_as5800 3660_router 7100_router 7200_router 7500_router ubr7200	Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it, which causes the system to reboot.	NVD-CWE-Other	CVE-2000-0268	2008-09-11 04:03	2000-04-20	Show	GitHub Exploit DB Packet Storm

346517	5.0	MEDIUM	symantec	pcanywhere	PCAnywhere allows remote attackers to cause a denial of service by terminating the connection before PCAnywhere provides a login prompt.	NVD-CWE-Other	CVE-2000-0273	2008-09-11 04:03	2000-04-9	Show	GitHub Exploit DB Packet Storm

346518	2.1	LOW	cryptocard	cryptoadmin	CRYPTOCard CryptoAdmin for PalmOS uses weak encryption to store a user's PIN number, which allows an attacker with access to the .PDB file to generate valid PT-1 tokens after cracking the PIN.	NVD-CWE-Other	CVE-2000-0275	2008-09-11 04:03	2000-04-10	Show	GitHub Exploit DB Packet Storm

346519	5.0	MEDIUM	saleslogix	corporation_eviewer	The SalesLogix Eviewer allows remote attackers to cause a denial of service by accessing the URL for the slxweb.dll administration program, which does not authenticate the user.	NVD-CWE-Other	CVE-2000-0278	2008-09-11 04:03	2000-08-3	Show	GitHub Exploit DB Packet Storm

346520	5.0	MEDIUM	be	beos	BeOS allows remote attackers to cause a denial of service via malformed packets whose length field is less than the length of the headers.	NVD-CWE-Other	CVE-2000-0279	2008-09-11 04:03	2000-04-7	Show	GitHub Exploit DB Packet Storm

346521	5.0	MEDIUM	talentsoft	web\+	TalentSoft webpsvr daemon in the Web+ shopping cart application allows remote attackers to read arbitrary files via a .. (dot dot) attack on the webplus CGI program.	NVD-CWE-Other	CVE-2000-0282	2008-09-11 04:03	2000-04-12	Show	GitHub Exploit DB Packet Storm

346522	7.2	HIGH	ibm	aix	dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to overwrite arbitrary files and gain privileges.	NVD-CWE-Other	CVE-1999-1552	2008-09-11 04:02	1994-07-20	Show	GitHub Exploit DB Packet Storm

346523	7.2	HIGH	nortel	optivity_net_architect	The bna_pass program in Optivity NETarchitect uses the PATH environmental variable for finding the "rm" program, which allows local users to execute arbitrary commands.	NVD-CWE-Other	CVE-2000-0009	2008-09-11 04:02	1999-12-29	Show	GitHub Exploit DB Packet Storm

346524	7.5	HIGH	analogx	simpleserver_www	Buffer overflow in AnalogX SimpleServer:WWW HTTP server allows remote attackers to execute commands via a long GET request.	NVD-CWE-Other	CVE-2000-0011	2008-09-11 04:02	1999-12-31	Show	GitHub Exploit DB Packet Storm

346525	10.0	HIGH	hughes	msql	Buffer overflow in w3-msql CGI program in miniSQL package allows remote attackers to execute commands.	NVD-CWE-Other	CVE-2000-0012	2008-09-11 04:02	1999-12-27	Show	GitHub Exploit DB Packet Storm

346526	7.2	HIGH	sgi	irix	IRIX soundplayer program allows local users to gain privileges by including shell metacharacters in a .wav file, which is executed via the midikeys program.	NVD-CWE-Other	CVE-2000-0013	2008-09-11 04:02	1999-12-31	Show	GitHub Exploit DB Packet Storm

346527	5.0	MEDIUM	michael_lamont	savant_webserver	Denial of service in Savant web server via a null character in the requested URL.	NVD-CWE-Other	CVE-2000-0014	2008-09-11 04:02	1999-12-28	Show	GitHub Exploit DB Packet Storm

346528	4.6	MEDIUM	ascend	cascadeview_ux	CascadeView TFTP server allows local users to gain privileges via a symlink attack.	NVD-CWE-Other	CVE-2000-0015	2008-09-11 04:02	1999-12-31	Show	GitHub Exploit DB Packet Storm

346529	5.0	MEDIUM	true_north	internet_anywhere_mail_server	Buffer overflow in Internet Anywhere POP3 Mail Server allows remote attackers to cause a denial of service or execute commands via a long username.	NVD-CWE-Other	CVE-2000-0016	2008-09-11 04:02	1999-10-1	Show	GitHub Exploit DB Packet Storm

346530	7.2	HIGH	windowmaker	wmmon	wmmon in FreeBSD allows local users to gain privileges via the .wmmonrc configuration file.	NVD-CWE-Other	CVE-2000-0018	2008-09-11 04:02	1999-12-22	Show	GitHub Exploit DB Packet Storm

346531	5.0	MEDIUM	lotus	domino_server	Lotus Domino HTTP server allows remote attackers to determine the real path of the server via a request to a non-existent script in /cgi-bin.	NVD-CWE-Other	CVE-2000-0021	2008-09-11 04:02	1999-12-1	Show	GitHub Exploit DB Packet Storm

346532	5.0	MEDIUM	lotus	domino_server	Lotus Domino HTTP server does not properly disable anonymous access for the cgi-bin directory.	NVD-CWE-Other	CVE-2000-0022	2008-09-11 04:02	1999-12-21	Show	GitHub Exploit DB Packet Storm

