Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 8, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228091 | 5 | 警告 | The PHP Group | - | PHP の ext/openssl/openssl.c におけるプロセスメモリから重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2012-6113 | 2013-01-22 16:06 | 2012-03-16 | Show | GitHub Exploit DB Packet Storm |
| 228092 | 4.9 | 警告 | シスコシステムズ | - | Cisco Nexus 7000 シリーズのスイッチ上で稼働する Cisco NX-OS におけるサービス運用妨害 (メモリ消費) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2012-6396 | 2013-01-22 16:05 | 2013-01-10 | Show | GitHub Exploit DB Packet Storm |
| 228093 | 6.8 | 警告 | BitTorrent, Inc. | - | uTorrent の create torrent dialog 機能におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-5134 | 2013-01-22 16:04 | 2013-01-18 | Show | GitHub Exploit DB Packet Storm |
| 228094 | 6.3 | 警告 | シスコシステムズ | - | Cisco Adaptive Security Appliances におけるサービス運用妨害 (デバイスクラッシュ) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2012-6395 | 2013-01-22 16:03 | 2013-01-12 | Show | GitHub Exploit DB Packet Storm |
| 228095 | 4.3 | 警告 | IBM | - | IBM Intelligent Operations Center におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-6360 | 2013-01-22 16:02 | 2012-12-14 | Show | GitHub Exploit DB Packet Storm |
| 228096 | 4.3 | 警告 | IBM | - | IBM TFIM および TFIMBG における OpenID プロバイダのデータを偽造される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-6359 | 2013-01-22 16:01 | 2013-01-18 | Show | GitHub Exploit DB Packet Storm |
| 228097 | 6.3 | 警告 | シスコシステムズ | - | Cisco Adaptive Security Appliances におけるサービス運用妨害 (デバイスクラッシュ) の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-5717 | 2013-01-22 16:01 | 2013-01-16 | Show | GitHub Exploit DB Packet Storm |
| 228098 | 4.3 | 警告 | RPM | - | RPM の lib/package.c における RPM の署名確認を回避される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2012-6088 | 2013-01-22 15:02 | 2013-01-18 | Show | GitHub Exploit DB Packet Storm |
| 228099 | 5 | 警告 | Firefly Media Server | - | Firefly Media Server におけるサービス運用妨害 (NULL ポインタデリファレンス) の脆弱性 |
CWE-Other
その他 |
CVE-2012-5875 | 2013-01-22 15:01 | 2013-01-18 | Show | GitHub Exploit DB Packet Storm |
| 228100 | 2.1 | 注意 | Inkscape | - | Inkscape のラスタ化プロセスにおける任意のファイルを読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-5656 | 2013-01-22 15:00 | 2012-12-17 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 9, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 194491 | 5.5 |
MEDIUM
Local |
amd |
ryzen_3_3100_firmware ryzen_3_3200g_firmware ryzen_3_3200u_firmware ryzen_3_3250c_firmware ryzen_3_3250u_firmware ryzen_3_3300g_firmware ryzen_3_3300u_firmware ryzen_3_3300x_firm… |
Failure to validate the integer operand in ASP (AMD Secure Processor) bootloader may allow an attacker to introduce an integer overflow in the L2 directory table in SPI flash resulting in a potential… |
CWE-190
Integer Overflow or Wraparound |
CVE-2021-26346 | 2024-11-21 14:56 | 2023-01-11 | Show | GitHub Exploit DB Packet Storm |
| 194492 | 5.5 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_7373x_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware
Insufficient validation in ASP BIOS and DRTM commands may allow malicious supervisor x86 software to disclose the contents of sensitive memory which may result in information disclosure.
|
CWE-668
|
Exposure of Resource to Wrong Sphere
CVE-2021-26343
|
2024-11-21 14:56 |
2023-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 194493 | 4.4 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_7373x_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware
Failure to verify the mode of CPU execution at the time of SNP_INIT may lead to a potential loss of memory integrity for SNP guests.
