Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249291	4.3	警告	アップル PNG Development Group サン・マイクロシステムズ	-	libpng の pngset.c における一つずれエラーの脆弱性	CWE-189 数値処理の問題	CVE-2007-5266	2012-04-18 18:51	2007-10-18	Show	GitHub Exploit DB Packet Storm

249292	4.3	警告	アップルサイバートラスト株式会社 PNG Development Group サン・マイクロシステムズ VMware レッドハット	-	libpng における初期化されていないメモリ内の情報の一部を読まれる脆弱性	CWE-200 情報漏えい	CVE-2009-2042	2012-04-18 18:50	2009-06-12	Show	GitHub Exploit DB Packet Storm

249293	7.5	危険	アップルサイバートラスト株式会社 PNG Development Group サン・マイクロシステムズレッドハット	-	libpng の PNG ファイル処理における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2008-1382	2012-04-18 17:58	2008-04-14	Show	GitHub Exploit DB Packet Storm

249294	5	警告	アップルサイバートラスト株式会社 PNG Development Group サン・マイクロシステムズレッドハット	-	libpng の複数のチャンクハンドラにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-5269	2012-04-18 17:57	2007-10-8	Show	GitHub Exploit DB Packet Storm

249295	6.8	警告	ニュートンアップルサイバートラスト株式会社 Mozilla Foundation PNG Development Group サン・マイクロシステムズフェンリル株式会社レッドハット	-	libpng が適切にエレメントポインタを初期化しない脆弱性	CWE-94 コード・インジェクション	CVE-2009-0040	2012-04-18 17:54	2009-03-4	Show	GitHub Exploit DB Packet Storm

249296	4.3	警告	サン・マイクロシステムズ PNG Development Group	-	libpng におけるサービス運用妨害 (DoS) 状態の脆弱性	CWE-399 リソース管理の問題	CVE-2008-3964	2012-04-18 17:52	2008-09-11	Show	GitHub Exploit DB Packet Storm

249297	4.3	警告	フォーティネット Panda Security Doctor Web アラジン	-	複数の製品の ELF ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1447	2012-04-18 17:38	2012-03-21	Show	GitHub Exploit DB Packet Storm

249298	6.8	警告	Squid-cache.org	-	Gopher の gopherToHTML 関数におけるバッファオーバーフローの脆弱性	CWE-DesignError	CVE-2011-3205	2012-04-18 17:28	2011-08-28	Show	GitHub Exploit DB Packet Storm

249299	7.8	危険	マイクロソフト日本電気	-	Microsoft .NET Framework におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3414	2012-04-18 17:07	2011-12-29	Show	GitHub Exploit DB Packet Storm

249300	5	警告	リアルネットワークス	-	RealNetworks Helix Server および Helix Mobile Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-2268	2012-04-18 15:30	2012-04-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196911	7.8	HIGH Local	qualcomm	apq8017_firmware apq8037_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmwar…	Memory corruption in key parsing and import function due to double freeing the same heap allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdrago…	CWE-415 Double Free	CVE-2021-1888	2024-11-21 14:45	2021-07-13	Show	GitHub Exploit DB Packet Storm

196912	7.8	HIGH Local	qualcomm	apq8017_firmware apq8037_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmwar…	Incorrect handling of pointers in trusted application key import mechanism could cause memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snap…	CWE-787 Out-of-bounds Write	CVE-2021-1886	2024-11-21 14:45	2021-07-13	Show	GitHub Exploit DB Packet Storm

196913	8.1	HIGH Adjacent	sonicwall	switch	Multiple Out-of-Bound read vulnerability in SonicWall Switch when handling LLDP Protocol allows an attacker to cause a system instability or potentially read sensitive information from the memory loc…	CWE-125 Out-of-bounds Read	CVE-2021-20024	2024-11-21 14:45	2021-07-10	Show	GitHub Exploit DB Packet Storm

196914	5.4	MEDIUM Adjacent	sloan	optima_eaf-100_firmware optima_eaf-150_firmware optima_eaf-200_firmware optima_eaf-225_firmware optima_eaf-250_firmware optima_eaf-275_firmware optima_eaf-350_firmware optima_eaf…	There exists an unauthenticated BLE Interface in Sloan SmartFaucets including Optima EAF, Optima ETF/EBF, BASYS EFX, and Flushometers including SOLIS. The vulnerability allows for unauthenticated kin…	CWE-306 Missing Authentication for Critical Function	CVE-2021-20107	2024-11-21 14:45	2021-06-30	Show	GitHub Exploit DB Packet Storm

196915	6.7	MEDIUM Local	tenable	nessus	Nessus versions 8.13.2 and earlier were found to contain a privilege escalation vulnerability which could allow a Nessus administrator user to upload a specially crafted file that could lead to gaini…	NVD-CWE-noinfo	CVE-2021-20079	2024-11-21 14:45	2021-06-30	Show	GitHub Exploit DB Packet Storm

196916	6.1	MEDIUM Network	machform	machform	Machform prior to version 16 is vulnerable to an open redirect in Safari_init.php due to an improperly sanitized 'ref' parameter.	CWE-601 Open Redirect	CVE-2021-20105	2024-11-21 14:45	2021-06-30	Show	GitHub Exploit DB Packet Storm

196917	8.1	HIGH Network	machform	machform	Machform prior to version 16 is vulnerable to unauthenticated remote code execution due to insufficient sanitization of file attachments uploaded with forms through upload.php.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-20104	2024-11-21 14:45	2021-06-30	Show	GitHub Exploit DB Packet Storm

196918	6.1	MEDIUM Network	machform	machform	Machform prior to version 16 is vulnerable to stored cross-site scripting due to insufficient sanitization of file attachments uploaded with forms through upload.php.	CWE-79 Cross-site Scripting	CVE-2021-20103	2024-11-21 14:45	2021-06-30	Show	GitHub Exploit DB Packet Storm

196919	8.8	HIGH Network	machform	machform	Machform prior to version 16 is vulnerable to cross-site request forgery due to a lack of CSRF tokens in place.	CWE-352 Origin Validation Error	CVE-2021-20102	2024-11-21 14:45	2021-06-30	Show	GitHub Exploit DB Packet Storm

196920	6.1	MEDIUM Network	machform	machform	Machform prior to version 16 is vulnerable to HTTP host header injection due to improperly validated host headers. This could cause a victim to receive malformed content.	CWE-74 Injection	CVE-2021-20101	2024-11-21 14:45	2021-06-30	Show	GitHub Exploit DB Packet Storm