NVD脆弱性情報トップ

検索メニュー表示

ベンダー名
プロダクト・サービス名
タイトル
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
公表日降順
更新日降順
表示数

NVD（National Vulnerability Database）で管理されている脆弱性の一覧を検索することが出来ます。
JVN（Japan Vulnerability Note）より先に脆弱性情報が更新される事が多いため、JVNに未記載の脆弱性が更新されている場合があります。

JVN（Japan Vulnerability Note）に関連した脆弱性がある場合は詳細画面で情報を表示します。

CWEで検索する場合は、CWE概要を参照して、CWE番号を確認してください。

CRITICAL
HIGH
MEDIUM
LOW

更新日:2026年4月25日4:08

No	CVSS	レベル攻撃区分	ベンダー名	プロダクト名	タイトル	CWE	CVE	更新日	公表日	影響表示	Exploit PoC 検索
312851	7.2	HIGH	sun	cobalt_raq cobalt_raq_2 cobalt_raq_3i	The siteUserMod.cgi program in Cobalt RaQ2 servers allows any Site Administrator to modify passwords for other users, site administrators, and possibly admin (root).	NVD-CWE-Other	CVE-2000-0117	2008-09-11 04:02	2000-01-30	表示	GitHub Exploit DB Packet Storm

312852	2.1	LOW	surfcontrol	superscout	surfCONTROL SuperScout does not properly asign a category to web sites with a . (dot) at the end, which may allow users to bypass web access restrictions.	NVD-CWE-Other	CVE-2000-0124	2008-09-11 04:02	2000-02-3	表示	GitHub Exploit DB Packet Storm

312853	7.5	HIGH	progress	webspeed	The Webspeed configuration program does not properly disable access to the WSMadmin utility, which allows remote attackers to gain privileges via wsisa.dll.	NVD-CWE-Other	CVE-2000-0127	2008-09-11 04:02	2000-02-3	表示	GitHub Exploit DB Packet Storm

312854	10.0	HIGH	daniel_beckham	the_finger_server	The Finger Server 0.82 allows remote attackers to execute commands via shell metacharacters.	NVD-CWE-Other	CVE-2000-0128	2008-09-11 04:02	2000-02-4	表示	GitHub Exploit DB Packet Storm

312855	7.2	HIGH	hp	hp-ux	Vulnerability in Vue 3.0 in HP 9.x allows local users to gain root privileges, as fixed by PHSS_4038, PHSS_4055, and PHSS_4066.	NVD-CWE-Other	CVE-1999-1134	2008-09-11 04:01	1994-05-18	表示	GitHub Exploit DB Packet Storm

312856	5.0	MEDIUM	flavio_veloso	nobo	nobo 1.2 allows remote attackers to cause a denial of service (crash) via a series of large UDP packets.	NVD-CWE-Other	CVE-1999-1169	2008-09-11 04:01	1999-02-4	表示	GitHub Exploit DB Packet Storm

312857	4.6	MEDIUM	iomega	zip_100_mb_drive	ZIP drive for Iomega ZIP-100 disks allows attackers with physical access to the drive to bypass password protection by inserting a known disk with a known password, waiting for the ZIP drive to power…	NVD-CWE-Other	CVE-1999-1174	2008-09-11 04:01	2001-12-21	表示	GitHub Exploit DB Packet Storm

312858	5.0	MEDIUM	oreilly	website website_pro	O'Reilly WebSite 1.1e and Website Pro 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an argument to (1) args.cmd or (2) args.bat.	NVD-CWE-Other	CVE-1999-1180	2008-09-11 04:01	1999-02-16	表示	GitHub Exploit DB Packet Storm

312859	5.0	MEDIUM	oreilly	website website_pro	O'Reilly has corrected this issue in WebSite Professional 2.5, which is now available from: http://website.oreilly.com	NVD-CWE-Other	CVE-1999-1180	2008-09-11 04:01	1999-02-16	表示	GitHub Exploit DB Packet Storm

312860	7.5	HIGH	freebsd	freebsd	Sysinstall in FreeBSD 2.2.1 and earlier, when configuring anonymous FTP, creates the ftp user without a password and with /bin/date as the shell, which could allow attackers to gain access to certain…	NVD-CWE-Other	CVE-1999-1298	2008-09-11 04:01	1997-04-7	表示	GitHub Exploit DB Packet Storm

