Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 16, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 258411 | 9.3 | 危険 | リアルネットワークス | - | Windows 上で稼働する RealNetworks RealPlayer におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-0120 | 2010-09-17 15:56 | 2010-08-26 | Show | GitHub Exploit DB Packet Storm |
| 258412 | 9.3 | 危険 | リアルネットワークス | - | Windows 上で稼働する RealNetworks RealPlayer における任意のコードを実行される脆弱性 |
CWE-Other
その他 |
CVE-2010-0117 | 2010-09-17 15:56 | 2010-08-26 | Show | GitHub Exploit DB Packet Storm |
| 258413 | 9.3 | 危険 | リアルネットワークス | - | Windows 上で稼働する RealNetworks RealPlayer における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2010-0116 | 2010-09-17 15:56 | 2010-08-26 | Show | GitHub Exploit DB Packet Storm |
| 258414 | 9.3 | 危険 | Artifex Software | - | Ghostscript の TrueType bytecode interpreter に脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-3743 | 2010-09-16 15:42 | 2010-08-25 | Show | GitHub Exploit DB Packet Storm |
| 258415 | 5 | 警告 | Devon IT | - | Devon IT 製品に複数の脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2010-3122 | 2010-09-16 15:42 | 2010-08-25 | Show | GitHub Exploit DB Packet Storm |
| 258416 | 6.4 | 警告 | 日立 | - | JP1/NETM/Remote Control Agent における認証を回避される脆弱性 |
CWE-287
不適切な認証 |
- | 2010-09-16 15:42 | 2010-08-31 | Show | GitHub Exploit DB Packet Storm |
| 258417 | 6.8 | 警告 | ヒューレット・パッカード | - | HP HP-UX の Software Distributor における権限を取得される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-2712 | 2010-09-15 17:18 | 2010-08-25 | Show | GitHub Exploit DB Packet Storm |
| 258418 | 6 | 警告 | レッドハット | - | Red Hat Enterprise Linux の gdm におけるアクセス制限を回避される脆弱性 |
CWE-DesignError
|
CVE-2007-5079 | 2010-09-15 17:18 | 2007-09-25 | Show | GitHub Exploit DB Packet Storm |
| 258419 | 9.3 | 危険 | ImageMagick GraphicsMagick レッドハット |
- | ImageMagick および GraphicsMagick の XMakeImage 関数における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-1882 | 2010-09-15 17:17 | 2009-06-2 | Show | GitHub Exploit DB Packet Storm |
| 258420 | 3.3 | 注意 | レッドハット | - | Firefox の SPICE プラグインにおける任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2010-2794 | 2010-09-15 17:17 | 2010-08-25 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 16, 2026, 4:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 196171 | 7.1 |
HIGH
Local |
amd |
epyc_7h12_firmware epyc_7f72_firmware epyc_7f52_firmware epyc_7f32_firmware epyc_7742_firmware epyc_7702p_firmware epyc_7702_firmware epyc_7662_firmware epyc_7642_firmware … |
Insufficient bounds checking in ASP (AMD Secure Processor) firmware while handling BIOS mailbox commands, may allow an attacker to write partially-controlled data out-of-bounds to SMM or SEV-ES regio… |
CWE-787
Out-of-bounds Write |
CVE-2021-26402 | 2024-11-21 14:56 | 2023-01-11 | Show | GitHub Exploit DB Packet Storm |
| 196172 | 7.8 |
HIGH
Local |
amd |
epyc_7h12_firmware epyc_7f72_firmware epyc_7f52_firmware epyc_7f32_firmware epyc_7742_firmware epyc_7702p_firmware epyc_7702_firmware epyc_7662_firmware epyc_7642_firmware … |
Insufficient input validation in SYS_KEY_DERIVE system call in a compromised user application or ABL may allow an attacker to corrupt ASP (AMD Secure Processor) OS memory which may lead to potential … |
CWE-787
Out-of-bounds Write |
CVE-2021-26398 | 2024-11-21 14:56 | 2023-01-11 | Show | GitHub Exploit DB Packet Storm |
| 196173 | 4.4 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_7373x_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware
Insufficient validation of address mapping to IO in ASP (AMD Secure Processor) may result in a loss of memory integrity in the SNP guest.
