Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250251	4.3	警告	Vtiger	-	vtiger CRM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4680	2011-12-12 11:39	2011-12-7	Show	GitHub Exploit DB Packet Storm

250252	4	警告	Vtiger	-	vtiger CRM におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4679	2011-12-12 11:39	2011-12-7	Show	GitHub Exploit DB Packet Storm

250253	5	警告	Novell	-	Novell Messenger および Novell GroupWise Messenger における任意のメモリ配置を読み取られる脆弱性	CWE-200 情報漏えい	CVE-2011-3179	2011-12-12 11:37	2011-10-25	Show	GitHub Exploit DB Packet Storm

250254	10	危険	Novell	-	Novell ZENworks Asset Management の rtrlet コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-2653	2011-12-12 11:36	2011-11-2	Show	GitHub Exploit DB Packet Storm

250255	7.8	危険	日立	-	JP1/Cm2/Network Node Manager i におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	-	2011-12-9 16:35	2011-10-12	Show	GitHub Exploit DB Packet Storm

250256	5	警告	Opera Software ASA	-	Opera におけるサービス運用妨害 (CPU およびメモリ消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-4687	2011-12-9 16:07	2011-12-7	Show	GitHub Exploit DB Packet Storm

250257	5	警告	Opera Software ASA	-	Opera の Web Workers 実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-noinfo 情報不足	CVE-2011-4686	2011-12-9 16:06	2011-12-7	Show	GitHub Exploit DB Packet Storm

250258	5	警告	Opera Software ASA	-	Opera の Dragonfly におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-4685	2011-12-9 16:05	2011-12-7	Show	GitHub Exploit DB Packet Storm

250259	10	危険	Opera Software ASA	-	Opera における証明書失効の処理に関する詳細不明な脆弱性	CWE-310 暗号の問題	CVE-2011-4684	2011-12-9 16:05	2011-12-7	Show	GitHub Exploit DB Packet Storm

250260	10	危険	Opera Software ASA	-	Opera における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2011-4683	2011-12-9 16:04	2011-12-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213121	9.8	CRITICAL Network	deltacontrols	entelibus_firmware	Buffer Overflow in dactetra in Delta Controls enteliBUS Manager V3.40_B-571848 allows remote unauthenticated users to execute arbitrary code and possibly cause a denial of service via unspecified vec…	CWE-787 Out-of-bounds Write	CVE-2019-9569	2024-11-21 13:51	2019-08-27	Show	GitHub Exploit DB Packet Storm

213122	5.9	MEDIUM Network	openpgpjs	openpgpjs	A cryptographic issue in OpenPGP.js <=4.2.0 allows an attacker who is able provide forged messages and gain feedback about whether decryption of these messages succeeded to conduct an invalid curve a…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2019-9155	2024-11-21 13:51	2019-08-23	Show	GitHub Exploit DB Packet Storm

213123	7.5	HIGH Network	openpgpjs	openpgpjs	Improper Verification of a Cryptographic Signature in OpenPGP.js <=4.1.2 allows an attacker to pass off unsigned data as signed.	CWE-347 Improper Verification of Cryptographic Signature	CVE-2019-9154	2024-11-21 13:51	2019-08-23	Show	GitHub Exploit DB Packet Storm

213124	7.5	HIGH Network	openpgpjs	openpgpjs	Improper Verification of a Cryptographic Signature in OpenPGP.js <=4.1.2 allows an attacker to forge signed messages by replacing its signatures with a "standalone" or "timestamp" signature.	CWE-347 Improper Verification of Cryptographic Signature	CVE-2019-9153	2024-11-21 13:51	2019-08-23	Show	GitHub Exploit DB Packet Storm

213125	9.8	CRITICAL Network	eq-3	homematic_ccu2_firmware homematic_ccu3_firmware	eQ-3 Homematic CCU2 prior to 2.47.10 and CCU3 prior to 3.47.10 JSON API has Improper Access Control for Interface.***Metadata related operations, resulting in the ability to read, set and deletion of…	CWE-306 Missing Authentication for Critical Function	CVE-2019-9585	2024-11-21 13:51	2019-08-15	Show	GitHub Exploit DB Packet Storm

213126	9.8	CRITICAL Network	eq-3	homematic_ccu2_firmware homematic_ccu3_firmware	eQ-3 Homematic AddOn 'CloudMatic' on CCU2 and CCU3 allows uncontrolled admin access, resulting in the ability to obtain VPN profile details, shutting down the VPN service and to delete the VPN servic…	CWE-425 Direct Request ('Forced Browsing')	CVE-2019-9584	2024-11-21 13:51	2019-08-15	Show	GitHub Exploit DB Packet Storm

213127	8.2	HIGH Network	eq-3	homematic_ccu3_firmware homematic_ccu2_firmware	eQ-3 Homematic CCU2 and CCU3 obtain session IDs without login. This allows a Denial of Service and is a starting point for other attacks. Affected versions for CCU2: 2.35.16, 2.41.5, 2.41.8, 2.41.9, …	CWE-400 Uncontrolled Resource Consumption	CVE-2019-9583	2024-11-21 13:51	2019-08-15	Show	GitHub Exploit DB Packet Storm

213128	7.5	HIGH Network	eq-3	homematic_ccu2_firmware	eQ-3 Homematic CCU2 outdated base software packages allows Denial of Service. CCU2 affected versions: 2.35.16, 2.41.5, 2.41.8, 2.41.9, 2.45.6, 2.45.7, 2.47.10, 2.47.12, 2.47.15.	NVD-CWE-noinfo	CVE-2019-9582	2024-11-21 13:51	2019-08-15	Show	GitHub Exploit DB Packet Storm

213129	8.1	HIGH Adjacent	google apple canonical debian opensuse redhat huawei	android mac_os_x watchos iphone_os tvos ubuntu_linux debian_linux leap enterprise_linux_server enterprise_linux_for_real_time enterprise_linux_for_real_time_for_nfv e…	The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This al…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2019-9506	2024-11-21 13:51	2019-08-15	Show	GitHub Exploit DB Packet Storm

213130	7.5	HIGH Network	apple apache canonical debian synology fedoraproject opensuse redhat oracle mcafee nodejs	swiftnio traffic_server ubuntu_linux debian_linux skynas diskstation_manager vs960hd_firmware fedora leap software_collections jboss_core_services enterprise_linux	Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a denial of service. The attacker sends a stream of frames with an empty payload and without the end-of-s…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2019-9518	2024-11-21 13:51	2019-08-14	Show	GitHub Exploit DB Packet Storm