Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253761	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253762	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253763	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

253764	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

253765	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213201	5.3	MEDIUM Network	optergy	proton enterprise	Optergy Proton/Enterprise devices allow Unauthenticated Internal Network Information Disclosure.	NVD-CWE-noinfo	CVE-2019-7277	2024-11-21 13:47	2019-07-2	Show	GitHub Exploit DB Packet Storm

213202	9.8	CRITICAL Network	optergy	proton enterprise	Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console.	NVD-CWE-noinfo	CVE-2019-7276	2024-11-21 13:47	2019-07-2	Show	GitHub Exploit DB Packet Storm

213203	6.1	MEDIUM Network	optergy	proton enterprise	Optergy Proton/Enterprise devices allow Open Redirect.	CWE-601 Open Redirect	CVE-2019-7275	2024-11-21 13:47	2019-07-2	Show	GitHub Exploit DB Packet Storm

213204	8.8	HIGH Network	primasystems	flexair	Prima Systems FlexAir, Versions 2.3.38 and prior. An unauthenticated user can send unverified HTTP requests, which may allow the attacker to perform certain actions with administrative privileges if …	CWE-352 Origin Validation Error	CVE-2019-7281	2024-11-21 13:47	2019-07-2	Show	GitHub Exploit DB Packet Storm

213205	8.8	HIGH Network	primasystems	flexair	Prima Systems FlexAir, Versions 2.3.38 and prior. The session-ID is of an insufficient length and can be exploited by brute force, which may allow a remote attacker to obtain a valid session and bypa…	CWE-613 Insufficient Session Expiration	CVE-2019-7280	2024-11-21 13:47	2019-07-2	Show	GitHub Exploit DB Packet Storm

213206	7.3	HIGH Network	optergy	proton enterprise	Optergy Proton/Enterprise devices have Hard-coded Credentials.	CWE-798 Use of Hard-coded Credentials	CVE-2019-7279	2024-11-21 13:47	2019-07-2	Show	GitHub Exploit DB Packet Storm

213207	8.8	HIGH Adjacent	abb	cp620_firmware cp620-web_firmware cp630_firmware cp630-web_firmware cp635_firmware cp635-b_firmware cp635-web_firmware pb610_firmware cp651-web_firmware cp661_firmware c…	The ABB HMI components implement hidden administrative accounts that are used during the provisioning phase of the HMI interface. These credentials allow the provisioning tool "Panel Builder 600" to …	CWE-798 Use of Hard-coded Credentials	CVE-2019-7225	2024-11-21 13:47	2019-06-28	Show	GitHub Exploit DB Packet Storm

213208	7.3	HIGH Adjacent	abb	pb610_panel_builder_600_firmware	In the ABB IDAL FTP server, an authenticated attacker can traverse to arbitrary directories on the hard disk with "CWD ../" and then use the FTP server functionality to download and upload files. An …	CWE-22 Path Traversal	CVE-2019-7227	2024-11-21 13:47	2019-06-28	Show	GitHub Exploit DB Packet Storm

213209	8.8	HIGH Adjacent	abb	pb610_panel_builder_600_firmware	The ABB IDAL HTTP server CGI interface contains a URL that allows an unauthenticated attacker to bypass authentication and gain access to privileged functions. Specifically, /cgi/loginDefaultUser cre…	CWE-287 Improper Authentication	CVE-2019-7226	2024-11-21 13:47	2019-06-28	Show	GitHub Exploit DB Packet Storm

213210	8.8	HIGH Adjacent	abb	pb610_panel_builder_600_firmware	The ABB IDAL HTTP server mishandles format strings in a username or cookie during the authentication process. Attempting to authenticate with the username %25s%25p%25x%25n will crash the server. Send…	CWE-134 Use of Externally-Controlled Format String	CVE-2019-7228	2024-11-21 13:47	2019-06-28	Show	GitHub Exploit DB Packet Storm