Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 1, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253111 | 10 | 危険 | シスコシステムズ | - | Cisco TelePresence エンドポイントデバイスにおける重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2011-0376 | 2011-11-29 09:51 | 2011-02-23 | Show | GitHub Exploit DB Packet Storm |
| 253112 | 9 | 危険 | シスコシステムズ | - | Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性 |
CWE-78
OSコマンド・インジェクション |
CVE-2011-0375 | 2011-11-29 09:51 | 2011-02-23 | Show | GitHub Exploit DB Packet Storm |
| 253113 | 9 | 危険 | シスコシステムズ | - | Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性 |
CWE-78
OSコマンド・インジェクション |
CVE-2011-0374 | 2011-11-29 09:50 | 2011-02-23 | Show | GitHub Exploit DB Packet Storm |
| 253114 | 9 | 危険 | シスコシステムズ | - | Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性 |
CWE-78
OSコマンド・インジェクション |
CVE-2011-0373 | 2011-11-29 09:50 | 2011-02-23 | Show | GitHub Exploit DB Packet Storm |
| 253115 | 10 | 危険 | シスコシステムズ | - | Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性 |
CWE-78
OSコマンド・インジェクション |
CVE-2011-0372 | 2011-11-29 09:49 | 2011-02-23 | Show | GitHub Exploit DB Packet Storm |
| 253116 | 10 | 危険 | シスコシステムズ | - | Cisco Security Agent の Management Console における任意のファイルを作られる脆弱性 |
CWE-94
コード・インジェクション |
CVE-2011-0364 | 2011-11-29 09:48 | 2011-02-16 | Show | GitHub Exploit DB Packet Storm |
| 253117 | 7.8 | 危険 | VMware シスコシステムズ |
- | Cisco Nexus 1000V Virtual Ethernet Module におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-0355 | 2011-11-29 09:46 | 2011-02-7 | Show | GitHub Exploit DB Packet Storm |
| 253118 | 7.5 | 危険 | 日本電気 アップル アライドテレシス サン・マイクロシステムズ BEAシステムズ レッドハット |
- | Java Web Start において許可されていないシステムクラスが実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2007-2435 | 2011-11-28 16:52 | 2007-04-30 | Show | GitHub Exploit DB Packet Storm |
| 253119 | 4 | 警告 | サイボウズ | - | サイボウズ Office におけるアクセス制限不備の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-2677 | 2011-11-28 16:45 | 2011-10-7 | Show | GitHub Exploit DB Packet Storm |
| 253120 | 6.8 | 警告 | Zenprise Inc. | - | Zenprise Device Manager にクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2011-4498 | 2011-11-28 14:56 | 2011-11-21 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 1, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 195081 | 7.5 |
HIGH
Network |
f5 |
big-ip_application_acceleration_manager big-ip_local_traffic_manager big-ip_advanced_web_application_firewall big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_secur… |
On BIG-IP version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 13.1.4, and 12.1.x before 12.1.6, when an HTTP profile is configured on a virtual server, undisclos… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2021-23042 | 2024-11-21 14:51 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |
| 195082 | 6.1 |
MEDIUM
Network |
f5 |
big-ip_access_policy_manager big-ip_application_security_manager big-ip_advanced_firewall_manager big-ip_advanced_web_application_firewall big-ip_analytics big-ip_domain_name_system
On BIG-IP version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.4.2, 13.1.x before 13.1.4.1, and all versions of 12.1.x, a DOM based cross-site scripting (XSS) vulnerability exists…
|
CWE-79
|
Cross-site Scripting
CVE-2021-23041
|
2024-11-21 14:51 |
2021-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 195083 | 6.1 |
MEDIUM
Network |
