Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228201 4.9 警告 VMware
Linux		 - x86 プラットフォーム上の Linux Kernel におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2011-3209 2012-12-17 15:59 2008-07-13 Show GitHub Exploit DB Packet Storm
228202 7.8 危険 VMware
Linux		 - Linux Kernel の IPv4 と IPv6 の実装におけるサービス運用妨害 (ネットワーク障害) の脆弱性 CWE-DesignError
CVE-2011-3188 2012-12-17 15:57 2012-05-24 Show GitHub Exploit DB Packet Storm
228203 4.3 警告 VideoLAN - VideoLAN VLC media player の libpng_plugin におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5470 2012-12-17 13:47 2012-10-26 Show GitHub Exploit DB Packet Storm
228204 2.1 注意 シトリックス・システムズ - Xen におけるサービス運用妨害 (無限ループ および ハングアップまたはクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4539 2012-12-17 13:43 2012-11-13 Show GitHub Exploit DB Packet Storm
228205 4.9 警告 シトリックス・システムズ - Xen の HVMOP_pagetable_dying ハイパーコールにおけるサービス運用妨害 (ハイパーバイザクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4538 2012-12-17 13:41 2012-11-13 Show GitHub Exploit DB Packet Storm
228206 2.1 注意 シトリックス・システムズ - Xen におけるサービス運用妨害 (メモリ消費および表明違反) の脆弱性 CWE-16
環境設定 		CVE-2012-4537 2012-12-17 12:30 2012-11-13 Show GitHub Exploit DB Packet Storm
228207 1.9 注意 シトリックス・システムズ - Xen におけるサービス運用妨害 (Xen の無限ループおよび物理 CPU の消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4535 2012-12-17 12:28 2012-11-13 Show GitHub Exploit DB Packet Storm
228208 4.3 警告 Wikka Development Team - WikkaWiki におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2012-12-17 12:15 2012-12-17 Show GitHub Exploit DB Packet Storm
228209 4.3 警告 Netsweeper, Inc. - Netsweeper の WebAdmin Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2446 2012-12-17 11:02 2012-07-9 Show GitHub Exploit DB Packet Storm
228210 10 危険 Netsweeper, Inc. - Netsweeper の WebAdmin Portal における脆弱性 CWE-noinfo
情報不足 		CVE-2012-3859 2012-12-17 10:56 2012-07-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198471 6.5 MEDIUM
Network 		ishekar endoscope_camera_firmware Recently it was discovered as a part of the research on IoT devices in the most recent firmware for Shekar Endoscope that any malicious user connecting to the device can change the default SSID and p… CWE-255
Credentials Management 		CVE-2017-10718 2024-11-21 12:06 2019-06-18 Show GitHub Exploit DB Packet Storm
198472 5.5 MEDIUM
Local 		qualcomm ipq8074_firmware
mdm9206_firmware
mdm9607_firmware
mdm9635m_firmware
mdm9650_firmware
mdm9655_firmware
msm8996au_firmware
sd_210_firmware
sd_212_firmware
sd_205_firmware 		A non-secure user may be able to access certain registers in snapdragon automobile, snapdragon mobile and snapdragon wear in versions IPQ8074, MDM9206, MDM9607, MDM9635M, MDM9650, MDM9655, MSM8996AU,… NVD-CWE-noinfo
CVE-2017-11004 2024-11-21 12:06 2019-01-4 Show GitHub Exploit DB Packet Storm
198473 7.5 HIGH
Network 		zte zxiptv-ucm_firmware SQL injection vulnerability in all versions prior to V2.01.05.09 of the ZTE ZXIPTV-UCM product allows remote attackers to execute arbitrary SQL commands via the opertype parameter, resulting in the d… CWE-89
SQL Injection 		CVE-2017-10937 2024-11-21 12:06 2018-07-26 Show GitHub Exploit DB Packet Storm
198474 7.5 HIGH
Network 		zte zxcdn-sns_firmware SQL injection vulnerability in all versions prior to V4.01.01 of the ZTE ZXCDN-SNS product allows remote attackers to execute arbitrary SQL commands via the aoData parameter, resulting in the disclos… CWE-89
SQL Injection 		CVE-2017-10936 2024-11-21 12:06 2018-07-26 Show GitHub Exploit DB Packet Storm
198475 7.2 HIGH
Network 		zte zxr10_1800-2s_firmware All versions prior to ZSRV2 V3.00.40 of the ZTE ZXR10 1800-2S products allow remote authenticated users to bypass the original password authentication protection to change other user's password. NVD-CWE-noinfo
CVE-2017-10935 2024-11-21 12:06 2018-07-26 Show GitHub Exploit DB Packet Storm
198476 9.8 CRITICAL
Network 		zte zxiptv-epg_firmware All versions prior to V5.09.02.02T4 of the ZTE ZXIPTV-EPG product use the Java RMI service in which the servers use the Apache Commons Collections (ACC) library that may result in Java deserializatio… CWE-502
 Deserialization of Untrusted Data 		CVE-2017-10934 2024-11-21 12:06 2018-07-26 Show GitHub Exploit DB Packet Storm
198477 9.8 CRITICAL
Network 		qualcomm mdm9206_firmware
mdm9607_firmware
sd_210_firmware
sd_212_firmware
sd_205_firmware
sd_425_firmware
sd_430_firmware
sd_450_firmware
sd_625_firmware
sd_820_firmware
sd_835_… 		In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 820, SD 835, a Use After… CWE-416
 Use After Free 		CVE-2017-11011 2024-11-21 12:06 2018-04-12 Show GitHub Exploit DB Packet Storm
198478 9.8 CRITICAL
Network 		google android In Android before 2018-01-05 on Qualcomm Snapdragon IoT, Snapdragon Mobile MDM9206, MDM9650, SD 210/SD 212/SD 205, SD 625, SD 650/52, SD 835, access control left a configuration space unprotected. NVD-CWE-noinfo
CVE-2017-11010 2024-11-21 12:06 2018-03-31 Show GitHub Exploit DB Packet Storm
198479 8.8 HIGH
Adjacent 		corega cg-wgr_1200_firmware Corega CG-WGR1200 firmware 2.20 and earlier allows an attacker to bypass authentication and change the login password via unspecified vectors. CWE-306
Missing Authentication for Critical Function 		CVE-2017-10854 2024-11-21 12:06 2018-03-10 Show GitHub Exploit DB Packet Storm
198480 8.8 HIGH
Adjacent 		corega cg-wgr_1200_firmware Buffer overflow in Corega CG-WGR1200 firmware 2.20 and earlier allows an attacker to execute arbitrary commands via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-10853 2024-11-21 12:06 2018-03-10 Show GitHub Exploit DB Packet Storm