|
NVD-CWE-noinfo
|
CVE-2021-26328
|
2024-11-21 14:56 |
2023-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 194494 | 7.8 |
HIGH
Local |
amd |
epyc_7h12_firmware epyc_7f72_firmware epyc_7f52_firmware epyc_7f32_firmware epyc_7742_firmware epyc_7702p_firmware epyc_7702_firmware epyc_7662_firmware epyc_7642_firmware … |
Failure to validate the communication buffer and communication service in the BIOS may allow an attacker to tamper with the buffer resulting in potential SMM (System Management Mode) arbitrary code e… |
CWE-20
Improper Input Validation |
CVE-2021-26316 | 2024-11-21 14:56 | 2023-01-11 | Show | GitHub Exploit DB Packet Storm |
| 194495 | 7.8 |
HIGH
Local |
amd |
enterprise_driver radeon_pro_software radeon_software |
An attacker with local access to the system can make unauthorized modifications of the security configuration of the SOC registers. This could allow potential corruption of AMD secure processor’s enc… |
NVD-CWE-noinfo
|
CVE-2021-26360 | 2024-11-21 14:56 | 2022-11-10 | Show | GitHub Exploit DB Packet Storm |
| 194496 | 5.5 |
MEDIUM
Local |
amd |
enterprise_driver radeon_pro_software radeon_software radeon_rx_vega_56_firmware radeon_rx_vega_64_firmware ryzen_3_2200ge_firmware ryzen_3_2200g_firmware ryzen_5_2400ge_firmware… |
Insufficient memory cleanup in the AMD Secure Processor (ASP) Trusted Execution Environment (TEE) may allow an authenticated attacker with privileges to generate a valid signed TA and potentially poi… |
CWE-401
Missing Release of Memory after Effective Lifetime |
CVE-2021-26393 | 2024-11-21 14:56 | 2022-11-10 | Show | GitHub Exploit DB Packet Storm |
| 194497 | 7.8 |
HIGH
Local |
amd |
enterprise_driver radeon_pro_software radeon_software radeon_rx_vega_56_firmware radeon_rx_vega_64_firmware ryzen_3_5300ge_firmware ryzen_3_5300g_firmware ryzen_5_5600ge_firmware… |
Insufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to gain code execution in that TA or the OS/kernel. |
NVD-CWE-noinfo
|
CVE-2021-26391 | 2024-11-21 14:56 | 2022-11-10 | Show | GitHub Exploit DB Packet Storm |
| 194498 | 7.5 |
HIGH
Network |
lannerinc | iac-ast2500a_firmware | A broken access control vulnerability in the FirstReset_handler_func function of spx_restservice allows an attacker to arbitrarily send reboot commands to the BMC, causing a Denial-of-Service (DoS) c… |
NVD-CWE-Other
|
CVE-2021-26733 | 2024-11-21 14:56 | 2022-10-24 | Show | GitHub Exploit DB Packet Storm |
| 194499 | 5.3 |
MEDIUM
Network |
lannerinc | iac-ast2500a_firmware | A broken access control vulnerability in the First_network_func function of spx_restservice allows an attacker to arbitrarily change the network configuration of the BMC. This issue affects: Lanner I… |
NVD-CWE-Other
|
CVE-2021-26732 | 2024-11-21 14:56 | 2022-10-24 | Show | GitHub Exploit DB Packet Storm |
| 194500 | 9.8 |
CRITICAL
Network |
lannerinc | iac-ast2500a_firmware | Command injection and multiple stack-based buffer overflows vulnerabilities in the modifyUserb_func function of spx_restservice allow an authenticated attacker to execute arbitrary code with the same… |
CWE-77 CWE-787 Command Injection Out-of-bounds Write |
CVE-2021-26731 | 2024-11-21 14:56 | 2022-10-24 | Show | GitHub Exploit DB Packet Storm |