Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251051	9.3	危険	IBM	-	IBM OmniFind の Java_com_ibm_es_oss_CryptionNative_ESEncrypt 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3894	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251052	7.5	危険	IBM	-	IBM OmniFind の管理インタフェースにおける任意の管理者操作を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3893	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251053	6.8	警告	IBM	-	IBM OmniFind のログインフォームにおけるセッションをハイジャックされる脆弱性	CWE-Other その他	CVE-2010-3892	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251054	6.8	警告	IBM	-	IBM OmniFind の ESAdmin/security.do におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3891	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251055	4.3	警告	IBM	-	IBM OmniFind におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3890	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

251056	1.9	注意	Linux	-	Linux kernel の ax25_getname 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-3875	2012-03-27 18:42	2011-01-3	Show	GitHub Exploit DB Packet Storm

251057	7.8	危険	Linux	-	Linux kernel の X.25 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-3873	2012-03-27 18:42	2011-01-3	Show	GitHub Exploit DB Packet Storm

251058	7.2	危険	マイクロソフト	-	Microsoft Windows の 32 ビットプラットフォームにおける権限昇格の脆弱性	CWE-noinfo 情報不足	CVE-2010-3889	2012-03-27 18:42	2010-10-8	Show	GitHub Exploit DB Packet Storm

251059	7.2	危険	マイクロソフト	-	Microsoft Windows の 32 ビットプラットフォームにおける権限昇格の脆弱性	CWE-noinfo 情報不足	CVE-2010-3888	2012-03-27 18:42	2010-10-8	Show	GitHub Exploit DB Packet Storm

251060	4.3	警告	アップル	-	Apple の Mac OS X の Limit Mail 機能におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3887	2012-03-27 18:42	2010-10-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195421	9.8	CRITICAL Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_analytics big-ip_application_security_manager big-ip_domain_name_system …	On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, and 12.1.x before 12.1.5.3 amd BIG-IQ 7.1.0.x before 7.1.0.3 and 7.0.0.x before 7.0.0.…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2021-22986	2024-11-21 14:51	2021-04-1	Show	GitHub Exploit DB Packet Storm

195422	8.8	HIGH Network	kill-by-port_project	kill-by-port	This affects the package kill-by-port before 0.0.2. If (attacker-controlled) user input is given to the killByPort function, it is possible for an attacker to execute arbitrary commands. This is due …	CWE-78 OS Command	CVE-2021-23363	2024-11-21 14:51	2021-03-31	Show	GitHub Exploit DB Packet Storm

195423	7.2	HIGH Network	underscorejs debian tenable fedoraproject	underscore debian_linux tenable.sc fedora	The package underscore from 1.13.0-0 and before 1.13.0-2, from 1.3.2 and before 1.12.1 are vulnerable to Arbitrary Code Injection via the template function, particularly when a variable property is p…	CWE-94 Code Injection	CVE-2021-23358	2024-11-21 14:51	2021-03-29	Show	GitHub Exploit DB Packet Storm

195424	5.3	MEDIUM Network	npmjs siemens	hosted-git-info sinec_infrastructure_network_services	The package hosted-git-info before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular …	CWE-1333 Inefficient Regular Expression Complexity	CVE-2021-23362	2024-11-21 14:51	2021-03-24	Show	GitHub Exploit DB Packet Storm

195425	9.8	CRITICAL Network	tibco	api_exchange_gateway_distribution api_exchange_gateway	The Config UI component of TIBCO Software Inc.'s TIBCO API Exchange Gateway and TIBCO API Exchange Gateway Distribution for TIBCO Silver Fabric contains a vulnerability that theoretically allows an u…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2021-23274	2024-11-21 14:51	2021-03-24	Show	GitHub Exploit DB Packet Storm

195426	8.8	HIGH Network	killport_project	killport	This affects the package killport before 1.0.2. If (attacker-controlled) user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exe…	CWE-78 OS Command	CVE-2021-23360	2024-11-21 14:51	2021-03-22	Show	GitHub Exploit DB Packet Storm

195427	8.8	HIGH Network	port-killer_project	port-killer	This affects all versions of package port-killer. If (attacker-controlled) user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process e…	CWE-78 OS Command	CVE-2021-23359	2024-11-21 14:51	2021-03-18	Show	GitHub Exploit DB Packet Storm

195428	6.7	MEDIUM Local	mcafee	endpoint_product_removal_tool	Unquoted service path vulnerability in McAfee Endpoint Product Removal (EPR) Tool prior to 21.2 allows local administrators to execute arbitrary code, with higher-level privileges, via execution from…	CWE-428 Unquoted Search Path or Element	CVE-2021-23879	2024-11-21 14:51	2021-03-16	Show	GitHub Exploit DB Packet Storm

195429	5.3	MEDIUM Local	tyk	tyk	All versions of package github.com/tyktechnologies/tyk/gateway are vulnerable to Directory Traversal via the handleAddOrUpdateApi function. This function is able to delete arbitrary JSON files on the…	CWE-22 Path Traversal	CVE-2021-23357	2024-11-21 14:51	2021-03-16	Show	GitHub Exploit DB Packet Storm

195430	9.8	CRITICAL Network	kill-process-by-name_project	kill-process-by-name	This affects all versions of package kill-process-by-name. If (attacker-controlled) user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_…	CWE-78 OS Command	CVE-2021-23356	2024-11-21 14:51	2021-03-16	Show	GitHub Exploit DB Packet Storm