Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133081 3.3
Local 		Huawei P30 ファームウェア Huawei P30 におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2020-9203 2021-09-21 18:03 2020-12-30 Show GitHub Exploit DB Packet Storm
133082 5.3 警告
Network 		Huawei EMUI
Magic UI 		複数の Huawei スマートフォンにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2020-9143 2021-09-21 18:03 2020-02-18 Show GitHub Exploit DB Packet Storm
133083 9.1 緊急
Network 		Huawei EMUI
Magic UI 		複数の Huawei スマートフォンにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2020-9142 2021-09-21 18:03 2020-02-18 Show GitHub Exploit DB Packet Storm
133084 9.1 緊急
Network 		Huawei EMUI
Magic UI 		複数の Huawei スマートフォンにおけるデータの信頼性についての不十分な検証に関する脆弱性 CWE-269
CWE-345
CVE-2020-9141 2021-09-21 18:03 2020-02-18 Show GitHub Exploit DB Packet Storm
133085 9.8 緊急
Network 		Huawei EMUI
Magic UI 		複数の Huawei スマートフォンにおけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2020-9140 2021-09-21 18:03 2020-02-18 Show GitHub Exploit DB Packet Storm
133086 9.1 緊急
Network 		Huawei EMUI
Magic UI 		複数の Huawei スマートフォンにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2020-9139 2021-09-21 18:03 2020-02-18 Show GitHub Exploit DB Packet Storm
133087 8.8 重要
Network 		fastify fastify-csrf fastify-csrf パッケージにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2020-28482 2021-09-21 17:53 2020-12-11 Show GitHub Exploit DB Packet Storm
133088 4.3 警告
Network 		Socket.IO socket.io socket.io パッケージにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2020-28481 2021-09-21 17:53 2020-10-30 Show GitHub Exploit DB Packet Storm
133089 9.8 緊急
Network 		jointjs jointjs jointjs パッケージにおける脆弱性 CWE-Other
その他 		CVE-2020-28480 2021-09-21 17:53 2020-12-18 Show GitHub Exploit DB Packet Storm
133090 7.5 重要
Network 		jointjs jointjs jointjs パッケージにおける脆弱性 CWE-noinfo
情報不足 		CVE-2020-28479 2021-09-21 17:53 2020-11-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
306841 - apple mac_os_x
mac_os_x_server 		Format string vulnerability in the debug-logging feature in Application Firewall in Apple Mac OS X before 10.7.2 allows local users to gain privileges via a crafted name of an executable file. CWE-134
Use of Externally-Controlled Format String 		CVE-2011-0185 2024-11-21 10:23 2011-10-14 Show GitHub Exploit DB Packet Storm
306842 - apple itunes CoreFoundation, as used in Apple iTunes before 10.5, does not properly perform string tokenization, which allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (me… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-0259 2024-11-21 10:23 2011-10-13 Show GitHub Exploit DB Packet Storm
306843 - novell groupwise Stack-based buffer overflow in gwia.exe in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remote attackers to execute arbitrary code via a long HTTP request for a .css file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-0334 2024-11-21 10:23 2011-10-8 Show GitHub Exploit DB Packet Storm
306844 - novell groupwise Heap-based buffer overflow in the NgwiCalVTimeZoneBody::ParseSelf function in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remote attackers to execute arbit… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-0333 2024-11-21 10:23 2011-10-8 Show GitHub Exploit DB Packet Storm
306845 - apple quicktime Apple QuickTime before 7.7 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted image description associat… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-0258 2024-11-21 10:23 2011-09-7 Show GitHub Exploit DB Packet Storm
306846 - ibm runtimes_for_java_technology
java 		The class file parser in IBM Java before 1.4.2 SR13 FP9, as used in IBM Runtimes for Java Technology 5.0.0 before SR13 and 6.0.0 before SR10, allows remote authenticated users to cause a denial of se… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-0311 2024-11-21 10:23 2011-09-3 Show GitHub Exploit DB Packet Storm
306847 - indusoft web_studio Multiple buffer overflows in the InduSoft ISSymbol ActiveX control in ISSymbol.ocx 301.1104.601.0 in InduSoft Web Studio 7.0B2 hotfix 7.0.01.04 allow remote attackers to execute arbitrary code via a … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-0342 2024-11-21 10:23 2011-09-3 Show GitHub Exploit DB Packet Storm
306848 - apple iphone_os The Data Security component in Apple iOS before 4.2.10 and 4.3.x before 4.3.5 does not check the basicConstraints parameter during validation of X.509 certificate chains, which allows man-in-the-midd… CWE-20
 Improper Input Validation  		CVE-2011-0228 2024-11-21 10:23 2011-08-30 Show GitHub Exploit DB Packet Storm
306849 - mozilla firefox
seamonkey
thunderbird 		The SVGTextElement.getCharNumAtPosition function in Mozilla Firefox before 3.6.20, and 4.x through 5; Thunderbird 3.x before 3.1.12 and other versions before 6; SeaMonkey 2.x before 2.3; and possibly… CWE-94
Code Injection 		CVE-2011-0084 2024-11-21 10:23 2011-08-19 Show GitHub Exploit DB Packet Storm
306850 - apple quicktime Integer signedness error in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PnSize opcode in a PICT file th… CWE-189
Numeric Errors 		CVE-2011-0257 2024-11-21 10:23 2011-08-16 Show GitHub Exploit DB Packet Storm