Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 30, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 256121 | 6.8 | 警告 | - | Google Chrome における任意の https サイトになりすまされる脆弱性 |
CWE-287
不適切な認証 |
CVE-2009-2071 | 2010-10-19 14:49 | 2009-03-23 | Show | GitHub Exploit DB Packet Storm | |
| 256122 | 6.4 | 警告 | The PHP Group | - | PHP の zend_ini.c 内にある zend_restore_ini_entry_cb 関数における重要な情報を取得される脆弱性 |
CWE-Other
その他 |
CVE-2009-2626 | 2010-10-18 15:22 | 2009-12-1 | Show | GitHub Exploit DB Packet Storm |
| 256123 | 4 | 警告 | オラクル | - | Oracle iPlanet Web Server におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2010-3544 | 2010-10-18 12:03 | 2010-10-18 | Show | GitHub Exploit DB Packet Storm |
| 256124 | 5 | 警告 | ISC, Inc. | - | BIND の ACL の処理に問題 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0218 | 2010-10-15 13:24 | 2010-10-1 | Show | GitHub Exploit DB Packet Storm |
| 256125 | 5.1 | 警告 | K2 Software | - | K2Editor における実行ファイル読み込みに関する脆弱性 |
CWE-Other
その他 |
CVE-2010-3156 | 2010-10-15 11:22 | 2010-10-15 | Show | GitHub Exploit DB Packet Storm |
| 256126 | 6.8 | 警告 | kMonos.NET | - | XacRett における実行ファイル読み込みに関する脆弱性 |
CWE-Other
その他 |
CVE-2010-3157 | 2010-10-15 11:22 | 2010-10-15 | Show | GitHub Exploit DB Packet Storm |
| 256127 | 5 | 警告 | The PHP Group | - | PHP における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-2101 | 2010-10-14 16:20 | 2010-05-26 | Show | GitHub Exploit DB Packet Storm |
| 256128 | 9.3 | 危険 | レッドハット | - | Winamp および libmikmod の IN_MOD.DLL におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-3996 | 2010-10-14 16:19 | 2009-12-18 | Show | GitHub Exploit DB Packet Storm |
| 256129 | 9.3 | 危険 | レッドハット | - | Winamp および libmikmod の IN_MOD.DLL におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-3995 | 2010-10-14 16:19 | 2009-12-18 | Show | GitHub Exploit DB Packet Storm |
| 256130 | 4.3 | 警告 | レッドハット | - | libmikmod におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-DesignError
|
CVE-2007-6720 | 2010-10-14 16:19 | 2009-01-20 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 31, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 220781 | 9.1 |
CRITICAL
Network |
f5 |
big-ip_application_security_manager big-ip_local_traffic_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_access_policy_manager big-ip_domain_name_system big-ip_edge… |
F5 BIG-IP 15.0.0, 14.1.0-14.1.0.6, 14.0.0-14.0.0.5, 13.0.0-13.1.1.5, 12.1.0-12.1.4.1, 11.6.0-11.6.4, and 11.5.1-11.5.9 and Enterprise Manager 3.1.1 may expose sensitive information and allow the syst… |
NVD-CWE-noinfo
|
CVE-2019-6649 | 2024-11-21 13:46 | 2019-09-21 | Show | GitHub Exploit DB Packet Storm |
| 220782 | 9.1 |
CRITICAL
Network |
f5 | big-ip_application_security_manager | F5 BIG-IP ASM 15.0.0, 14.1.0-14.1.0.6, 14.0.0-14.0.0.5, 13.0.0-13.1.1.5, 12.1.0-12.1.4.1, 11.6.0-11.6.4, and 11.5.1-11.5.9 may expose sensitive information and allow the system configuration to be mo… |
NVD-CWE-noinfo
|
CVE-2019-6650 | 2024-11-21 13:46 | 2019-09-21 | Show | GitHub Exploit DB Packet Storm |
| 220783 | 6.7 |
MEDIUM
Local |
forcepoint | vpn_client | Forcepoint VPN Client for Windows versions lower than 6.6.1 have an unquoted search path vulnerability. This enables local privilege escalation to SYSTEM user. By default, only local administrators c… |
CWE-428
Unquoted Search Path or Element |
CVE-2019-6145 | 2024-11-21 13:46 | 2019-09-21 | Show | GitHub Exploit DB Packet Storm |
| 220784 | 8.8 |
HIGH
Network |
f5 |
big-ip_local_traffic_manager big-ip_policy_enforcement_manager big-ip_application_acceleration_manager big-ip_access_policy_manager big-ip_analytics big-ip_advanced_firewall_manager
On BIG-IP 11.5.2-11.6.4 and Enterprise Manager 3.1.1, REST users with guest privileges may be able to escalate their privileges and run commands with admin privileges.