312861	2.1	LOW	freebsd	freebsd	Vulnerability in union file system in FreeBSD 2.2 and earlier, and possibly other operating systems, allows local users to cause a denial of service (system reload) via a series of certain mount_unio…	NVD-CWE-Other	CVE-1999-1314	2008-09-11 04:01	1996-05-17	表示	GitHub Exploit DB Packet Storm

312862	10.0	HIGH	sgi	irix	Vulnerability in object server program in SGI IRIX 5.2 through 6.1 allows remote attackers to gain root privileges in certain configurations.	NVD-CWE-Other	CVE-1999-1319	2008-09-11 04:01	1996-01-3	表示	GitHub Exploit DB Packet Storm

312863	7.2	HIGH	redhat	linux	Buffer overflow in SysVInit in Red Hat Linux 5.1 and earlier allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-1329	2008-09-11 04:01	1999-12-31	表示	GitHub Exploit DB Packet Storm

312864	2.1	LOW	redhat	linux	netcfg 2.16-1 in Red Hat Linux 4.2 allows the Ethernet interface to be controlled by users on reboot when an option is set, which allows local users to cause a denial of service by shutting down the …	NVD-CWE-Other	CVE-1999-1331	2008-09-11 04:01	1999-12-31	表示	GitHub Exploit DB Packet Storm

312865	7.2	HIGH	ibm	tivoli_opc_tracker_agent	IBM/Tivoli OPC Tracker Agent version 2 release 1 creates files, directories, and IPC message queues with insecure permissions (world-readable and world-writable), which could allow local users to dis…	NVD-CWE-Other	CVE-1999-1403	2008-09-11 04:01	1998-10-2	表示	GitHub Exploit DB Packet Storm

312866	5.0	MEDIUM	ibm	tivoli_opc_tracker_agent	IBM/Tivoli OPC Tracker Agent version 2 release 1 allows remote attackers to cause a denial of service (resource exhaustion) via malformed data to the localtracker client port (5011), which prevents t…	NVD-CWE-Other	CVE-1999-1404	2008-09-11 04:01	1998-10-2	表示	GitHub Exploit DB Packet Storm

312867	5.0	MEDIUM	inso	dwhttpd	AnswerBook2 (AB2) web server dwhttpd 3.1a4 allows remote attackers to cause a denial of service (resource exhaustion) via an HTTP POST request with a large content-length.	NVD-CWE-Other	CVE-1999-1416	2008-09-11 04:01	1998-08-23	表示	GitHub Exploit DB Packet Storm

312868	7.5	HIGH	inso	answerbook2	Format string vulnerability in AnswerBook2 (AB2) web server dwhttpd 3.1a4 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via encoded % characters in an H…	NVD-CWE-Other	CVE-1999-1417	2008-09-11 04:01	1998-08-23	表示	GitHub Exploit DB Packet Storm

312869	5.0	MEDIUM	computer_software_manufaktur	alibaba	genkey utility in Alibaba 2.0 generates RSA key pairs with an exponent of 1, which results in transactions that are sent in cleartext.	NVD-CWE-Other	CVE-1999-1444	2008-09-11 04:01	1999-12-31	表示	GitHub Exploit DB Packet Storm

312870	7.5	HIGH	sco	openserver unixware	Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and SCO UnixWare 7.0.1 and earlier, allows remote attackers to gain privileges.	NVD-CWE-Other	CVE-1999-1450	2008-09-11 04:01	1999-01-27	表示	GitHub Exploit DB Packet Storm

312871	7.5	HIGH	thttpd	thttpd_http_server	Buffer overflow in thttpd HTTP server before 2.04-31 allows remote attackers to execute arbitrary commands via a long date string, which is not properly handled by the tdate_parse function.	NVD-CWE-Other	CVE-1999-1457	2008-09-11 04:01	1999-11-16	表示	GitHub Exploit DB Packet Storm

312872	6.2	MEDIUM	next sgi cray sun	next irix unicos sunos	rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.	NVD-CWE-Other	CVE-1999-1468	2008-09-11 04:01	1991-10-22	表示	GitHub Exploit DB Packet Storm

