Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253121	7.5	危険	アップル	-	Apple iTunes における脆弱性に対するアップデート	CWE-94 コード・インジェクション	CVE-2008-3434	2011-11-28 14:56	2011-11-15	Show	GitHub Exploit DB Packet Storm

253122	7.5	危険	アップル	-	Apple Time Capsule および AirPort Base Station (802.11n) における複数の脆弱性に対するアップデート	CWE-20 不適切な入力確認	CVE-2011-0997	2011-11-28 14:52	2011-11-11	Show	GitHub Exploit DB Packet Storm

253123	9.3	危険	Aviosoft	-	Aviosoft DTV Player にバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4496	2011-11-28 14:49	2011-10-11	Show	GitHub Exploit DB Packet Storm

253124	5	警告	デル	-	Dell KACE K2000 System Deployment Appliance に不正ログイン可能な脆弱性	CWE-310 暗号の問題	CVE-2011-4046	2011-11-28 14:49	2011-11-9	Show	GitHub Exploit DB Packet Storm

253125	4.3	警告	デル	-	Dell KACE K2000 System Deployment Appliance に情報漏えいの脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-4048	2011-11-28 14:48	2011-11-9	Show	GitHub Exploit DB Packet Storm

253126	3.5	注意	デル	-	Dell KACE K2000 System Deployment Appliance にクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4436	2011-11-28 14:47	2011-11-9	Show	GitHub Exploit DB Packet Storm

253127	9.3	危険	デル	-	Dell KACE K2000 System Deployment Appliance にコマンドインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2011-4047	2011-11-28 14:46	2011-11-9	Show	GitHub Exploit DB Packet Storm

253128	10	危険	Google サムスン日本エイサー	-	Chromebook プラットフォームで稼働する Google Chrome における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2011-4548	2011-11-28 10:32	2011-11-22	Show	GitHub Exploit DB Packet Storm

253129	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-4262	2011-11-28 10:30	2011-11-18	Show	GitHub Exploit DB Packet Storm

253130	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4260	2011-11-28 10:28	2011-11-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195131	7.5	HIGH Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_analytics big-ip_application_security_manager big-ip_domain_name_system …	On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, and 12.1.x before 12.1.5.3, the Traffic Management Microkernel (TMM) may stop responding…	NVD-CWE-noinfo	CVE-2021-23013	2024-11-21 14:51	2021-05-10	Show	GitHub Exploit DB Packet Storm

195132	7.5	HIGH Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_analytics big-ip_application_security_manager big-ip_domain_name_system …	On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 13.1.4, 12.1.x before 12.1.6, and 11.6.x before 11.6.5.3, when the BIG-IP system is buffering packet frag…	CWE-400 Uncontrolled Resource Consumption	CVE-2021-23011	2024-11-21 14:51	2021-05-10	Show	GitHub Exploit DB Packet Storm

195133	9.8	CRITICAL Network	f5	big-ip_access_policy_manager	On version 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 13.1.4, 12.1.x before 12.1.6, and all versions of 16.0.x and 11.6.x., BIG-IP APM AD (Active Directory) authentication can be bypas…	CWE-287 Improper Authentication	CVE-2021-23008	2024-11-21 14:51	2021-05-10	Show	GitHub Exploit DB Packet Storm

195134	9.8	CRITICAL Network	handlebarsjs netapp	handlebars e-series_performance_analyzer	The package handlebars before 4.7.7 are vulnerable to Prototype Pollution when selecting certain compiling options to compile templates coming from an untrusted source.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-23383	2024-11-21 14:51	2021-05-4	Show	GitHub Exploit DB Packet Storm

195135	7.5	HIGH Network	path-parse_project	path-parse	All versions of package path-parse are vulnerable to Regular Expression Denial of Service (ReDoS) via splitDeviceRe, splitTailRe, and splitPathRe regular expressions. ReDoS exhibits polynomial worst-…	NVD-CWE-noinfo	CVE-2021-23343	2024-11-21 14:51	2021-05-4	Show	GitHub Exploit DB Packet Storm

195136	5.3	MEDIUM Network	browserslist_project	browserslist	The package browserslist from 4.0.0 and before 4.16.5 are vulnerable to Regular Expression Denial of Service (ReDoS) during parsing of queries.	CWE-1333 Inefficient Regular Expression Complexity	CVE-2021-23364	2024-11-21 14:51	2021-04-29	Show	GitHub Exploit DB Packet Storm

195137	7.5	HIGH Network	postcss	postcss	The package postcss before 8.2.13 are vulnerable to Regular Expression Denial of Service (ReDoS) via getAnnotationURL() and loadAnnotation() in lib/previous-map.js. The vulnerable regexes are caused …	CWE-1333 Inefficient Regular Expression Complexity	CVE-2021-23382	2024-11-21 14:51	2021-04-27	Show	GitHub Exploit DB Packet Storm

195138	9.1	CRITICAL Network	tyk	tyk-identity-broker	The package github.com/tyktechnologies/tyk-identity-broker before 1.1.1 are vulnerable to Authentication Bypass via the Go XML parser which can cause SAML authentication bypass. This is because the X…	CWE-287 Improper Authentication	CVE-2021-23365	2024-11-21 14:51	2021-04-26	Show	GitHub Exploit DB Packet Storm

195139	9.8	CRITICAL Network	killing_project	killing	This affects all versions of package killing. If attacker-controlled user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec fu…	CWE-78 OS Command	CVE-2021-23381	2024-11-21 14:51	2021-04-19	Show	GitHub Exploit DB Packet Storm

195140	7.3	HIGH Network	roar-pidusage_project	roar-pidusage	This affects all versions of package roar-pidusage. If attacker-controlled user input is given to the stat function of this package on certain operating systems, it is possible for an attacker to exe…	CWE-78 OS Command	CVE-2021-23380	2024-11-21 14:51	2021-04-19	Show	GitHub Exploit DB Packet Storm