346533	5.0	MEDIUM	lotus	domino_server	Buffer overflow in Lotus Domino HTTP server allows remote attackers to cause a denial of service via a long URL.	NVD-CWE-Other	CVE-2000-0023	2008-09-11 04:02	1999-12-21	Show	GitHub Exploit DB Packet Storm

346534	6.2	MEDIUM	ibm	network_station_manager	IBM Network Station Manager NetStation allows local users to gain privileges via a symlink attack.	NVD-CWE-Other	CVE-2000-0027	2008-09-11 04:02	1999-12-27	Show	GitHub Exploit DB Packet Storm

346535	5.0	MEDIUM	trend_micro	interscan_viruswall	InterScan VirusWall SMTP scanner does not properly scan messages with malformed attachments.	NVD-CWE-Other	CVE-2000-0033	2008-09-11 04:02	1999-12-27	Show	GitHub Exploit DB Packet Storm

346536	5.0	MEDIUM	altavista	search_intranet	AltaVista search engine allows remote attackers to read files above the document root via a .. (dot dot) in the query.cgi CGI program.	NVD-CWE-Other	CVE-2000-0039	2008-09-11 04:02	1999-12-29	Show	GitHub Exploit DB Packet Storm

346537	10.0	HIGH	csm	mail_server	Buffer overflow in CSM mail server allows remote attackers to cause a denial of service or execute commands via a long HELO command.	NVD-CWE-Other	CVE-2000-0042	2008-09-11 04:02	1999-12-29	Show	GitHub Exploit DB Packet Storm

346538	7.5	HIGH	camshot	webcam_http_server	Buffer overflow in CamShot WebCam HTTP server allows remote attackers to execute commands via a long GET request.	NVD-CWE-Other	CVE-2000-0043	2008-09-11 04:02	1999-12-30	Show	GitHub Exploit DB Packet Storm

346539	10.0	HIGH	jgaa	warftpd	Macros in War FTP 1.70 and 1.67b2 allow local or remote attackers to read arbitrary files or execute commands.	NVD-CWE-Other	CVE-2000-0044	2008-09-11 04:02	2000-01-6	Show	GitHub Exploit DB Packet Storm

346540	7.5	HIGH	mirabilis	icq	Buffer overflow in ICQ 99b 1.1.1.1 client allows remote attackers to execute commands via a malformed URL within an ICQ message.	NVD-CWE-Other	CVE-2000-0046	2008-09-11 04:02	2000-01-10	Show	GitHub Exploit DB Packet Storm

346541	7.2	HIGH	corel	linux	get_it program in Corel Linux Update allows local users to gain root access by specifying an alternate PATH for the cp program.	NVD-CWE-Other	CVE-2000-0048	2008-09-11 04:02	2000-01-12	Show	GitHub Exploit DB Packet Storm

346542	7.2	HIGH	nullsoft	winamp	Buffer overflow in Winamp client allows remote attackers to execute commands via a long entry in a .pls file.	NVD-CWE-Other	CVE-2000-0049	2008-09-11 04:02	2000-01-4	Show	GitHub Exploit DB Packet Storm

346543	4.6	MEDIUM	allaire	spectra	The Allaire Spectra Webtop allows authenticated users to access other Webtop sections by specifying explicit URLs.	NVD-CWE-Other	CVE-2000-0050	2008-09-11 04:02	2000-01-4	Show	GitHub Exploit DB Packet Storm

346544	5.0	MEDIUM	allaire	spectra	The Allaire Spectra Configuration Wizard allows remote attackers to cause a denial of service by repeatedly resubmitting data collections for indexing via a URL.	NVD-CWE-Other	CVE-2000-0051	2008-09-11 04:02	2000-01-4	Show	GitHub Exploit DB Packet Storm

346545	7.2	HIGH	mandrakesoft redhat turbolinux	mandrake_linux linux turbolinux	Red Hat userhelper program in the usermode package allows local users to gain root access via PAM and a .. (dot dot) attack.	NVD-CWE-Other	CVE-2000-0052	2008-09-11 04:02	2000-01-4	Show	GitHub Exploit DB Packet Storm

346546	5.0	MEDIUM	solution_scripts	home_free	search.cgi in the SolutionScripts Home Free package allows remote attackers to view directories via a .. (dot dot) attack.	NVD-CWE-Other	CVE-2000-0054	2008-09-11 04:02	1999-01-3	Show	GitHub Exploit DB Packet Storm

346547	5.0	MEDIUM	ipswitch	imail	IMail IMONITOR status.cgi CGI script allows remote attackers to cause a denial of service with many calls to status.cgi.	NVD-CWE-Other	CVE-2000-0056	2008-09-11 04:02	2000-01-5	Show	GitHub Exploit DB Packet Storm

346548	7.5	HIGH	allaire	coldfusion_server	Cold Fusion CFCACHE tag places temporary cache files within the web document root, allowing remote attackers to obtain sensitive system information.	NVD-CWE-Other	CVE-2000-0057	2008-09-11 04:02	2000-01-4	Show	GitHub Exploit DB Packet Storm

346549	5.0	MEDIUM	handspring	visor_network_hotsync	Network HotSync program in Handspring Visor does not have authentication, which allows remote attackers to retrieve email and files.	NVD-CWE-Other	CVE-2000-0058	2008-09-11 04:02	2000-01-5	Show	GitHub Exploit DB Packet Storm

346550	10.0	HIGH	php	php	PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could allow remote attackers to execute commands.	NVD-CWE-Other	CVE-2000-0059	2008-09-11 04:02	2000-01-4	Show	GitHub Exploit DB Packet Storm