312873	7.5	HIGH	sun	java	Sun Java 1.6.0_03 and earlier versions, and possibly later versions, does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Tro…	CWE-94 コード・インジェクション	CVE-2008-3440	2008-09-10 13:00	2008-08-1	表示	GitHub Exploit DB Packet Storm

312874	7.5	HIGH	ignite_realtime	openfire	The admin console in Ignite Realtime Openfire 3.3.0 and earlier (formerly Wildfire) does not properly specify a filter mapping in web.xml, which allows remote attackers to gain privileges and execute…	CWE-264 認可・権限・アクセス制御	CVE-2007-2975	2008-09-10 13:00	2007-06-1	表示	GitHub Exploit DB Packet Storm

312875	7.5	HIGH	ignite_realtime	openfire	The vendor has addressed this issue through the release of the following product updates: Ignite Realtime openfire-3.3.1-1.i386.rpm http://www.igniterealtime.org/downloads/download-landing.jsp?fi…	CWE-264 認可・権限・アクセス制御	CVE-2007-2975	2008-09-10 13:00	2007-06-1	表示	GitHub Exploit DB Packet Storm

312876	6.5	MEDIUM	oracle	oracle8i oracle9i	Oracle Database Server 8.1.7.4 through 9.2.0.4 allows local users to execute commands with additional privileges via the ctxsys.driload package, which is publicly accessible.	CWE-94 コード・インジェクション	CVE-2004-0637	2008-09-10 13:00	2004-09-2	表示	GitHub Exploit DB Packet Storm

312877	5.0	MEDIUM	realnetworks	realserver	RealMedia server allows remote attackers to cause a denial of service via a long ramgen request.	NVD-CWE-Other	CVE-2000-0001	2008-09-10 13:00	1999-12-23	表示	GitHub Exploit DB Packet Storm

312878	7.1	HIGH	cisco	ios	The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string.	CWE-20 不適切な入力確認	CVE-2000-0380	2008-09-10 13:00	2000-04-26	表示	GitHub Exploit DB Packet Storm

312879	6.5	MEDIUM	postgresql	postgresql	Buffer overflows in (1) circle_poly, (2) path_encode and (3) path_add (also incorrectly identified as path_addr) for PostgreSQL 7.2.3 and earlier allow attackers to cause a denial of service and poss…	CWE-119 バッファエラー	CVE-2002-1401	2008-09-10 13:00	2003-01-17	表示	GitHub Exploit DB Packet Storm

312880	4.6	MEDIUM	freebsd	freebsd	FreeBSD seyon allows local users to gain privileges by providing a malicious program in the -emulator argument.	NVD-CWE-Other	CVE-1999-0821	2008-09-9 21:36	1999-11-8	表示	GitHub Exploit DB Packet Storm

312881	10.0	HIGH	qualcomm	qpopper	Buffer overflow in Qpopper (qpop) 3.0 allows remote root access via AUTH command.	NVD-CWE-Other	CVE-1999-0822	2008-09-9 21:36	1999-11-30	表示	GitHub Exploit DB Packet Storm

312882	4.6	MEDIUM	freebsd	freebsd	Buffer overflow in FreeBSD xmindpath allows local users to gain privileges via -f argument.	NVD-CWE-Other	CVE-1999-0823	2008-09-9 21:36	1999-12-1	表示	GitHub Exploit DB Packet Storm

312883	4.6	MEDIUM	microsoft	windows_nt	A Windows NT user can use SUBST to map a drive letter to a folder, which is not unmapped after the user logs off, potentially allowing that user to modify the location of folders accessed by later us…	NVD-CWE-Other	CVE-1999-0824	2008-09-9 21:36	1999-11-30	表示	GitHub Exploit DB Packet Storm

312884	3.6	LOW	sco	unixware	The default permissions for UnixWare /var/mail allow local users to read and modify other users' mail.	NVD-CWE-Other	CVE-1999-0825	2008-09-9 21:36	1999-12-3	表示	GitHub Exploit DB Packet Storm

312885	4.6	MEDIUM	freebsd	freebsd	Buffer overflow in FreeBSD angband allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-0826	2008-09-9 21:36	1999-12-1	表示	GitHub Exploit DB Packet Storm

