Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 16, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 258381 | 5 | 警告 | Opera Software ASA | - | Opera におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2008-7245 | 2010-09-27 16:09 | 2009-09-18 | Show | GitHub Exploit DB Packet Storm |
| 258382 | 9.3 | 危険 | Opera Software ASA | - | Windows 上で稼働する Opera におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-5178 | 2010-09-27 16:09 | 2008-11-20 | Show | GitHub Exploit DB Packet Storm |
| 258383 | 10 | 危険 | Opera Software ASA | - | Opera における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-0916 | 2010-09-27 16:08 | 2009-03-3 | Show | GitHub Exploit DB Packet Storm |
| 258384 | 4.3 | 警告 | Opera Software ASA | - | Windows 上で稼働する Opera におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2008-5428 | 2010-09-27 16:07 | 2008-12-11 | Show | GitHub Exploit DB Packet Storm |
| 258385 | 4.3 | 警告 | Opera Software ASA | - | Opera の Opera.dll におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-4725 | 2010-09-27 16:07 | 2008-10-23 | Show | GitHub Exploit DB Packet Storm |
| 258386 | 5.8 | 警告 | Opera Software ASA | - | Opera における新規フィードの購読を作成される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-4698 | 2010-09-27 16:05 | 2008-10-23 | Show | GitHub Exploit DB Packet Storm |
| 258387 | 10 | 危険 | Opera Software ASA | - | Windows 上で稼働する Opera における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2008-4293 | 2010-09-27 16:05 | 2008-09-27 | Show | GitHub Exploit DB Packet Storm |
| 258388 | 10 | 危険 | Opera Software ASA | - | Opera における CRL の更新時の処理に関する脆弱性 |
CWE-255 CWE-noinfo |
CVE-2008-4292 | 2010-09-27 16:04 | 2008-09-27 | Show | GitHub Exploit DB Packet Storm |
| 258389 | 6.4 | 警告 | Opera Software ASA | - | Opera における Web スクリプトを含むページの URL をアドレスフィールドに表示される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-4200 | 2010-09-27 16:04 | 2008-09-27 | Show | GitHub Exploit DB Packet Storm |
| 258390 | 5 | 警告 | Opera Software ASA | - | Opera におけるローカルファイル名の有効性を判別される脆弱性 |
CWE-200
情報漏えい |
CVE-2008-4199 | 2010-09-27 16:04 | 2008-09-27 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 16, 2026, 4:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 196171 | 7.1 |
HIGH
Local |
amd |
epyc_7h12_firmware epyc_7f72_firmware epyc_7f52_firmware epyc_7f32_firmware epyc_7742_firmware epyc_7702p_firmware epyc_7702_firmware epyc_7662_firmware epyc_7642_firmware … |
Insufficient bounds checking in ASP (AMD Secure Processor) firmware while handling BIOS mailbox commands, may allow an attacker to write partially-controlled data out-of-bounds to SMM or SEV-ES regio… |
CWE-787
Out-of-bounds Write |
CVE-2021-26402 | 2024-11-21 14:56 | 2023-01-11 | Show | GitHub Exploit DB Packet Storm |
| 196172 | 7.8 |
HIGH
Local |
amd |
epyc_7h12_firmware epyc_7f72_firmware epyc_7f52_firmware epyc_7f32_firmware epyc_7742_firmware epyc_7702p_firmware epyc_7702_firmware epyc_7662_firmware epyc_7642_firmware … |
Insufficient input validation in SYS_KEY_DERIVE system call in a compromised user application or ABL may allow an attacker to corrupt ASP (AMD Secure Processor) OS memory which may lead to potential … |
CWE-787
Out-of-bounds Write |
CVE-2021-26398 | 2024-11-21 14:56 | 2023-01-11 | Show | GitHub Exploit DB Packet Storm |
| 196173 | 4.4 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_7373x_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware
Insufficient validation of address mapping to IO in ASP (AMD Secure Processor) may result in a loss of memory integrity in the SNP guest.
|
CWE-345
|
Insufficient Verification of Data Authenticity
CVE-2021-26396
|
2024-11-21 14:56 |
2023-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 196174 | 5.5 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_7373x_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware
Insufficient fencing and checks in System Management Unit (SMU) may result in access to invalid message port registers that could result in a potential denial-of-service.
|
NVD-CWE-noinfo
|
CVE-2021-26355
|
2024-11-21 14:56 |
2023-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 196175 | 5.5 |
MEDIUM
Local |
amd |
ryzen_3_3100_firmware ryzen_3_3200g_firmware ryzen_3_3200u_firmware ryzen_3_3250c_firmware ryzen_3_3250u_firmware ryzen_3_3300g_firmware ryzen_3_3300u_firmware ryzen_3_3300x_firm… |
Failure to validate the integer operand in ASP (AMD Secure Processor) bootloader may allow an attacker to introduce an integer overflow in the L2 directory table in SPI flash resulting in a potential… |
CWE-190
Integer Overflow or Wraparound |
CVE-2021-26346 | 2024-11-21 14:56 | 2023-01-11 | Show | GitHub Exploit DB Packet Storm |
| 196176 | 5.5 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_7373x_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware
Insufficient validation in ASP BIOS and DRTM commands may allow malicious supervisor x86 software to disclose the contents of sensitive memory which may result in information disclosure.
|
CWE-668
|
Exposure of Resource to Wrong Sphere
CVE-2021-26343
|
2024-11-21 14:56 |
2023-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 196177 | 4.4 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_7373x_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware
Failure to verify the mode of CPU execution at the time of SNP_INIT may lead to a potential loss of memory integrity for SNP guests.
|
NVD-CWE-noinfo
|
CVE-2021-26328
|
2024-11-21 14:56 |
2023-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 196178 | 7.8 |
HIGH
Local |
amd |
epyc_7h12_firmware epyc_7f72_firmware epyc_7f52_firmware epyc_7f32_firmware epyc_7742_firmware epyc_7702p_firmware epyc_7702_firmware epyc_7662_firmware epyc_7642_firmware … |
Failure to validate the communication buffer and communication service in the BIOS may allow an attacker to tamper with the buffer resulting in potential SMM (System Management Mode) arbitrary code e… |
CWE-20
Improper Input Validation |
CVE-2021-26316 | 2024-11-21 14:56 | 2023-01-11 | Show | GitHub Exploit DB Packet Storm |
| 196179 | 7.8 |
HIGH
Local |
amd |
enterprise_driver radeon_pro_software radeon_software |
An attacker with local access to the system can make unauthorized modifications of the security configuration of the SOC registers. This could allow potential corruption of AMD secure processor’s enc… |
NVD-CWE-noinfo
|
CVE-2021-26360 | 2024-11-21 14:56 | 2022-11-10 | Show | GitHub Exploit DB Packet Storm |
| 196180 | 5.5 |
MEDIUM
Local |
amd |
enterprise_driver radeon_pro_software radeon_software radeon_rx_vega_56_firmware radeon_rx_vega_64_firmware ryzen_3_2200ge_firmware ryzen_3_2200g_firmware ryzen_5_2400ge_firmware… |
Insufficient memory cleanup in the AMD Secure Processor (ASP) Trusted Execution Environment (TEE) may allow an authenticated attacker with privileges to generate a valid signed TA and potentially poi… |
CWE-401
Missing Release of Memory after Effective Lifetime |
CVE-2021-26393 | 2024-11-21 14:56 | 2022-11-10 | Show | GitHub Exploit DB Packet Storm |