Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225941	7.5	危険	John Nunemaker	-	Ruby 用 crack gem におけるオブジェクトインジェクション攻撃を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1800	2013-04-11 19:40	2013-01-14	Show	GitHub Exploit DB Packet Storm

225942	7.5	危険	Daniel Harrington	-	Ruby 用 nori gem におけるオブジェクトインジェクション攻撃を実行される脆弱性	CWE-20 不適切な入力確認	CVE-2013-0285	2013-04-11 19:39	2013-01-14	Show	GitHub Exploit DB Packet Storm

225943	5	警告	New Relic	-	Ruby Agent における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-0284	2013-04-11 19:38	2013-02-13	Show	GitHub Exploit DB Packet Storm

225944	6.8	警告	Michael Bleigh and Intridea, Inc.	-	Ruby 用 omniauth-oauth2 gem におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-6134	2013-04-11 19:37	2013-02-25	Show	GitHub Exploit DB Packet Storm

225945	5.8	警告	Apache Software Foundation	-	Apache Maven のデフォルト設定におけるサーバになりすまされる脆弱性	CWE-16 環境設定	CVE-2013-0253	2013-04-11 17:36	2013-04-2	Show	GitHub Exploit DB Packet Storm

225946	4.3	警告	fedorahosted.org	-	cronie におけるファイル記述子が漏えいする脆弱性	CWE-200 情報漏えい	CVE-2012-6097	2013-04-11 17:35	2013-01-9	Show	GitHub Exploit DB Packet Storm

225947	2.1	注意	Gluster, Inc. レッドハット	-	Red Hat Storage の GlusterFS 機能における任意のファイルを上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5635	2013-04-11 17:35	2013-03-28	Show	GitHub Exploit DB Packet Storm

225948	4	警告	OpenStack Canonical	-	複数の OpenStack 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-1838	2013-04-11 14:57	2013-03-15	Show	GitHub Exploit DB Packet Storm

225949	4.3	警告	フェンリル株式会社	-	Sleipnir for Windows におけるアドレスバー偽装の脆弱性	CWE-noinfo 情報不足	CVE-2013-2303	2013-04-11 12:01	2013-04-11	Show	GitHub Exploit DB Packet Storm

225950	7.5	危険	アドビシステムズ	-	Adobe ColdFusion におけるユーザになりすまされる脆弱性	CWE-noinfo 情報不足	CVE-2013-1387	2013-04-11 11:57	2013-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223151	7.8	HIGH Local	cisco	nx-os	A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to access internal services that should be restricted on an affected device, such as the NX-API. The vu…	CWE-78 OS Command	CVE-2019-1726	2024-11-21 13:37	2019-05-16	Show	GitHub Exploit DB Packet Storm

223152	7.5	HIGH Network	cisco	video_surveillance_manager	A vulnerability in the web-based management interface of Cisco Video Surveillance Manager could allow an unauthenticated, remote attacker to access sensitive information. The vulnerability is due to …	CWE-22 Path Traversal	CVE-2019-1717	2024-11-21 13:37	2019-05-16	Show	GitHub Exploit DB Packet Storm

223153	7.2	HIGH Network	cisco	ios_xe	A vulnerability in the web-based user interface (Web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to execute commands on the underlying Linux shell of an affected device…	CWE-20 Improper Input Validation	CVE-2019-1862	2024-11-21 13:37	2019-05-14	Show	GitHub Exploit DB Packet Storm

223154	6.7	MEDIUM Local	cisco	asa_5500_firmware firepower_2100_firmware firepower_4000_firmware firepower_9000_firmware ons_15454_mstp_firmware analog_voice_network_interface_modules_firmware integrated_services…	A vulnerability in the logic that handles access control to one of the hardware components in Cisco's proprietary Secure Boot implementation could allow an authenticated, local attacker to write a mo…	CWE-667 Improper Locking	CVE-2019-1649	2024-11-21 13:37	2019-05-14	Show	GitHub Exploit DB Packet Storm

223155	10.0	CRITICAL Network	cisco	elastic_services_controller	A vulnerability in the REST API of Cisco Elastic Services Controller (ESC) could allow an unauthenticated, remote attacker to bypass authentication on the REST API. The vulnerability is due to improp…	CWE-287 Improper Authentication	CVE-2019-1867	2024-11-21 13:37	2019-05-10	Show	GitHub Exploit DB Packet Storm

223156	7.8	HIGH Local	cisco	firepower_threat_defense firepower_management_center	A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficien…	CWE-78 OS Command	CVE-2019-1709	2024-11-21 13:37	2019-05-4	Show	GitHub Exploit DB Packet Storm

223157	7.5	HIGH Network	cisco	firepower_threat_defense	Multiple vulnerabilities in the Server Message Block (SMB) Protocol preprocessor detection engine for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, adjacent or remote …	CWE-400 Uncontrolled Resource Consumption	CVE-2019-1704	2024-11-21 13:37	2019-05-4	Show	GitHub Exploit DB Packet Storm

223158	7.8	HIGH Local	cisco	firepower_management_center	A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficien…	CWE-78 OS Command	CVE-2019-1699	2024-11-21 13:37	2019-05-4	Show	GitHub Exploit DB Packet Storm

223159	7.2	HIGH Network	cisco	sg200-50_firmware sg200-50p_firmware sg200-50fp_firmware sg200-26_firmware sg200-26p_firmware sg200-26fp_firmware sg200-18_firmware sg200-10fp_firmware sg200-08_firmware sg…	A vulnerability in the Secure Shell (SSH) authentication process of Cisco Small Business Switches software could allow an attacker to bypass client-side certificate authentication and revert to passw…	CWE-295 Improper Certificate Validation	CVE-2019-1859	2024-11-21 13:37	2019-05-4	Show	GitHub Exploit DB Packet Storm

223160	8.8	HIGH Network	cisco	hx220c_m5_firmware hx240c_m5_firmware hx240c_large_form_factor_firmware hx220c_all_nvme_m5_firmware hx220c_af_m5_firmware hx240c_af_m5_firmware hx220c_edge_m5_firmware ucs_b200_m…	A vulnerability in the web-based management interface of Cisco HyperFlex HX-Series could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform ar…	CWE-352 Origin Validation Error	CVE-2019-1857	2024-11-21 13:37	2019-05-4	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed