Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252531	5	警告	One Click Orgs	-	One Click Orgs のパスワードリセット機能におけるユーザアカウントを列挙される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-4678	2011-12-12 18:19	2011-12-6	Show	GitHub Exploit DB Packet Storm

252532	4	警告	One Click Orgs	-	One Click Orgs におけるサービス運用妨害 (ログイン障害) の脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-4555	2011-12-12 18:18	2011-12-6	Show	GitHub Exploit DB Packet Storm

252533	5.5	警告	One Click Orgs	-	One Click Orgs における巧妙に細工された SMTP トラフィックを誘発する脆弱性	CWE-20 不適切な入力確認	CVE-2011-4554	2011-12-12 18:15	2011-12-6	Show	GitHub Exploit DB Packet Storm

252534	6.9	警告	Celery	-	Celery における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4356	2011-12-12 18:14	2011-12-5	Show	GitHub Exploit DB Packet Storm

252535	7.5	危険	ヒューレット・パッカード	-	HP Protect Tools Device Access Manager における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-4162	2011-12-12 18:13	2011-12-1	Show	GitHub Exploit DB Packet Storm

252536	10	危険	ヒューレット・パッカード	-	HP CM8060 Color MFP その他の製品のデフォルト設定における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4161	2011-12-12 18:10	2011-11-30	Show	GitHub Exploit DB Packet Storm

252537	6.9	警告	マイクロソフト	-	Microsoft Windows 7 における Internet Explorer サンドボックスの制限を回避される脆弱性	CWE-noinfo 情報不足	CVE-2011-4695	2011-12-12 16:39	2011-12-7	Show	GitHub Exploit DB Packet Storm

252538	9.3	危険	アップルアドビシステムズマイクロソフト	-	Windows および Mac OS X 上で稼働する Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-4694	2011-12-12 16:38	2011-12-7	Show	GitHub Exploit DB Packet Storm

252539	9.3	危険	アップルアドビシステムズマイクロソフト	-	Windows および Mac OS X 上で稼働する Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-4693	2011-12-12 16:37	2011-12-7	Show	GitHub Exploit DB Packet Storm

252540	5	警告	アップル Google	-	WebKit におけるブラウザキャッシュ内の画像データの存在を推測される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4692	2011-12-12 16:36	2011-12-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221671	9.8	CRITICAL Network	google	flatbuffers	An issue was discovered in the flatbuffers crate before 0.6.1 for Rust. Arbitrary bytes can be reinterpreted as a bool, defeating soundness.	NVD-CWE-noinfo	CVE-2019-25004	2024-11-21 13:39	2020-12-31	Show	GitHub Exploit DB Packet Storm

221672	7.5	HIGH Network	parity	libsecp256k1	An issue was discovered in the libsecp256k1 crate before 0.3.1 for Rust. Scalar::check_overflow allows a timing side-channel attack; consequently, attackers can obtain sensitive information.	NVD-CWE-Other	CVE-2019-25003	2024-11-21 13:39	2020-12-31	Show	GitHub Exploit DB Packet Storm

221673	9.8	CRITICAL Network	sodiumoxide_project	sodiumoxide	An issue was discovered in the sodiumoxide crate before 0.2.5 for Rust. generichash::Digest::eq compares itself to itself and thus has degenerate security properties.	NVD-CWE-noinfo	CVE-2019-25002	2024-11-21 13:39	2020-12-31	Show	GitHub Exploit DB Packet Storm

221674	7.5	HIGH Network	serde_cbor_project	serde_cbor	An issue was discovered in the serde_cbor crate before 0.10.2 for Rust. The CBOR deserializer can cause stack consumption via nested semantic tags.	CWE-787 Out-of-bounds Write	CVE-2019-25001	2024-11-21 13:39	2020-12-31	Show	GitHub Exploit DB Packet Storm

221675	6.5	MEDIUM Local	qemu	qemu	In QEMU 4.1.0, an out-of-bounds read flaw was found in the ATI VGA implementation. It occurs in the ati_cursor_define() routine while handling MMIO write operations through the ati_mm_write() callbac…	CWE-125 Out-of-bounds Read	CVE-2019-20808	2024-11-21 13:39	2020-12-31	Show	GitHub Exploit DB Packet Storm

221676	5.3	MEDIUM Local	linux	linux_kernel	An issue was discovered in the Linux kernel before 5.2.6. On NUMA systems, the Linux fair scheduler has a use-after-free in show_numa_stats() because NUMA fault statistics are inappropriately freed, …	CWE-416 Use After Free	CVE-2019-20934	2024-11-21 13:39	2020-11-28	Show	GitHub Exploit DB Packet Storm

221677	7.5	HIGH Network	mongodb	mongodb	An unauthenticated client can trigger denial of service by issuing specially crafted wire protocol messages, which cause the message decompressor to incorrectly allocate memory. This issue affects Mo…	CWE-697 Incorrect Comparison	CVE-2019-20925	2024-11-21 13:39	2020-11-24	Show	GitHub Exploit DB Packet Storm

221678	6.5	MEDIUM Network	mongodb	mongodb	A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries which trigger an invariant in the IndexBoundsBuilder. This issue affects MongoDB Serve…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2019-20924	2024-11-21 13:39	2020-11-24	Show	GitHub Exploit DB Packet Storm

221679	6.5	MEDIUM Network	mongodb	mongodb	A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which throw unhandled Javascript exceptions containing types intended to be scoped to…	NVD-CWE-Other	CVE-2019-20923	2024-11-21 13:39	2020-11-24	Show	GitHub Exploit DB Packet Storm

221680	9.8	CRITICAL Network	influxdata debian	influxdb debian_linux	InfluxDB before 1.7.6 has an authentication bypass vulnerability in the authenticate function in services/httpd/handler.go because a JWT token may have an empty SharedSecret (aka shared secret).	CWE-287 Improper Authentication	CVE-2019-20933	2024-11-21 13:39	2020-11-19	Show	GitHub Exploit DB Packet Storm