Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 14, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228741 | 9.3 | 危険 | Tridium | - | Tridium Niagara AX におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2012-4701 | 2013-02-18 16:06 | 2013-02-11 | Show | GitHub Exploit DB Packet Storm |
| 228742 | 7.6 | 危険 | Moxa Inc. | - | Moxa EDR-G903 シリーズルータにおけるデバイスになりすまされる脆弱性 |
CWE-310
暗号の問題 |
CVE-2012-4694 | 2013-02-18 16:05 | 2012-12-17 | Show | GitHub Exploit DB Packet Storm |
| 228743 | 5 | 警告 | Digitiliti | - | DigiLIBE における重要な設定情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2013-1402 | 2013-02-18 16:04 | 2013-02-14 | Show | GitHub Exploit DB Packet Storm |
| 228744 | 2.1 | 注意 | Xen プロジェクト | - | Xen におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-16
環境設定 |
CVE-2012-5634 | 2013-02-18 16:03 | 2013-01-16 | Show | GitHub Exploit DB Packet Storm |
| 228745 | 2.1 | 注意 | - | Android Debug Bridge の android-tools における任意のファイルを上書きされる脆弱性 |
CWE-200
情報漏えい |
CVE-2012-5564 | 2013-02-18 16:02 | 2013-02-14 | Show | GitHub Exploit DB Packet Storm | |
| 228746 | 9 | 危険 | ヒューレット・パッカード | - | HP NonStop Servers における重要な情報を取得される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2012-3280 | 2013-02-18 11:36 | 2013-02-11 | Show | GitHub Exploit DB Packet Storm |
| 228747 | 5 | 警告 | Zend Technologies Ltd. | - | Zend Framework におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2012-6532 | 2013-02-18 11:35 | 2013-02-13 | Show | GitHub Exploit DB Packet Storm |
| 228748 | 6.4 | 警告 | Zend Technologies Ltd. | - | Zend Framework における任意のファイルを読まれる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2012-6531 | 2013-02-18 11:34 | 2013-02-13 | Show | GitHub Exploit DB Packet Storm |
| 228749 | 6.5 | 警告 | OpenStack Canonical |
- | OpenStack Compute Folsom および Essex における他のユーザのボリュームからブートされる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-0208 | 2013-02-18 11:32 | 2013-01-29 | Show | GitHub Exploit DB Packet Storm |
| 228750 | 6.4 | 警告 | シスコシステムズ | - | Cisco Small Business ワイヤレスアクセスポイントにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2013-1131 | 2013-02-15 19:48 | 2013-02-13 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 14, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 194071 | 7.5 |
HIGH
Network |
ibm | infosphere_information_server | IBM InfoSphere Data Flow Designer Engine (IBM InfoSphere Information Server 11.7 ) component has improper validation of the REST API server certificate. IBM X-Force ID: 201301. |
CWE-295
Improper Certificate Validation |
CVE-2021-29737 | 2024-11-21 15:01 | 2021-11-3 | Show | GitHub Exploit DB Packet Storm |
| 194072 | 5.5 |
MEDIUM
Local |
ibm | i2_ibase | IBM i2 iBase 8.9.13 and 9.0.0 could allow a local attacker to obtain sensitive information due to insufficient session expiration. IBM X-Force ID: 206213. |
CWE-613
Insufficient Session Expiration |
CVE-2021-29868 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194073 | 6.5 |
MEDIUM
Network |
ibm |
rational_team_concert rational_doors_next_generation rational_engineering_lifecycle_manager engineering_workflow_management rational_collaborative_lifecycle_management engineering_life… |
IBM Jazz Team Server products stores user credentials in clear text which can be read by an authenticated user. IBM X-Force ID: 203172. |
CWE-312
Cleartext Storage of Sensitive Information |
CVE-2021-29786 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194074 | 7.5 |
HIGH
Network |
ibm |
rational_team_concert rational_doors_next_generation rational_engineering_lifecycle_manager engineering_workflow_management rational_collaborative_lifecycle_management engineering_life… |
IBM Jazz Team Server products could allow an authenticated user to obtain elevated privileges under certain configurations. IBM X-Force ID: 203025. |
NVD-CWE-noinfo
|
CVE-2021-29774 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194075 | 5.4 |
MEDIUM
Network |
ibm |
rational_doors_next_generation rational_engineering_lifecycle_manager rational_collaborative_lifecycle_management engineering_lifecycle_optimization rational_team_concert |
IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potenti… |
CWE-79
Cross-site Scripting |
CVE-2021-29713 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194076 | 8.8 |
HIGH
Network |
ibm |
rational_team_concert rational_doors_next_generation rational_engineering_lifecycle_manager engineering_workflow_management engineering_requirements_quality_assistant_on-premises engin… |
IBM Jazz Team Server products is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to netwo… |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2021-29844 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194077 | 5.4 |
MEDIUM
Network |
ibm |
rational_team_concert rational_collaborative_lifecycle_management rational_engineering_lifecycle_manager engineering_workflow_management rational_doors_next_generation engineering_life… |
IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potenti… |
CWE-79
Cross-site Scripting |
CVE-2021-29673 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194078 | 6.1 |
MEDIUM
Network |
ibm | business_automation_workflow | IBM Business Automation Workflow 18.0, 19.0, 20.0, and 21.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the i… |
CWE-79
Cross-site Scripting |
CVE-2021-29835 | 2024-11-21 15:01 | 2021-10-23 | Show | GitHub Exploit DB Packet Storm |
| 194079 | 4.3 |
MEDIUM
Network |
ibm | transformation_extender_advanced | IBM Standards Processing Engine (IBM Transformation Extender Advanced 9.0 and 10.0) does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cook… |
CWE-311
Missing Encryption of Sensitive Data |
CVE-2021-29883 | 2024-11-21 15:01 | 2021-10-22 | Show | GitHub Exploit DB Packet Storm |
| 194080 | 8.1 |
HIGH
Network |
ibm |
storwize_v5000_software storwize_v7000_software storwize_v3700_software storwize_v3500_software san_volume_controller_firmware spectrum_virtualize spectrum_virtualize_for_public_clo… |
IBM Flash System 900 could allow an authenticated attacker to obtain sensitive information and cause a denial of service due to a restricted shell escape vulnerability. IBM X-Force ID: 206229. |
NVD-CWE-noinfo
|
CVE-2021-29873 | 2024-11-21 15:01 | 2021-10-22 | Show | GitHub Exploit DB Packet Storm |