Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 11, 2026, 6:13 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 258761 | 10 | 危険 | マイクロソフト | - | Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0240 | 2010-03-1 11:36 | 2010-02-9 | Show | GitHub Exploit DB Packet Storm |
| 258762 | 10 | 危険 | マイクロソフト | - | Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0239 | 2010-03-1 11:36 | 2010-02-9 | Show | GitHub Exploit DB Packet Storm |
| 258763 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の SMB クライアント実装における権限昇格の脆弱性 |
CWE-362
競合状態 |
CVE-2010-0017 | 2010-03-1 11:35 | 2010-02-9 | Show | GitHub Exploit DB Packet Storm |
| 258764 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の SMB クライアント実装における任意のコードを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0016 | 2010-03-1 11:35 | 2010-02-9 | Show | GitHub Exploit DB Packet Storm |
| 258765 | 5 | 警告 | 日立 | - | uCosminexus Portal Framework におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
- | 2010-02-26 11:36 | 2010-01-29 | Show | GitHub Exploit DB Packet Storm |
| 258766 | 2.6 | 注意 | tDiary開発プロジェクト | - | tDiary 付属のプラグイン tb-send.rb におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0726 | 2010-02-25 15:03 | 2010-02-25 | Show | GitHub Exploit DB Packet Storm |
| 258767 | 4.3 | 警告 | サン・マイクロシステムズ | - | Sun ONE/iPlanet Web Server における HTTP リクエストを非表示にされる脆弱性 |
CWE-Other
その他 |
CVE-2003-1578 | 2010-02-25 12:36 | 2003-11-14 | Show | GitHub Exploit DB Packet Storm |
| 258768 | 2.6 | 注意 | サン・マイクロシステムズ | - | Sun ONE/iPlanet Web Server におけるログファイルに任意のテキストを挿入される脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2003-1577 | 2010-02-25 12:36 | 2003-11-14 | Show | GitHub Exploit DB Packet Storm |
| 258769 | 5 | 警告 | IBM | - | IBM WebSphere Application Server の Single Sign-on 機能における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-0563 | 2010-02-25 12:35 | 2010-02-5 | Show | GitHub Exploit DB Packet Storm |
| 258770 | 5 | 警告 | アップル | - | Apple Safari の WebKit における任意の Web サイトにリクエストされる脆弱性 |
CWE-Other
その他 |
CVE-2009-2841 | 2010-02-25 12:33 | 2009-11-11 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 11, 2026, 5:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 195511 | 7.1 |
HIGH
Local |
amd |
epyc_7763_firmware epyc_7713p_firmware epyc_7713_firmware epyc_7663_firmware epyc_7643_firmware epyc_75f3_firmware epyc_7543p_firmware epyc_7543_firmware epyc_7513_firmware
Improper validation of destination address in SVC_LOAD_FW_IMAGE_BY_INSTANCE and SVC_LOAD_BINARY_BY_ATTRIB in a malicious UApp or ABL may allow an attacker to overwrite arbitrary bootloader memory wit…
|
CWE-20
|
Improper Input Validation
CVE-2021-26370
|
2024-11-21 14:56 |
2022-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 195512 | 7.8 |
HIGH
Local |
amd |
epyc_7763_firmware epyc_7713p_firmware epyc_7713_firmware epyc_7663_firmware epyc_7643_firmware epyc_75f3_firmware epyc_7543p_firmware epyc_7543_firmware epyc_7513_firmware
Failure to validate inputs in SMM may allow an attacker to create a mishandled error leaving the DRTM UApp in a partially initialized state potentially resulting in loss of memory integrity.
|
CWE-665
|
Improper Initialization
CVE-2021-26353
|
2024-11-21 14:56 |
2022-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 195513 | 5.5 |
MEDIUM
Local |
amd |
ryzen_5_2600_firmware ryzen_5_2600x_firmware ryzen_5_2700x_firmware ryzen_5_2700_firmware ryzen_5_3600_firmware ryzen_5_3600x_firmware ryzen_7_3700x_firmware ryzen_7_3800x_firmwa… |
Insufficient bound checks in System Management Unit (SMU) PCIe Hot Plug table may result in access/updates from/to invalid address space that could result in denial of service. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2021-26352 | 2024-11-21 14:56 | 2022-05-11 | Show | GitHub Exploit DB Packet Storm |
| 195514 | 7.1 |
HIGH
Local |
amd |
epyc_7763_firmware epyc_7713p_firmware epyc_7713_firmware epyc_7663_firmware epyc_7643_firmware epyc_75f3_firmware epyc_7543p_firmware epyc_7543_firmware epyc_7513_firmware
Failure to verify SEV-ES TMR is not in MMIO space, SEV-ES FW could result in a potential loss of integrity or availability.
|
NVD-CWE-noinfo
|
CVE-2021-26332
|
2024-11-21 14:56 |
2022-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 195515 | 7.8 |
HIGH
Local |
amd |
epyc_7763_firmware epyc_7713p_firmware epyc_7713_firmware epyc_7663_firmware epyc_7643_firmware epyc_75f3_firmware epyc_7543p_firmware epyc_7543_firmware epyc_7513_firmware
A bug with the SEV-ES TMR may lead to a potential loss of memory integrity for SNP-active VMs.
|
NVD-CWE-noinfo
|
CVE-2021-26324
|
2024-11-21 14:56 |
2022-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 195516 | 8.8 |
HIGH
Network |
tobesoft | xplatform | A path traversal vulnerability in XPLATFORM's runtime archive function could lead to arbitrary file creation. When the .xzip archive file is decompressed, an arbitrary file can be d in the parent pat… |
CWE-22
Path Traversal |
CVE-2021-26629 | 2024-11-21 14:56 | 2022-04-27 | Show | GitHub Exploit DB Packet Storm |
| 195517 | 6.1 |
MEDIUM
Network |
maxb | maxboard | Insufficient script validation of the admin page enables XSS, which causes unauthorized users to steal admin privileges. When uploading file in a specific menu, the verification of the files is insuf… |
CWE-79
Cross-site Scripting |
CVE-2021-26628 | 2024-11-21 14:56 | 2022-04-27 | Show | GitHub Exploit DB Packet Storm |
| 195518 | 7.5 |
HIGH
Network |
qcp | qcp200w_firmware | Real-time image information exposure is caused by insufficient authentication for activated RTSP port. This vulnerability could allow to remote attackers to send the RTSP requests using ffplay comman… |
CWE-287
Improper Authentication |
CVE-2021-26627 | 2024-11-21 14:56 | 2022-04-20 | Show | GitHub Exploit DB Packet Storm |
| 195519 | 8.8 |
HIGH
Network |
tobesoft | xplatform | Improper input validation vulnerability in XPLATFORM's execBrowser method can cause execute arbitrary commands. IF the second parameter value of the execBrowser function is ‘default’, the first param… |
CWE-20
Improper Input Validation |
CVE-2021-26626 | 2024-11-21 14:56 | 2022-04-20 | Show | GitHub Exploit DB Packet Storm |
| 195520 | 8.8 |
HIGH
Network |
tobesoft | nexacro | Insufficient Verification of input Data leading to arbitrary file download and execute was discovered in Nexacro platform. This vulnerability is caused by an automatic update function that does not v… |
CWE-345
Insufficient Verification of Data Authenticity |
CVE-2021-26625 | 2024-11-21 14:56 | 2022-04-20 | Show | GitHub Exploit DB Packet Storm |