Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254761	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0097	2011-05-2 14:14	2011-04-12	Show	GitHub Exploit DB Packet Storm

254762	9.3	危険	マイクロソフト	-	Microsoft Windows の OpenType Compact Font Format ドライバにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0034	2011-05-2 14:14	2011-04-12	Show	GitHub Exploit DB Packet Storm

254763	9.3	危険	マイクロソフト	-	Microsoft の JScript および VBScript スクリプトエンジンにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0663	2011-05-2 14:13	2011-04-12	Show	GitHub Exploit DB Packet Storm

254764	7.5	危険	マイクロソフト	-	Microsoft Windows の DNS クライアント内にある DNSAPI.dll における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0657	2011-05-2 14:12	2011-04-12	Show	GitHub Exploit DB Packet Storm

254765	9.3	危険	マイクロソフト	-	Microsoft Windows および Office XP の GDI+ 内にある gdiplus.dll における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0041	2011-05-2 14:11	2011-04-12	Show	GitHub Exploit DB Packet Storm

254766	9.3	危険	マイクロソフト	-	Microsoft .NET Framework の x86 JIT コンパイラにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3958	2011-05-2 14:09	2011-04-12	Show	GitHub Exploit DB Packet Storm

254767	9.3	危険	マイクロソフト	-	Microsoft Windows XP の Windows Messenger ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1243	2011-05-2 14:08	2011-04-12	Show	GitHub Exploit DB Packet Storm

254768	10	危険	マイクロソフト	-	Microsoft Windows の SMB サーバサービスにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0661	2011-05-2 14:06	2011-04-12	Show	GitHub Exploit DB Packet Storm

254769	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の SMB クライアントにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0660	2011-05-2 14:05	2011-04-12	Show	GitHub Exploit DB Packet Storm

254770	10	危険	マイクロソフト	-	複数の Microsoft 製品の BowserWriteErrorLogEntry 関数における整数アンダーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0654	2011-05-2 14:03	2011-02-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221061	7.8	HIGH Local	wago	e\!cockpit	An exploitable improper input validation vulnerability exists in the firmware update functionality of WAGO e!COCKPIT automation software v1.6.0.7. A specially crafted firmware update file can allow a…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2019-5159	2024-11-21 13:44	2020-03-12	Show	GitHub Exploit DB Packet Storm

221062	7.2	HIGH Network	wago	pfc200_firmware	An exploitable command injection vulnerability exists in the cloud connectivity functionality of WAGO PFC200 versions 03.02.02(14), 03.01.07(13), and 03.00.39(12). An attacker can inject operating sy…	CWE-78 OS Command	CVE-2019-5156	2024-11-21 13:44	2020-03-12	Show	GitHub Exploit DB Packet Storm

221063	7.2	HIGH Network	wago	pfc200_firmware	An exploitable command injection vulnerability exists in the cloud connectivity feature of WAGO PFC200. An attacker can inject operating system commands into any of the parameter values contained in …	CWE-78 OS Command	CVE-2019-5155	2024-11-21 13:44	2020-03-12	Show	GitHub Exploit DB Packet Storm

221064	5.3	MEDIUM Network	wago	pfc200_firmware pfc100_firmware	An exploitable timing discrepancy vulnerability exists in the authentication functionality of the Web-Based Management (WBM) web application on WAGO PFC100/200 controllers. The WBM application makes …	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2019-5135	2024-11-21 13:44	2020-03-12	Show	GitHub Exploit DB Packet Storm

221065	7.5	HIGH Network	wago	pfc200_firmware pfc100_firmware	An exploitable regular expression without anchors vulnerability exists in the Web-Based Management (WBM) authentication functionality of WAGO PFC200 versions 03.00.39(12) and 03.01.07(13), and WAGO P…	NVD-CWE-noinfo	CVE-2019-5134	2024-11-21 13:44	2020-03-12	Show	GitHub Exploit DB Packet Storm

221066	7.5	HIGH Network	wago	e\!cockpit	A cleartext transmission vulnerability exists in the network communication functionality of WAGO e!Cockpit version 1.5.1.1. An attacker with access to network traffic can easily intercept, interpret,…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2019-5107	2024-11-21 13:44	2020-03-12	Show	GitHub Exploit DB Packet Storm

221067	7.5	HIGH Network	wago	pfc200_firmware pfc100_firmware	The WBM web application on firmwares prior to 03.02.02 and 03.01.07 on the WAGO PFC100 and PFC2000, respectively, runs on a lighttpd web server and makes use of the FastCGI module, which is intended …	CWE-400 Uncontrolled Resource Consumption	CVE-2019-5149	2024-11-21 13:44	2020-03-12	Show	GitHub Exploit DB Packet Storm

221068	5.5	MEDIUM Local	wago	e\!cockpit	A hard-coded encryption key vulnerability exists in the authentication functionality of WAGO e!Cockpit version 1.5.1.1. An attacker with access to communications between e!Cockpit and CoDeSyS Gateway…	CWE-798 Use of Hard-coded Credentials	CVE-2019-5106	2024-11-21 13:44	2020-03-12	Show	GitHub Exploit DB Packet Storm

221069	7.2	HIGH Network	arubanetworks	airwave	An administrative application user of or application user with write access to Aruba Airwave VisualRF is able to obtain code execution on the AMP platform. This is possible due to the ability to over…	CWE-502 Deserialization of Untrusted Data	CVE-2019-5326	2024-11-21 13:44	2020-02-28	Show	GitHub Exploit DB Packet Storm

221070	7.2	HIGH Network	arubanetworks	airwave	There are command injection vulnerabilities present in the AirWave application. Certain input fields controlled by an administrative user are not properly sanitized before being parsed by AirWave. If…	CWE-77 Command Injection	CVE-2019-5323	2024-11-21 13:44	2020-02-28	Show	GitHub Exploit DB Packet Storm