Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226291 2.1 注意 Debian - Ubuntu で使用される APT における重要なシェル情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-0961 2012-12-28 14:59 2012-12-12 Show GitHub Exploit DB Packet Storm
226292 4.3 警告 PS Project Management Team - Firefox 用 Unity integration 拡張機能における同一生成元ポリシーを回避される脆弱性 CWE-DesignError
CVE-2012-0958 2012-12-28 14:58 2012-10-23 Show GitHub Exploit DB Packet Storm
226293 - - Ruby on Rails project - ** 削除 ** Ruby on Rails 用 Authlogic gem における SQL インジェクションの脆弱性 - CVE-2012-5664 2012-12-28 14:22 2012-12-26 Show GitHub Exploit DB Packet Storm
226294 4.3 警告 Opera Software ASA - Android 版 Opera Mini ウェブブラウザおよび Opera Mobile ウェブブラウザにおいて任意のスクリプトが実行される脆弱性 CWE-200
情報漏えい 		CVE-2012-5180 2012-12-28 14:17 2012-12-20 Show GitHub Exploit DB Packet Storm
226295 2.6 注意 WordPress.org - WordPress における有効なセッション識別子を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-5868 2012-12-28 11:58 2012-12-27 Show GitHub Exploit DB Packet Storm
226296 4.9 警告 Linux - Linux Kernel と一緒に配布される hypervkvpd におけるサービス運用妨害 (Daemon Exit) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-5532 2012-12-28 11:44 2012-12-22 Show GitHub Exploit DB Packet Storm
226297 5 警告 シトリックス・システムズ - Citrix XenDesktop Virtual Desktop Agent における USB デバイスへのアクセス権を保持される脆弱性 CWE-noinfo
情報不足 		CVE-2012-6314 2012-12-28 11:20 2012-12-11 Show GitHub Exploit DB Packet Storm
226298 9.3 危険 シトリックス・システムズ - Citrix XenApp の XML Service インターフェースにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-5161 2012-12-28 11:08 2012-12-11 Show GitHub Exploit DB Packet Storm
226299 10 危険 CA Technologies - CA IdentityMinder におけるアクセス制限を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2012-6299 2012-12-28 10:58 2012-12-20 Show GitHub Exploit DB Packet Storm
226300 10 危険 CA Technologies - CA IdentityMinder における任意のコマンドを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-6298 2012-12-28 10:57 2012-12-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223411 6.6 MEDIUM
Physics 		barco clickshare_button_r9861500d01_firmware Barco ClickShare Button R9861500D01 devices before 1.10.0.13 have Missing Support for Integrity Check. The ClickShare Button does not verify the integrity of the mutable content on the UBIFS partitio… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2019-18824 2024-11-21 13:33 2019-12-17 Show GitHub Exploit DB Packet Storm
223412 6.8 MEDIUM
Physics 		dell xps_7390_firmware Settings for the Dell XPS 13 2-in-1 (7390) BIOS versions prior to 1.1.3 contain a configuration vulnerability. The BIOS configuration for the "Enable Thunderbolt (and PCIe behind TBT) pre-boot module… NVD-CWE-Other
CVE-2019-18579 2024-11-21 13:33 2019-12-17 Show GitHub Exploit DB Packet Storm
223413 5.3 MEDIUM
Network 		barco clickshare_cs-100_firmware
clickshare_cse-200_firmware
clickshare_cse-200\+_firmware
clickshare_cse-800_firmware 		Barco ClickShare Button R9861500D01 devices before 1.9.0 allow Information Exposure. The encrypted ClickShare Button firmware contains the private key of a test device-certificate. CWE-798
 Use of Hard-coded Credentials 		CVE-2019-18831 2024-11-21 13:33 2019-12-17 Show GitHub Exploit DB Packet Storm
223414 9.8 CRITICAL
Network 		barco clickshare_cs-100_firmware
clickshare_cse-200_firmware
clickshare_cse-200\+_firmware
clickshare_cse-800_firmware 		Barco ClickShare Button R9861500D01 devices before 1.9.0 allow OS Command Injection. The embedded 'dongle_bridge' program used to expose the functionalities of the ClickShare Button to a USB host, is… CWE-78
OS Command  		CVE-2019-18830 2024-11-21 13:33 2019-12-17 Show GitHub Exploit DB Packet Storm
223415 6.8 MEDIUM
Physics 		barco clickshare_cs-100_firmware
clickshare_cse-200_firmware
clickshare_cse-200\+_firmware
clickshare_cse-800_firmware 		Barco ClickShare Button R9861500D01 devices before 1.9.0 have Insufficiently Protected Credentials. The root account (present for access via debug interfaces, which are by default not enabled on prod… CWE-521
Weak Password Requirements  		CVE-2019-18828 2024-11-21 13:33 2019-12-17 Show GitHub Exploit DB Packet Storm
223416 5.9 MEDIUM
Network 		barco clickshare_cs-100_firmware
clickshare_cse-200_firmware
clickshare_cse-200\+_firmware
clickshare_cse-800_firmware 		On Barco ClickShare Button R9861500D01 devices (before firmware version 1.9.0) JTAG access is disabled after ROM code execution. This means that JTAG access is possible when the system is running cod… CWE-362
CWE-285
Race Condition
Improper Authorization 		CVE-2019-18827 2024-11-21 13:33 2019-12-17 Show GitHub Exploit DB Packet Storm
223417 9.8 CRITICAL
Network 		barco clickshare_cs-100_firmware
clickshare_cse-200_firmware
clickshare_cse-200\+_firmware
clickshare_cse-800_firmware 		Barco ClickShare Button R9861500D01 devices before 1.9.0 have Improper Following of a Certificate's Chain of Trust. The embedded 'dongle_bridge' program used to expose the functionalities of the Clic… CWE-295
Improper Certificate Validation  		CVE-2019-18826 2024-11-21 13:33 2019-12-17 Show GitHub Exploit DB Packet Storm
223418 7.5 HIGH
Network 		envoyproxy envoy An issue was discovered in Envoy 1.12.0. Upon receipt of a malformed HTTP request without a Host header, it sends an internally generated "Invalid request" response. This internally generated respons… CWE-476
 NULL Pointer Dereference 		CVE-2019-18838 2024-11-21 13:33 2019-12-13 Show GitHub Exploit DB Packet Storm
223419 9.8 CRITICAL
Network 		envoyproxy envoy An issue was discovered in Envoy 1.12.0. An untrusted remote client may send an HTTP header (such as Host) with whitespace after the header content. Envoy will treat "header-value " as a different st… NVD-CWE-noinfo
CVE-2019-18802 2024-11-21 13:33 2019-12-13 Show GitHub Exploit DB Packet Storm
223420 9.8 CRITICAL
Network 		envoyproxy envoy An issue was discovered in Envoy 1.12.0. An untrusted remote client may send HTTP/2 requests that write to the heap outside of the request buffers when the upstream is HTTP/1. This may be used to cor… CWE-787
 Out-of-bounds Write 		CVE-2019-18801 2024-11-21 13:33 2019-12-13 Show GitHub Exploit DB Packet Storm