|
CWE-345
|
Insufficient Verification of Data Authenticity
CVE-2021-26396
|
2024-11-21 14:56 |
2023-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 196174 | 5.5 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_7373x_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware
Insufficient fencing and checks in System Management Unit (SMU) may result in access to invalid message port registers that could result in a potential denial-of-service.
|
NVD-CWE-noinfo
|
CVE-2021-26355
|
2024-11-21 14:56 |
2023-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 196175 | 5.5 |
MEDIUM
Local |
amd |
ryzen_3_3100_firmware ryzen_3_3200g_firmware ryzen_3_3200u_firmware ryzen_3_3250c_firmware ryzen_3_3250u_firmware ryzen_3_3300g_firmware ryzen_3_3300u_firmware ryzen_3_3300x_firm… |
Failure to validate the integer operand in ASP (AMD Secure Processor) bootloader may allow an attacker to introduce an integer overflow in the L2 directory table in SPI flash resulting in a potential… |
CWE-190
Integer Overflow or Wraparound |
CVE-2021-26346 | 2024-11-21 14:56 | 2023-01-11 | Show | GitHub Exploit DB Packet Storm |
| 196176 | 5.5 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_7373x_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware
Insufficient validation in ASP BIOS and DRTM commands may allow malicious supervisor x86 software to disclose the contents of sensitive memory which may result in information disclosure.
|
CWE-668
|
Exposure of Resource to Wrong Sphere
CVE-2021-26343
|
2024-11-21 14:56 |
2023-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 196177 | 4.4 |
MEDIUM
Local |
amd |
epyc_7003_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_7373x_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware
Failure to verify the mode of CPU execution at the time of SNP_INIT may lead to a potential loss of memory integrity for SNP guests.
|
NVD-CWE-noinfo
|
CVE-2021-26328
|
2024-11-21 14:56 |
2023-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 196178 | 7.8 |
HIGH
Local |
amd |
epyc_7h12_firmware epyc_7f72_firmware epyc_7f52_firmware epyc_7f32_firmware epyc_7742_firmware epyc_7702p_firmware epyc_7702_firmware epyc_7662_firmware epyc_7642_firmware … |
Failure to validate the communication buffer and communication service in the BIOS may allow an attacker to tamper with the buffer resulting in potential SMM (System Management Mode) arbitrary code e… |
CWE-20
Improper Input Validation |
CVE-2021-26316 | 2024-11-21 14:56 | 2023-01-11 | Show | GitHub Exploit DB Packet Storm |
| 196179 | 7.8 |
HIGH
Local |
amd |
enterprise_driver radeon_pro_software radeon_software |
An attacker with local access to the system can make unauthorized modifications of the security configuration of the SOC registers. This could allow potential corruption of AMD secure processor’s enc… |
NVD-CWE-noinfo
|
CVE-2021-26360 | 2024-11-21 14:56 | 2022-11-10 | Show | GitHub Exploit DB Packet Storm |
| 196180 | 5.5 |
MEDIUM
Local |
amd |
enterprise_driver radeon_pro_software radeon_software radeon_rx_vega_56_firmware radeon_rx_vega_64_firmware ryzen_3_2200ge_firmware ryzen_3_2200g_firmware ryzen_5_2400ge_firmware… |
Insufficient memory cleanup in the AMD Secure Processor (ASP) Trusted Execution Environment (TEE) may allow an authenticated attacker with privileges to generate a valid signed TA and potentially poi… |
CWE-401
Missing Release of Memory after Effective Lifetime |
CVE-2021-26393 | 2024-11-21 14:56 | 2022-11-10 | Show | GitHub Exploit DB Packet Storm |