312886	3.6	LOW	sco	unixware	UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission.	NVD-CWE-Other	CVE-1999-0828	2008-09-9 21:36	1999-12-2	表示	GitHub Exploit DB Packet Storm

312887	5.0	MEDIUM	cobalt sun debian suse	qube cobalt_raq cobalt_raq_2 cobalt_raq_3i debian_linux suse_linux	Denial of service in Linux syslogd via a large number of connections.	NVD-CWE-Other	CVE-1999-0831	2008-09-9 21:36	1999-11-19	表示	GitHub Exploit DB Packet Storm

312888	10.0	HIGH	rsa	rsaref	Buffer overflow in RSAREF2 via the encryption and decryption functions in the RSAREF library.	NVD-CWE-Other	CVE-1999-0834	2008-09-9 21:36	1999-12-1	表示	GitHub Exploit DB Packet Storm

312889	5.0	MEDIUM	deerfield	serv-u_ftp-server	Buffer overflow in Serv-U FTP 2.5 allows remote users to conduct a denial of service via the SITE command.	NVD-CWE-Other	CVE-1999-0838	2008-09-9 21:36	1999-12-1	表示	GitHub Exploit DB Packet Storm

312890	5.0	MEDIUM	deerfield	mdaemon	Denial of service in MDaemon WorldClient and WebConfig services via a long URL.	NVD-CWE-Other	CVE-1999-0844	2008-09-9 21:36	1999-11-24	表示	GitHub Exploit DB Packet Storm

312891	5.0	MEDIUM	isc	bind	Denial of service in BIND named via maxdname.	NVD-CWE-Other	CVE-1999-0849	2008-09-9 21:36	1999-11-10	表示	GitHub Exploit DB Packet Storm

312892	3.6	LOW	endymion	mailman_webmail	The default permissions for Endymion MailMan allow local users to read email or modify files.	NVD-CWE-Other	CVE-1999-0850	2008-09-9 21:36	1999-12-2	表示	GitHub Exploit DB Packet Storm

312893	7.2	HIGH	ibm	websphere_application_server	IBM WebSphere sets permissions that allow a local user to modify a deinstallation script or its data files stored in /usr/bin.	NVD-CWE-Other	CVE-1999-0852	2008-09-9 21:36	1999-12-2	表示	GitHub Exploit DB Packet Storm

312894	10.0	HIGH	netscape	enterprise_server fasttrack_server	Buffer overflow in Netscape Enterprise Server and Netscape FastTrack Server allows remote attackers to gain privileges via the HTTP Basic Authentication procedure.	NVD-CWE-Other	CVE-1999-0853	2008-09-9 21:36	1999-12-1	表示	GitHub Exploit DB Packet Storm

312895	7.2	HIGH	freebsd	freebsd	Buffer overflow in FreeBSD gdc program.	NVD-CWE-Other	CVE-1999-0855	2008-09-9 21:36	1999-12-1	表示	GitHub Exploit DB Packet Storm

312896	2.1	LOW	freebsd	freebsd	FreeBSD gdc program allows local users to modify files via a symlink attack.	NVD-CWE-Other	CVE-1999-0857	2008-09-9 21:36	1999-12-1	表示	GitHub Exploit DB Packet Storm

312897	7.2	HIGH	paul_vixie caldera debian redhat	vixie_cron openlinux debian_linux linux	Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file.	NVD-CWE-Other	CVE-1999-0872	2008-09-9 21:36	1999-08-25	表示	GitHub Exploit DB Packet Storm

312898	7.5	HIGH	sky_communications	skyfull	Buffer overflow in Skyfull mail server via MAIL FROM command.	NVD-CWE-Other	CVE-1999-0873	2008-09-9 21:36	1999-10-30	表示	GitHub Exploit DB Packet Storm

312899	10.0	HIGH	beroftpd washington_university	beroftpd wu-ftpd	Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via MAPPING_CHDIR.	NVD-CWE-Other	CVE-1999-0878	2008-09-9 21:36	1999-08-22	表示	GitHub Exploit DB Packet Storm

312900	5.0	MEDIUM	blueface	falcon_web_server	Falcon web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.	NVD-CWE-Other	CVE-1999-0881	2008-09-9 21:36	1999-10-26	表示	GitHub Exploit DB Packet Storm