Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
133301	7.8	重要 Local	Canonical Linux	Ubuntu Linux Kernel	Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2020-16119	2021-10-5 16:19	2020-06-17	Show	GitHub Exploit DB Packet Storm

133302	7.5	重要 Local	日立インテル	RV3000 HA8000V シリーズ 2nd Generation Intel Xeon Intel Xeon Intel Core X-series	Intel 製 BIOS のテスト設計機能に権限昇格の脆弱性	CWE-453 変数の安全ではないデフォルト値への初期化	CVE-2021-0144	2021-10-5 16:15	2021-07-16	Show	GitHub Exploit DB Packet Storm

133303	8.8	重要 Local	Debian Flatpak	Debian GNU/Linux Flatpak	Flatpak におけるインジェクションに関する脆弱性	CWE-74 インジェクション	CVE-2021-21261	2021-10-5 15:24	2021-01-14	Show	GitHub Exploit DB Packet Storm

133304	-	-	日立	Hitachi Tuning Manager Hitachi Infrastructure Analytics Advisor Hitachi Ops Center Analyzer	Hitachi Tuning Manager、Hitachi Infrastructure Analytics Advisor および Hitachi Ops Center Analyzer における情報露出の脆弱性	CWE-noinfo 情報不足	-	2021-10-5 15:09	2021-10-1	Show	GitHub Exploit DB Packet Storm

133305	8.8	重要 Network	Eclipse Foundation	Hono	Eclipse Hono における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2020-27220	2021-10-5 15:07	2020-12-21	Show	GitHub Exploit DB Packet Storm

133306	4.9	警告 Network	flatCore	flatCore-CMS	flatCore における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2021-23835	2021-10-5 14:57	2021-01-5	Show	GitHub Exploit DB Packet Storm

133307	3.7	低 Network	Debian NetApp Broadcom Haxx 日立 Fedora Project	NetApp HCI Storage Node JP1/Automatic Job Management System 3 NetApp SolidFire Fedora libcurl NetApp HCI Management Node Debia…	curl におけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2021-22890	2021-10-5 14:56	2021-03-31	Show	GitHub Exploit DB Packet Storm

133308	4.8	警告 Network	flatCore	flatCore-CMS	flatCore におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-23836	2021-10-5 14:52	2021-01-5	Show	GitHub Exploit DB Packet Storm

133309	6.5	警告 Network	flatCore	flatCore-CMS	flatCore における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2021-23837	2021-10-5 14:45	2021-01-5	Show	GitHub Exploit DB Packet Storm

133310	4.8	警告 Network	flatCore	flatCore-CMS	flatCore におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-23838	2021-10-5 14:38	2021-01-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
357621	-	sendmail	sendmail	Sendmail 8.9.0 through 8.12.3 allows local users to cause a denial of service by obtaining an exclusive lock on the (1) alias, (2) map, (3) statistics, and (4) pid files.	NVD-CWE-Other	CVE-2002-1827	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

357622	-	savant	savant_webserver	Savant Webserver 3.1 allows remote attackers to cause a denial of service (crash) via an HTTP GET request with a negative Content-Length value.	NVD-CWE-Other	CVE-2002-1828	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

357623	-	microsoft	msn_messenger	Microsoft MSN Messenger Service 1.0 through 4.6 allows remote attackers to cause a denial of service (crash) via an invite request that contains hex-encoded spaces (%20) in the Invitation-Cookie fiel…	NVD-CWE-Other	CVE-2002-1831	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

357624	-	scaramanga	firestorm_ids	Unknown vulnerability in the "ipopts decode" functionality in Firestorm IDS 0.4.0 through 0.4.2 allows remote attackers to cause a denial of service (crash) via certain IP options.	NVD-CWE-Other	CVE-2002-1832	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

357625	-	xerox	docutech_6110 docutech_6115	The default configurations for DocuTech 6110 and DocuTech 6115 have a default administrative password of (1) "service!" on Solaris 8.0 or (2) "administ" on Windows NT, which allows remote attackers t…	NVD-CWE-Other	CVE-2002-1833	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

357626	-	xerox	docutech_6110 docutech_6115	The default configuration of Xerox DocuTech 6110 and DocuTech 6115 allows remote attackers to connect to the web server and (1) submit print jobs directly into the "print now" queue or (2) read the s…	NVD-CWE-Other	CVE-2002-1834	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

357627	-	xerox	docutech_6110 docutech_6115	The default configuration of Xerox DocuTech 6110 and DocuTech 6115 running Solaris 8.0 has a large number of unnecessary services enabled such as RPC and sprayd, which could allow remote attackers to…	NVD-CWE-Other	CVE-2002-1835	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

357628	-	xerox	docutech_6110 docutech_6115	The default configuration of Xerox DocuTech 6110 and DocuTech 6115 exports certain NFS shares to the world with world writable permissions, which may allow remote attackers to modify sensitive files.	NVD-CWE-Other	CVE-2002-1836	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

357629	-	ids	ids	The getAlbumToDisplay function in idsShared.pm for Image Display System (IDS) 0.81 allows remote attackers to determine the existence of arbitrary directories via ".." sequences in the album paramete…	NVD-CWE-Other	CVE-2002-1837	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

357630	-	steve_sachs	charities.cron	Charities.cron 1.0.2 through 1.6.0 allows local users to write to arbitrary files via a symlink attack on temporary files.	NVD-CWE-Other	CVE-2002-1838	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed