Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226791 5.7 警告 VMware
Linux		 - Linux kernel の napi_reuse_skb 関数におけるサービス運用妨害 (NULL ポインタデリファレンス) の脆弱性 CWE-Other
その他 		CVE-2011-1478 2012-12-25 18:45 2011-10-12 Show GitHub Exploit DB Packet Storm
226792 4.9 警告 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の fs/nfs/nfs4proc.c 内にある __nfs4_proc_set_acl 関数における脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1090 2012-12-25 18:42 2011-05-9 Show GitHub Exploit DB Packet Storm
226793 4.9 警告 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の mac_partition 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-1010 2012-12-25 18:41 2011-02-24 Show GitHub Exploit DB Packet Storm
226794 2.1 注意 VMware
Linux
レッドハット		 - Linux kernel の task_show_regs 関数における任意プロセスのレジスタ値を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-0710 2012-12-25 18:39 2011-02-18 Show GitHub Exploit DB Packet Storm
226795 6.9 警告 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の load_mixer_volumes 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2011-0521 2012-12-25 18:38 2011-02-2 Show GitHub Exploit DB Packet Storm
226796 7.1 危険 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の sctp_icmp_proto_unreachable 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2010-4526 2012-12-25 18:34 2011-01-11 Show GitHub Exploit DB Packet Storm
226797 2.1 注意 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の install_special_mapping 関数における mmap_min_addr 制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4346 2012-12-25 18:32 2010-12-22 Show GitHub Exploit DB Packet Storm
226798 4.7 警告 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の drivers/scsi/bfa/bfa_core.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-4343 2012-12-25 18:31 2010-12-29 Show GitHub Exploit DB Packet Storm
226799 7.1 危険 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の igb_receive_skb 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-4263 2012-12-25 18:30 2011-01-18 Show GitHub Exploit DB Packet Storm
226800 6.1 警告 サイバートラスト株式会社
VMware
シトリックス・システムズ
レッドハット		 - Xen の fixup_page_fault 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-4255 2012-12-25 18:28 2011-01-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224351 9.8 CRITICAL
Network 		dlink dir-859_firmware
dir-822_firmware
dir-823_firmware
dir-865l_firmware
dir-868l_firmware
dir-869_firmware
dir-880l_firmware
dir-890l_firmware
dir-890r_firmware
dir-885l_firmw… 		The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote attacker to execute system commands as root, by sending a specially crafted… CWE-78
OS Command  		CVE-2019-17621 2024-11-21 13:32 2019-12-31 Show GitHub Exploit DB Packet Storm
224352 6.1 MEDIUM
Network 		reliablecontrols mach-prowebsys_firmware
mach-prowebcom_firmware 		Reliable Controls MACH-ProWebCom/Sys, all versions prior to 2.15 (Firmware versions prior to 8.26.4), may allow attacker to execute commands on behalf of the user when an authenticated user clicks on… CWE-79
Cross-site Scripting 		CVE-2019-18249 2024-11-21 13:32 2019-12-25 Show GitHub Exploit DB Packet Storm
224353 8.8 HIGH
Network 		orckestra c1_cms An issue was discovered in Orckestra C1 CMS through 6.6. The EntityTokenSerializer class in Composite.dll is prone to unvalidated deserialization of wrapped BinaryFormatter payloads, leading to arbit… CWE-502
 Deserialization of Untrusted Data 		CVE-2019-18211 2024-11-21 13:32 2019-12-24 Show GitHub Exploit DB Packet Storm
224354 7.8 HIGH
Local 		we-con plc_editor Multiple buffer overflow vulnerabilities exist when the PLC Editor Version 1.3.5_20190129 processes project files. An attacker could use a specially crafted project file to exploit and execute code u… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-18236 2024-11-21 13:32 2019-12-24 Show GitHub Exploit DB Packet Storm
224355 9.8 CRITICAL
Network 		equinoxce control_expert Equinox Control Expert all versions, is vulnerable to an SQL injection attack, which may allow an attacker to remotely execute arbitrary code. CWE-89
SQL Injection 		CVE-2019-18234 2024-11-21 13:32 2019-12-24 Show GitHub Exploit DB Packet Storm
224356 7.5 HIGH
Network 		apache
debian
opensuse
canonical
oracle 		tomcat
debian_linux
leap
ubuntu_linux
transportation_management
retail_order_broker
micros_relate_crm_software
instantis_enterprisetrack
hyperion_infrastructure_technology
 When using FORM authentication with Apache Tomcat 9.0.0.M1 to 9.0.29, 8.5.0 to 8.5.49 and 7.0.0 to 7.0.98 there was a narrow window where an attacker could perform a session fixation attack. The wind… CWE-384
 Session Fixation 		CVE-2019-17563 2024-11-21 13:32 2019-12-24 Show GitHub Exploit DB Packet Storm
224357 9.8 CRITICAL
Network 		apache
debian
canonical
opensuse
netapp
oracle 		log4j
debian_linux
ubuntu_linux
leap
oncommand_workflow_automation
oncommand_system_manager
retail_service_backbone
weblogic_server
application_testing_suite
endeca_informa… 		Included in Log4j 1.2 is a SocketServer class that is vulnerable to deserialization of untrusted data which can be exploited to remotely execute arbitrary code when combined with a deserialization ga… CWE-502
 Deserialization of Untrusted Data 		CVE-2019-17571 2024-11-21 13:32 2019-12-21 Show GitHub Exploit DB Packet Storm
224358 6.5 MEDIUM
Adjacent 		philips veradius_unity_firmware
pulsera_firmware
endura_firmware 		An issue was found in Philips Veradius Unity, Pulsera, and Endura Dual WAN Router, Veradius Unity (718132) with wireless option (shipped between 2016-August 2018), Veradius Unity (718132) with ViewFo… CWE-326
Inadequate Encryption Strength 		CVE-2019-18263 2024-11-21 13:32 2019-12-21 Show GitHub Exploit DB Packet Storm
224359 9.8 CRITICAL
Network 		paloaltonetworks pan-os Improper restriction of communications to Log Forwarding Card (LFC) on PA-7000 Series devices with second-generation Switch Management Card (SMC) may allow an attacker with network access to the LFC … NVD-CWE-Other
CVE-2019-17440 2024-11-21 13:32 2019-12-21 Show GitHub Exploit DB Packet Storm
224360 9.8 CRITICAL
Network 		joomsky js_jobs dataForDepandantField in models/custormfields.php in the JS JOBS FREE extension before 1.2.7 for Joomla! allows SQL Injection via the index.php?option=com_jsjobs&task=customfields.getfieldtitlebyfiel… CWE-89
SQL Injection 		CVE-2019-17527 2024-11-21 13:32 2019-12-20 Show GitHub Exploit DB Packet Storm