Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249131	7.2	危険	IBM	-	IBM TSM の Alternate Data Stream 機能におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1223	2012-03-27 18:43	2011-06-17	Show	GitHub Exploit DB Packet Storm

249132	7.2	危険	IBM	-	IBM TSM の JBB 機能におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1222	2012-03-27 18:43	2011-06-17	Show	GitHub Exploit DB Packet Storm

249133	7.5	危険	IBM	-	IBM Tivoli Netcool/OMNIbus の Web GUI における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-1343	2012-03-27 18:43	2010-08-23	Show	GitHub Exploit DB Packet Storm

249134	9	危険	IBM	-	IBM Tivoli Management Framework の lcfd.exe におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1220	2012-03-27 18:43	2011-06-2	Show	GitHub Exploit DB Packet Storm

249135	7.8	危険	IBM	-	IBM solidDB におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-1208	2012-03-27 18:43	2011-05-5	Show	GitHub Exploit DB Packet Storm

249136	9.3	危険	IBM	-	IBM Rational System Architect の ActBar.ocx で使用される Data Dynamics ActiveBar ActiveX コントロールの ActiveBar1 ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1207	2012-03-27 18:43	2011-05-4	Show	GitHub Exploit DB Packet Storm

249137	10	危険	IBM	-	IBM TDS のサーバプロセスにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1206	2012-03-27 18:43	2011-04-21	Show	GitHub Exploit DB Packet Storm

249138	6.9	警告	IBM	-	複数の IBM 製品の COM オブジェクトにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1205	2012-03-27 18:43	2011-03-29	Show	GitHub Exploit DB Packet Storm

249139	5	警告	Digium	-	Asterisk Open Source の TCP/TLS サーバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-1175	2012-03-27 18:43	2011-03-16	Show	GitHub Exploit DB Packet Storm

249140	5	警告	Digium	-	Asterisk Open Source の manager.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1174	2012-03-27 18:43	2011-03-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
315971	7.5	HIGH Network	zscaler	client_connector	Anti-tampering can be disabled under certain conditions without signature validation. This affects Zscaler Client Connector <4.2.0.190 with anti-tampering enabled.	CWE-347 Improper Verification of Cryptographic Signature	CVE-2024-23456	2024-08-8 06:30	2024-08-7	Show	GitHub Exploit DB Packet Storm

315972	7.8	HIGH Local	zscaler	client_connector	The Zscaler Updater process does not validate the digital signature of the installer before execution, allowing arbitrary code to be locally executed. This affects Zscaler Client Connector on MacOS <…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2024-23460	2024-08-8 06:29	2024-08-7	Show	GitHub Exploit DB Packet Storm

315973	7.8	HIGH Local	zscaler	client_connector	While copying individual autoupdater log files, reparse point check was missing which could result into crafted attacks, potentially leading to a local privilege escalation. This issue affects Zscale…	CWE-346 Origin Validation Error	CVE-2024-23458	2024-08-8 06:29	2024-08-7	Show	GitHub Exploit DB Packet Storm

315974	6.5	MEDIUM Network	zscaler	client_connector	An Improper Validation of signature in Zscaler Client Connector on Windows allows an authenticated user to disable anti-tampering. This issue affects Client Connector on Windows <4.2.0.190.	CWE-347 Improper Verification of Cryptographic Signature	CVE-2023-28806	2024-08-8 06:29	2024-08-7	Show	GitHub Exploit DB Packet Storm

315975	8.8	HIGH Network	datagear	datagear	A vulnerability was found in DataGear up to 5.0.0. It has been declared as critical. Affected by this vulnerability is the function evaluateVariableExpression of the file ConversionSqlParamValueMappe…	CWE-917 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')	CVE-2024-7552	2024-08-8 06:29	2024-08-7	Show	GitHub Exploit DB Packet Storm

315976	9.8	CRITICAL Network	zscaler	client_connector	An Improper Input Validation vulnerability in Zscaler Client Connector on MacOS allows OS Command Injection. This issue affects Zscaler Client Connector on MacOS <4.2.	CWE-78 OS Command	CVE-2024-23483	2024-08-8 06:23	2024-08-7	Show	GitHub Exploit DB Packet Storm

315977	4.9	MEDIUM Network	zscaler	client_connector	In certain cases, Zscaler Internet Access (ZIA) can be disabled by PowerShell commands with admin rights. This affects Zscaler Client Connector on Windows <4.2.1	NVD-CWE-noinfo	CVE-2024-23464	2024-08-8 06:23	2024-08-7	Show	GitHub Exploit DB Packet Storm

315978	9.8	CRITICAL Network	vivotek	cc8160_firmware	UNSUPPORTED WHEN ASSIGNED A vulnerability was found in Vivotek CC8160 VVTK-0100d. It has been classified as critical. This affects the function getenv of the file upload_file.cgi. The manipulat…	CWE-77 Command Injection	CVE-2024-7440	2024-08-8 06:15	2024-08-4	Show	GitHub Exploit DB Packet Storm

315979	-		novell	groupwise groupwise_webaccess	NOTE: this issue has been disputed by the vendor. The error module in Novell GroupWise WebAccess allows remote attackers who have not authenticated to read potentially sensitive information, such as…	NVD-CWE-Other	CVE-2005-0296	2024-08-8 06:15	2005-01-17	Show	GitHub Exploit DB Packet Storm

315980	9.8	CRITICAL Network	dlink	dir-300_firmware	D-Link DIR-300 REVA FIRMWARE v1.06B05_WW contains hardcoded credentials in the Telnet service.	CWE-798 Use of Hard-coded Credentials	CVE-2024-41616	2024-08-8 05:54	2024-08-7	Show	GitHub Exploit DB Packet Storm