Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252251 7.8 危険 シスコシステムズ - Cisco Unified Communications Manager および Cisco Unified Presence におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-2052 2011-06-14 10:09 2009-08-26 Show GitHub Exploit DB Packet Storm
252252 7.8 危険 シスコシステムズ - Cisco Unified Communications Manager におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2009-2050 2011-06-14 10:06 2009-08-26 Show GitHub Exploit DB Packet Storm
252253 3.5 注意 シスコシステムズ - Cisco Unified CCX サーバの CRS 内にある管理インターフェイスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2048 2011-06-14 10:02 2009-07-15 Show GitHub Exploit DB Packet Storm
252254 6.8 警告 The GIMP Team
レッドハット		 - GIMP の PCX プラグインにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-1178 2011-06-14 09:55 2011-05-31 Show GitHub Exploit DB Packet Storm
252255 3.3 注意 サイバートラスト株式会社
レッドハット		 - libvirt の libvirtd におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1486 2011-06-14 09:55 2011-05-2 Show GitHub Exploit DB Packet Storm
252256 6.9 警告 レッドハット - PolicyKit の pkexec ユーティリティおよび polkitd デーモンにおける権限を取得される脆弱性 CWE-362
競合状態 		CVE-2011-1485 2011-06-14 09:54 2011-04-19 Show GitHub Exploit DB Packet Storm
252257 9 危険 シスコシステムズ - Cisco Unified CCX サーバの CRS 内にある管理インターフェイスにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2047 2011-06-13 14:51 2009-07-15 Show GitHub Exploit DB Packet Storm
252258 6.8 警告 シスコシステムズ - Cisco Video Surveillance 2500 Series IP Camera 上の組込み Web サーバにおける任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2009-2046 2011-06-13 14:49 2009-06-24 Show GitHub Exploit DB Packet Storm
252259 7.8 危険 シスコシステムズ - Cisco Video Surveillance Stream Manager におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-2045 2011-06-13 14:47 2009-06-24 Show GitHub Exploit DB Packet Storm
252260 7.5 危険 The GIMP Team
レッドハット		 - GIMP の PSP プラグインにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4543 2011-06-13 14:44 2011-01-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224021 6.7 MEDIUM
Local 		intel
netapp 		converged_security_management_engine_firmware
steelstore_cloud_integrated_storage 		Improper Authentication in subsystem in Intel(R) CSME versions 12.0 through 12.0.48 (IOT only: 12.0.56), versions 13.0 through 13.0.20, versions 14.0 through 14.0.10 may allow a privileged user to po… CWE-287
Improper Authentication 		CVE-2019-14598 2024-11-21 13:27 2020-02-14 Show GitHub Exploit DB Packet Storm
224022 6.1 MEDIUM
Network 		amazon aws_javascript_s3_explorer explorer.js in Amazon AWS JavaScript S3 Explorer (aka aws-js-s3-explorer) v2 alpha before 2019-08-02 allows XSS in certain circumstances. CWE-79
Cross-site Scripting 		CVE-2019-14652 2024-11-21 13:27 2020-02-13 Show GitHub Exploit DB Packet Storm
224023 4.3 MEDIUM
Network 		redhat single_sign-on
jboss_enterprise_application_platform 		A flaw was found in the JBoss EAP Vault system in all versions before 7.2.6.GA. Confidential information of the system property's security attribute value is revealed in the JBoss EAP log file when e… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2019-14885 2024-11-21 13:27 2020-01-24 Show GitHub Exploit DB Packet Storm
224024 7.5 HIGH
Network 		redhat
netapp 		undertow
jboss_fuse
jboss_enterprise_application_platform
single_sign-on
jboss_data_grid
active_iq_unified_manager 		A vulnerability was found in the Undertow HTTP server in versions before 2.0.28.SP1 when listening on HTTPS. An attacker can target the HTTPS port to carry out a Denial Of Service (DOS) to make the s… NVD-CWE-noinfo
CVE-2019-14888 2024-11-21 13:27 2020-01-24 Show GitHub Exploit DB Packet Storm
224025 5.4 MEDIUM
Network 		samba
canonical
opensuse
debian 		samba
ubuntu_linux
leap
debian_linux 		There is an issue in all samba 4.11.x versions before 4.11.5, all samba 4.10.x versions before 4.10.12 and all samba 4.9.x versions before 4.9.18, where the removal of the right to create or modify a… NVD-CWE-noinfo
CVE-2019-14902 2024-11-21 13:27 2020-01-22 Show GitHub Exploit DB Packet Storm
224026 6.5 MEDIUM
Network 		fedoraproject
samba
redhat
canonical
synology
debian 		fedora
samba
enterprise_linux
storage
ubuntu_linux
skynas
diskstation_manager
directory_server
router_manager
debian_linux 		All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an issue where if it is set with "log level = 3" (or above) then the string obtained from the client, after… CWE-125
Out-of-bounds Read 		CVE-2019-14907 2024-11-21 13:27 2020-01-22 Show GitHub Exploit DB Packet Storm
224027 8.8 HIGH
Network 		dimo-crm yellowbox_crm An Arbitrary File Upload issue in the file browser of DIMO YellowBox CRM before 6.3.4 allows a standard authenticated user to deploy a new WebApp WAR file to the Tomcat server via Path Traversal, all… CWE-22
Path Traversal 		CVE-2019-14768 2024-11-21 13:27 2020-01-22 Show GitHub Exploit DB Packet Storm
224028 7.5 HIGH
Network 		dimo-crm yellowbox_crm In DIMO YellowBox CRM before 6.3.4, Path Traversal in images/Apparence (dossier=../) and servletrecuperefichier (document=../) allows an unauthenticated user to download arbitrary files from the serv… CWE-22
Path Traversal 		CVE-2019-14767 2024-11-21 13:27 2020-01-22 Show GitHub Exploit DB Packet Storm
224029 6.5 MEDIUM
Network 		dimo-crm yellowbox_crm Path Traversal in the file browser of DIMO YellowBox CRM before 6.3.4 allows a standard authenticated user to browse the server filesystem. CWE-22
Path Traversal 		CVE-2019-14766 2024-11-21 13:27 2020-01-22 Show GitHub Exploit DB Packet Storm
224030 8.8 HIGH
Network 		dimo-crm yellowbox_crm Incorrect Access Control in AfficheExplorateurParam() in DIMO YellowBox CRM before 6.3.4 allows a standard authenticated user to use administrative controllers. NVD-CWE-noinfo
CVE-2019-14765 2024-11-21 13:27 2020-01-22 Show GitHub Exploit DB Packet Storm