|
NVD-CWE-noinfo
|
CVE-2019-6646
|
2024-11-21 13:46 |
2019-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 220785 | 7.5 |
HIGH
Network |
f5 |
big-ip_local_traffic_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<… |
On versions 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.2, 12.1.0-12.1.4.1, and 11.5.2-11.6.4, an attacker sending specifically crafted DHCPv6 requests through a BIG-IP virtual server configured wi… |
NVD-CWE-noinfo
|
CVE-2019-6643 | 2024-11-21 13:46 | 2019-09-5 | Show | GitHub Exploit DB Packet Storm |
| 220786 | 5.3 |
MEDIUM
Network |
f5 |
big-ip_local_traffic_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<… |
On BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.2, 12.1.0-12.1.4.1, 11.5.2-11.6.4, when processing authentication attempts for control-plane users MCPD leaks a small amount of memory. Under r… |
CWE-401
Missing Release of Memory after Effective Lifetime |
CVE-2019-6647 | 2024-11-21 13:46 | 2019-09-5 | Show | GitHub Exploit DB Packet Storm |
| 220787 | 9.4 |
CRITICAL
Network |
f5 |
big-ip_local_traffic_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<… |
Similar to the issue identified in CVE-2018-12120, on versions 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.2, and 12.1.0-12.1.4 BIG-IP will bind a debug nodejs process to all interfaces when invoke… |
NVD-CWE-noinfo
|
CVE-2019-6644 | 2024-11-21 13:46 | 2019-09-5 | Show | GitHub Exploit DB Packet Storm |
| 220788 | 4.4 |
MEDIUM
Local |
f5 redhat |
container_ingress_service openshift |
On version 1.9.0, If DEBUG logging is enable, F5 Container Ingress Service (CIS) for Kubernetes and Red Hat OpenShift (k8s-bigip-ctlr) log files may contain BIG-IP secrets such as SSL Private Keys an… |
CWE-532
Inclusion of Sensitive Information in Log Files |
CVE-2019-6648 | 2024-11-21 13:46 | 2019-09-5 | Show | GitHub Exploit DB Packet Storm |
| 220789 | 7.5 |
HIGH
Network |
f5 |
big-ip_local_traffic_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<… |
On BIG-IP 14.0.0-14.1.0.5, 13.0.0-13.1.2, 12.1.0-12.1.4.1, 11.5.2-11.6.4, FTP traffic passing through a Virtual Server with both an active FTP profile associated and connection mirroring configured m… |
NVD-CWE-noinfo
|
CVE-2019-6645 | 2024-11-21 13:46 | 2019-09-5 | Show | GitHub Exploit DB Packet Storm |
| 220790 | 4.9 |
MEDIUM
Network |
lenovo | xclarity_administrator | A stored CSV Injection vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.5.0 that could allow an administrative user to store malformed data in LXCA Jobs and Even… |
CWE-1236
Improper Neutralization of Formula Elements in a CSV File |
CVE-2019-6182 | 2024-11-21 13:46 | 2019-09-4 | Show | GitHub Exploit DB Packet Storm |