Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250141 4.6 警告 ヒューレット・パッカード
IBM
オラクル		 - HP ALM 内の getInstalledPackages 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4834 2011-12-19 15:08 2011-12-15 Show GitHub Exploit DB Packet Storm
250142 7.5 危険 SugarCRM - SugarCRM の Leads モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4833 2011-12-19 15:08 2011-12-15 Show GitHub Exploit DB Packet Storm
250143 7.5 危険 Moxiecode Systems AB
phpMyFAQ
PHPletter		 - 複数の製品で使用される inc/function.base.php における PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4825 2011-12-19 15:07 2011-10-25 Show GitHub Exploit DB Packet Storm
250144 7.5 危険 The Cacti Group - Cacti の auth_login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4824 2011-12-19 15:06 2011-09-26 Show GitHub Exploit DB Packet Storm
250145 4.3 警告 Atlassian - Atlassian FishEye のユーザプロファイル機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4822 2011-12-19 15:05 2011-10-24 Show GitHub Exploit DB Packet Storm
250146 3.6 注意 Artsoft Entertainment - Artsoft Entertainment の Rocks'n'Diamonds における任意のファイルを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4606 2011-12-19 15:05 2011-12-15 Show GitHub Exploit DB Packet Storm
250147 4.3 警告 Digium - Asterisk の channels/chan_sip.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-200
情報漏えい 		CVE-2011-4598 2011-12-19 15:03 2011-11-2 Show GitHub Exploit DB Packet Storm
250148 5 警告 Digium - Asterisk の UDP 実装での SIP におけるユーザ名を列挙される脆弱性 CWE-200
情報漏えい 		CVE-2011-4597 2011-12-19 15:01 2011-07-18 Show GitHub Exploit DB Packet Storm
250149 7.5 危険 Caupo.Net - CaupoShop Pro および CaupoShop Classic におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4832 2011-12-19 13:44 2011-12-15 Show GitHub Exploit DB Packet Storm
250150 4 警告 David Azoulay - Web File Browser の webFileBrowser.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4831 2011-12-19 13:43 2011-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211151 7.7 HIGH
Network 		dpdk
fedoraproject
opensuse
oracle 		data_plane_development_kit
fedora
leap
enterprise_communications_broker 		A flaw was found in DPDK version 19.11 and above that allows a malicious guest to cause a segmentation fault of the vhost-user backend application running on the host, which could result in a loss of… - CVE-2020-10725 2024-11-21 13:55 2020-05-20 Show GitHub Exploit DB Packet Storm
211152 4.4 MEDIUM
Local 		dpdk
canonical
fedoraproject 		data_plane_development_kit
ubuntu_linux
fedora 		A vulnerability was found in DPDK versions 18.11 and above. The vhost-crypto library code is missing validations for user-supplied values, potentially allowing an information leak through an out-of-b… CWE-125
Out-of-bounds Read 		CVE-2020-10724 2024-11-21 13:55 2020-05-20 Show GitHub Exploit DB Packet Storm
211153 6.7 MEDIUM
Local 		dpdk
canonical
fedoraproject
opensuse
oracle 		data_plane_development_kit
ubuntu_linux
fedora
leap
enterprise_communications_broker
communications_session_border_controller 		A memory corruption issue was found in DPDK versions 17.05 and above. This flaw is caused by an integer truncation on the index of a payload. Under certain circumstances, the index (a UInt) is copied… - CVE-2020-10723 2024-11-21 13:55 2020-05-20 Show GitHub Exploit DB Packet Storm
211154 6.7 MEDIUM
Local 		dpdk
canonical
fedoraproject
opensuse
oracle 		data_plane_development_kit
ubuntu_linux
fedora
leap
enterprise_communications_broker
communications_session_border_controller 		A vulnerability was found in DPDK versions 18.05 and above. A missing check for an integer overflow in vhost_user_set_log_base() could result in a smaller memory map than requested, possibly allowing… - CVE-2020-10722 2024-11-21 13:55 2020-05-20 Show GitHub Exploit DB Packet Storm
211155 5.0 MEDIUM
Local 		redhat ansible_tower
ansible 		An incomplete fix was found for the fix of the flaw CVE-2020-1733 ansible: insecure temporary directory when running become_user from become directive. The provided fix is insufficient to prevent the… CWE-362
Race Condition 		CVE-2020-10744 2024-11-21 13:55 2020-05-15 Show GitHub Exploit DB Packet Storm
211156 9.8 CRITICAL
Network 		opto22 softpac_project Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC communication does not include any credentials. This allows an attacker with network access to directly communicate with SoftPAC, including, for… CWE-862
 Missing Authorization 		CVE-2020-10620 2024-11-21 13:55 2020-05-15 Show GitHub Exploit DB Packet Storm
211157 8.8 HIGH
Network 		opto22 softpac_project Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC does not specify the path of multiple imported .dll files. Therefore, an attacker can replace them and execute code whenever the service starts. CWE-427
 Uncontrolled Search Path Element 		CVE-2020-10616 2024-11-21 13:55 2020-05-15 Show GitHub Exploit DB Packet Storm
211158 9.1 CRITICAL
Network 		opto22 softpac_project Opto 22 SoftPAC Project Version 9.6 and prior. SoftPACAgent communicates with SoftPACMonitor over network Port 22000. However, this port is open without any restrictions. This allows an attacker with… CWE-862
 Missing Authorization 		CVE-2020-10612 2024-11-21 13:55 2020-05-15 Show GitHub Exploit DB Packet Storm
211159 7.8 HIGH
Local 		fazecast
schneider-electric 		jserialcomm
ecostruxure_it_gateway 		In Fazecast jSerialComm, Version 2.2.2 and prior, an uncontrolled search path element vulnerability could allow a malicious DLL file with the same name of any resident DLLs inside the software instal… CWE-427
 Uncontrolled Search Path Element 		CVE-2020-10626 2024-11-21 13:55 2020-05-15 Show GitHub Exploit DB Packet Storm
211160 9.8 CRITICAL
Network 		pingidentity pingid_ssh_integration Ping Identity PingID SSH before 4.0.14 contains a heap buffer overflow in PingID-enrolled servers. This condition can be potentially exploited into a Remote Code Execution vector on the authenticatin… CWE-787
 Out-of-bounds Write 		CVE-2020-10654 2024-11-21 13:55 2020-05-13 Show GitHub Exploit DB Packet Storm