Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228831	6.8	警告	リアルネットワークス	-	RealNetworks RealPlayer におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4987	2012-11-6 14:36	2012-11-4	Show	GitHub Exploit DB Packet Storm

228832	3.6	注意	アップル	-	Apple iOS 6.0.1 未満のパスコードロックの実装におけるパスコード要求を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3750	2012-11-6 14:33	2012-11-3	Show	GitHub Exploit DB Packet Storm

228833	6.8	警告	Irfan Skiljan	-	IrfanView 用 FlashPix PlugIn で使用される libfpx におけるメモリ二重解放の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0025	2012-11-6 14:23	2012-11-2	Show	GitHub Exploit DB Packet Storm

228834	7.5	危険	Morbus Iff	-	Drupal 用 Activism モジュールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4498	2012-11-6 14:21	2012-08-29	Show	GitHub Exploit DB Packet Storm

228835	2.1	注意	Devsaran	-	Drupal 用 Elegant Theme モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4497	2012-11-6 14:19	2012-08-15	Show	GitHub Exploit DB Packet Storm

228836	2.1	注意	Roy Baxter	-	Drupal 用 Better Revisions モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4493	2012-11-6 14:18	2012-08-8	Show	GitHub Exploit DB Packet Storm

228837	4	警告	Boombatower	-	Drupal 用 Subuser モジュールにおけるロールを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4487	2012-11-6 14:07	2012-07-25	Show	GitHub Exploit DB Packet Storm

228838	6.8	警告	Boombatower	-	Drupal 用 Subuser モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-4486	2012-11-6 14:04	2012-07-25	Show	GitHub Exploit DB Packet Storm

228839	7.5	危険	Curtis Galloway	-	libexif の exif-entry.c の exif_entry_get_value 関数における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-2841	2012-11-6 12:28	2012-07-12	Show	GitHub Exploit DB Packet Storm

228840	7.5	危険	Curtis Galloway	-	libexif の exif-entry.c の exif_convert_utf16_to_utf8 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2012-2840	2012-11-6 12:27	2012-07-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198981	7.8	HIGH Local	blender debian	blender debian_linux	An exploitable integer overflow exists in the 'BKE_mesh_calc_normals_tessface' functionality of the Blender open-source 3d creation suite. A specially crafted .blend file can cause an integer overflo…	CWE-190 Integer Overflow or Wraparound	CVE-2017-12086	2024-11-21 12:08	2018-04-25	Show	GitHub Exploit DB Packet Storm

198982	7.8	HIGH Local	blender debian	blender debian_linux	An exploitable integer overflow exists in the upgrade of a legacy Mesh attribute of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow res…	CWE-190 Integer Overflow or Wraparound	CVE-2017-12081	2024-11-21 12:08	2018-04-25	Show	GitHub Exploit DB Packet Storm

198983	7.8	HIGH Local	blender debian	blender debian_linux	An exploitable integer overflow exists in the 'CustomData' Mesh loading functionality of the Blender open-source 3d creation suite. A .blend file with a specially crafted external data file can cause…	CWE-190 Integer Overflow or Wraparound	CVE-2017-12082	2024-11-21 12:08	2018-04-25	Show	GitHub Exploit DB Packet Storm

198984	5.3	MEDIUM Network	rockwellautomation	micrologix_1400_b_firmware	An exploitable insufficient resource pool vulnerability exists in the session communication functionality of Allen Bradley Micrologix 1400 Series B Firmware 21.2 and before. A specially crafted strea…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-12093	2024-11-21 12:08	2018-04-6	Show	GitHub Exploit DB Packet Storm

198985	7.5	HIGH Network	rockwellautomation	micrologix_1400_b_firmware	An exploitable denial of service vulnerability exists in the processing of snmp-set commands of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted snmp-set request, wh…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-12090	2024-11-21 12:08	2018-04-6	Show	GitHub Exploit DB Packet Storm

198986	7.5	HIGH Network	rockwellautomation	micrologix_1400_b_firmware	An exploitable denial of service vulnerability exists in the program download functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a devic…	NVD-CWE-noinfo	CVE-2017-12089	2024-11-21 12:08	2018-04-6	Show	GitHub Exploit DB Packet Storm

198987	7.5	HIGH Network	rockwellautomation	micrologix_1400_b_firmware	An exploitable denial of service vulnerability exists in the Ethernet functionality of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted packet can cause a device pow…	CWE-20 Improper Input Validation	CVE-2017-12088	2024-11-21 12:08	2018-04-6	Show	GitHub Exploit DB Packet Storm

198988	6.5	MEDIUM Adjacent	meetcircle	circle_with_disney_firmware	An exploitable vulnerability exists in the WiFi Access Point feature of Circle with Disney running firmware 2.0.1. A series of WiFi packets can force Circle to setup an Access Point with default cred…	CWE-290 Authentication Bypass by Spoofing	CVE-2017-12095	2024-11-21 12:08	2018-04-6	Show	GitHub Exploit DB Packet Storm

198989	7.5	HIGH Network	apache redhat	activemq_artemis hornetq jboss_enterprise_application_platform	It was found that when Artemis and HornetQ before 2.4.0 are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may r…	-	CVE-2017-12174	2024-11-21 12:08	2018-03-8	Show	GitHub Exploit DB Packet Storm

198990	6.1	MEDIUM Network	draytek	vigorap_910c_firmware	Cross-site scripting (XSS) vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0_RC3 build r6594 allows remote attackers to inject arbitrary web script or HTML via vectors involving home.…	CWE-79 Cross-site Scripting	CVE-2017-11650	2024-11-21 12:08	2018-03-7	Show	GitHub Exploit DB Packet Storm