Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226811	7.2	危険	シマンテック	-	Symantec Endpoint Protection の管理コンソールにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-4348	2012-12-25 17:50	2012-12-10	Show	GitHub Exploit DB Packet Storm

226812	1.2	注意	Linux	-	Linux Kernel の rio_ioctl 関数における Ethernet アダプタへデータを書き込まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2313	2012-12-25 17:46	2012-06-13	Show	GitHub Exploit DB Packet Storm

226813	7.1	危険	Linux	-	Linux Kernel の fs/ext4/super.c におけるファイルシステムグループデータの不整合を誘発される脆弱性	CWE-189 数値処理の問題	CVE-2012-2100	2012-12-25 17:44	2012-07-3	Show	GitHub Exploit DB Packet Storm

226814	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 9 および 10 における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-4782	2012-12-25 17:11	2012-12-11	Show	GitHub Exploit DB Packet Storm

226815	9.3	危険	マイクロソフト	-	Microsoft Windows における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-4774	2012-12-25 17:08	2012-12-11	Show	GitHub Exploit DB Packet Storm

226816	9.3	危険	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルモードドライバにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-2556	2012-12-25 17:05	2012-12-11	Show	GitHub Exploit DB Packet Storm

226817	10	危険	Wansview ShenZhen Foscam Intelligent Technology	-	複数のネットワークカメラに認証回避の脆弱性	CWE-287 不適切な認証	CVE-2012-3002	2012-12-25 16:44	2012-10-11	Show	GitHub Exploit DB Packet Storm

226818	10	危険	Carlo Gavazzi	-	Carlo Gavazzi EOS-Box のファームウェアにおける管理アクセス権限を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-6428	2012-12-25 16:37	2012-12-19	Show	GitHub Exploit DB Packet Storm

226819	7.5	危険	Carlo Gavazzi	-	Carlo Gavazzi EOS-Box のファームウェアにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-6427	2012-12-25 16:33	2012-12-19	Show	GitHub Exploit DB Packet Storm

226820	4.3	警告	シーメンス	-	複数の Siemens 製品におけるサーバを偽装される脆弱性	CWE-200 情報漏えい	CVE-2012-4698	2012-12-25 16:32	2012-12-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224401	9.8	CRITICAL Network	nongnu debian canonical fedoraproject opensuse	libntlm debian_linux ubuntu_linux fedora leap backports_sle	Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a stack-based buffer over-read…	CWE-125 Out-of-bounds Read	CVE-2019-17455	2024-11-21 13:32	2019-10-11	Show	GitHub Exploit DB Packet Storm

224402	6.5	MEDIUM Network	axiosys	bento4	Bento4 1.5.1.0 has a NULL pointer dereference in AP4_Descriptor::GetTag in Core/Ap4Descriptor.h, related to AP4_StsdAtom::GetSampleDescription in Core/Ap4StsdAtom.cpp, as demonstrated by mp4info.	CWE-476 NULL Pointer Dereference	CVE-2019-17454	2024-11-21 13:32	2019-10-11	Show	GitHub Exploit DB Packet Storm

224403	6.5	MEDIUM Network	axiosys	bento4	Bento4 1.5.1.0 has a NULL pointer dereference in AP4_DescriptorListWriter::Action in Core/Ap4Descriptor.h, related to AP4_IodsAtom::WriteFields in Core/Ap4IodsAtom.cpp, as demonstrated by mp4encrypt …	CWE-476 NULL Pointer Dereference	CVE-2019-17453	2024-11-21 13:32	2019-10-11	Show	GitHub Exploit DB Packet Storm

224404	6.5	MEDIUM Network	axiosys	bento4	Bento4 1.5.1.0 has a NULL pointer dereference in AP4_DescriptorListInspector::Action in Core/Ap4Descriptor.h, related to AP4_IodsAtom::InspectFields in Core/Ap4IodsAtom.cpp, as demonstrated by mp4dum…	CWE-476 NULL Pointer Dereference	CVE-2019-17452	2024-11-21 13:32	2019-10-11	Show	GitHub Exploit DB Packet Storm

224405	6.5	MEDIUM Network	gnu opensuse canonical	binutils leap ubuntu_linux	An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an integer overflow leading to a SEGV in _bfd_dwarf2_find_nearest_line in …	CWE-190 Integer Overflow or Wraparound	CVE-2019-17451	2024-11-21 13:32	2019-10-11	Show	GitHub Exploit DB Packet Storm

224406	6.5	MEDIUM Network	gnu opensuse canonical	binutils leap ubuntu_linux	find_abstract_instance in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32, allows remote attackers to cause a denial of service (infinite recurs…	CWE-674 Uncontrolled Recursion	CVE-2019-17450	2024-11-21 13:32	2019-10-11	Show	GitHub Exploit DB Packet Storm

224407	6.7	MEDIUM Local	avira	software_updater	Avira Software Updater before 2.0.6.21094 allows a DLL side-loading attack. NOTE: The vendor thinks that this vulnerability is invalid because exploiting it would require at least administrator privi…	CWE-426 Untrusted Search Path	CVE-2019-17449	2024-11-21 13:32	2019-10-11	Show	GitHub Exploit DB Packet Storm

224408	9.8	CRITICAL Network	netsarang	xftp	NetSarang XFTP Client 6.0149 and earlier version contains a buffer overflow vulnerability caused by improper boundary checks when copying file name from an attacker controlled FTP server. That leads …	CWE-120 Classic Buffer Overflow	CVE-2019-17320	2024-11-21 13:32	2019-10-11	Show	GitHub Exploit DB Packet Storm

224409	5.4	MEDIUM Network	lavalite	lavalite	LavaLite through 5.7 has XSS via a crafted account name that is mishandled on the Manage Clients screen.	CWE-79 Cross-site Scripting	CVE-2019-17434	2024-11-21 13:32	2019-10-10	Show	GitHub Exploit DB Packet Storm

224410	4.8	MEDIUM Network	laravel-admin	laravel-admin	z-song laravel-admin 1.7.3 has XSS via the Slug or Name on the Roles screen, because of mishandling on the "Operation log" screen.	CWE-79 Cross-site Scripting	CVE-2019-17433	2024-11-21 13:32	2019-10-10	Show	GitHub Exploit DB Packet Storm