Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 9, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 258301 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Excel における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3128 | 2010-01-5 16:17 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 258302 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office および Open XML File Format Converter における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3127 | 2010-01-5 16:16 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 258303 | 6.8 | 警告 | アップル サイバートラスト株式会社 サン・マイクロシステムズ ターボリナックス ヒューレット・パッカード OpenSSL Project レッドハット |
- | OpenSSL の SSL_get_shared_ciphers() 関数における一つずれエラーの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2007-5135 | 2010-01-5 13:31 | 2007-10-12 | Show | GitHub Exploit DB Packet Storm |
| 258304 | 7.8 | 危険 | マイクロソフト | - | Microsoft Windows で稼働している Active Directory の LDAP サービスにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-1928 | 2010-01-4 15:24 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 258305 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の kernel における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-2514 | 2010-01-4 15:24 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 258306 | 6.8 | 警告 | マイクロソフト | - | Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-2513 | 2010-01-4 15:24 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 258307 | 6.8 | 警告 | マイクロソフト | - | Microsoft Windows の kernel における権限を取得される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-1127 | 2010-01-4 15:24 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 258308 | 10 | 危険 | マイクロソフト | - | Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2009-2523 | 2010-01-4 15:24 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 258309 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-2512 | 2010-01-4 15:23 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 258310 | 10 | 危険 | アップル VMware サン・マイクロシステムズ |
- | Sun Java SE の Provider クラスにおける詳細不明な脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-2722 | 2010-01-4 14:56 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 9, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 194591 | 7.5 |
HIGH
Network |
amd |
epyc_7f72_firmware epyc_7f52_firmware epyc_7f32_firmware epyc_7h12_firmware epyc_7742_firmware epyc_7702_firmware epyc_7702p_firmware epyc_7662_firmware epyc_7642_firmware … |
Improper access controls in System Management Unit (SMU) may allow for an attacker to override performance control tables located in DRAM resulting in a potential lack of system resources. |
NVD-CWE-Other
|
CVE-2021-26338 | 2024-11-21 14:56 | 2021-11-17 | Show | GitHub Exploit DB Packet Storm |
| 194592 | 5.5 |
MEDIUM
Local |
amd |
epyc_7601_firmware epyc_7551p_firmware epyc_7551_firmware epyc_7501_firmware epyc_7451_firmware epyc_7401_firmware epyc_7371_firmware epyc_7351p_firmware epyc_7351_firmware
AMD System Management Unit (SMU) may experience an integer overflow when an invalid length is provided which may result in a potential loss of resources.
|
CWE-190
|
Integer Overflow or Wraparound
CVE-2021-26329
|
2024-11-21 14:56 |
2021-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 194593 | 7.8 |
HIGH
Local |
amd |
epyc_7232p_firmware epyc_7763_firmware epyc_7713p_firmware epyc_7713_firmware epyc_7663_firmware epyc_7643_firmware epyc_75f3_firmware epyc_7543p_firmware epyc_7543_firmware
Failure to validate VM_HSAVE_PA during SNP_INIT may result in a loss of memory integrity.
|
CWE-665
|
Improper Initialization
CVE-2021-26326
|
2024-11-21 14:56 |
2021-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 194594 | 7.5 |
HIGH
Network |
amd |
epyc_7601_firmware epyc_7551p_firmware epyc_7551_firmware epyc_7501_firmware epyc_7451_firmware epyc_7401_firmware epyc_7371_firmware epyc_7351p_firmware epyc_7351_firmware
Persistent platform private key may not be protected with a random IV leading to a potential “two time pad attack”.
|
CWE-330
|
Use of Insufficiently Random Values
CVE-2021-26322
|
2024-11-21 14:56 |
2021-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 194595 | 5.5 |
MEDIUM
Local |
amd |
epyc_7601_firmware epyc_7551p_firmware epyc_7551_firmware epyc_7501_firmware epyc_7451_firmware epyc_7401_firmware epyc_7371_firmware epyc_7351p_firmware epyc_7351_firmware
Failure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU) may lead an IO device to write to memory it should not be able to access, resulting in a potential lo…
|
CWE-668
|
Exposure of Resource to Wrong Sphere
CVE-2021-26312
|
2024-11-21 14:56 |
2021-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 194596 | 8.8 |
HIGH
Network |
talariax | sendquick_alert_plus_server_admin | A SQL Injection vulnerability in /appliance/shiftmgn.php in TalariaX sendQuick Alert Plus Server Admin 4.3 before 8HF11 allows attackers to obtain sensitive information via a Roster Time to Roster Ma… |
CWE-89
SQL Injection |
CVE-2021-26795 | 2024-11-21 14:56 | 2021-11-15 | Show | GitHub Exploit DB Packet Storm |
| 194597 | 7.5 |
HIGH
Network |
apache | shardingsphere-ui | Deserialization of Untrusted Data vulnerability of Apache ShardingSphere-UI allows an attacker to inject outer link resources. This issue affects Apache ShardingSphere-UI Apache ShardingSphere-UI ver… |
CWE-502
Deserialization of Untrusted Data |
CVE-2021-26558 | 2024-11-21 14:56 | 2021-11-11 | Show | GitHub Exploit DB Packet Storm |
| 194598 | 3.3 |
LOW
Local |
microsoft | azure_real_time_operating_system | Azure RTOS Information Disclosure Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-26444 | 2024-11-21 14:56 | 2021-11-10 | Show | GitHub Exploit DB Packet Storm |
| 194599 | 9.0 |
CRITICAL
Adjacent |
microsoft |
windows_server_2019 windows_10 windows_server_2016 windows_server_2022 windows_11 |
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-26443 | 2024-11-21 14:56 | 2021-11-10 | Show | GitHub Exploit DB Packet Storm |
| 194600 | 5.4 |
MEDIUM
Network |
poweradmin | pa_server_monitor | A cross-site scripting (XSS) vulnerability in Power Admin PA Server Monitor 8.2.1.1 allows remote attackers to inject arbitrary web script or HTML via Console.exe. |
CWE-79
Cross-site Scripting |
CVE-2021-26844 | 2024-11-21 14:56 | 2021-11-5 | Show | GitHub Exploit DB Packet Storm |