f5 | big-ip_access_policy_manager | On version 14.1.x before 14.1.4.4 and all versions of 13.1.x, an open redirect vulnerability exists on virtual servers enabled with a BIG-IP APM access policy. This vulnerability allows an unauthenti… |
CWE-601
Open Redirect |
CVE-2021-23052 | 2024-11-21 14:51 | 2021-09-14 | Show | GitHub Exploit DB Packet Storm |
| 195084 | 5.3 |
MEDIUM
Network |
f5 |
big-ip_advanced_web_application_firewall big-ip_application_security_manager |
On version 15.1.x before 15.1.3, 14.1.x before 14.1.3.1, and 13.1.x before 13.1.3.6, when the brute force protection feature of BIG-IP Advanced WAF or BIG-IP ASM is enabled on a virtual server and th… |
CWE-770
Allocation of Resources Without Limits or Throttling |
CVE-2021-23053 | 2024-11-21 14:51 | 2021-09-14 | Show | GitHub Exploit DB Packet Storm |
| 195085 | 7.5 |
HIGH
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_advanced_web_application_firewall big-ip_analytics big-ip_application_acceleration_manager big-ip_application_secur… |
On BIG-IP versions 15.1.0.4 through 15.1.3, when the Data Plane Development Kit (DPDK)/Elastic Network Adapter (ENA) driver is used with BIG-IP on Amazon Web Services (AWS) systems, undisclosed reque… |
NVD-CWE-noinfo
|
CVE-2021-23051 | 2024-11-21 14:51 | 2021-09-14 | Show | GitHub Exploit DB Packet Storm |
| 195086 | 7.5 |
HIGH
Network |
f5 |
big-ip_application_security_manager big-ip_advanced_web_application_firewall nginx_app_protect |
On BIG-IP Advanced WAF and BIG-IP ASM version 16.0.x before 16.0.1.2 and 15.1.x before 15.1.3 and NGINX App Protect on all versions before 3.5.0, when a cross-site request forgery (CSRF)-enabled poli… |
NVD-CWE-noinfo
|
CVE-2021-23050 | 2024-11-21 14:51 | 2021-09-14 | Show | GitHub Exploit DB Packet Storm |
| 195087 | 7.5 |
HIGH
Network |
f5 |
big-ip_access_policy_manager big-ip_application_security_manager big-ip_advanced_firewall_manager big-ip_advanced_web_application_firewall big-ip_analytics big-ip_application_accelerat… |
On BIG-IP version 16.0.x before 16.0.1.2 and 15.1.x before 15.1.3, when the iRules RESOLVER::summarize command is used on a virtual server, undisclosed requests can cause an increase in Traffic Manag… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2021-23049 | 2024-11-21 14:51 | 2021-09-14 | Show | GitHub Exploit DB Packet Storm |
| 195088 | 7.5 |
HIGH
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system … |
On BIG-IP version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.3, 13.1.x before 13.1.4.1, and all versions of 12.1.x and 11.6.x, when GPRS Tunneling Protocol (GTP) iRules comm… |
NVD-CWE-noinfo
|
CVE-2021-23048 | 2024-11-21 14:51 | 2021-09-14 | Show | GitHub Exploit DB Packet Storm |
| 195089 | 6.1 |
MEDIUM
Network |
thoughtbot | clearance | This affects the package clearance before 2.5.0. The vulnerability can be possible when users are able to set the value of session[:return_to]. If the value used for return_to contains multiple leadi… |
CWE-601
Open Redirect |
CVE-2021-23435 | 2024-11-21 14:51 | 2021-09-13 | Show | GitHub Exploit DB Packet Storm |
| 195090 | 9.8 |
CRITICAL
Network |
set-value_project oracle |
set-value communications_cloud_native_core_policy |
This affects the package set-value before <2.0.1, >=3.0.0 <4.0.1. A type confusion vulnerability can lead to a bypass of CVE-2019-10747 when the user-provided keys used in the path parameter are arra… |
CWE-843
Type Confusion |
CVE-2021-23440 | 2024-11-21 14:51 | 2021-09-12 | Show | GitHub Exploit DB Packet Storm |