Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224971	7.8	危険	ヒューレット・パッカード	-	複数の HP LaserJet Pro のファームウェアにおけるデータを変更される脆弱性	CWE-noinfo 情報不足	CVE-2013-4807	2013-08-6 17:43	2013-07-31	Show	GitHub Exploit DB Packet Storm

224972	6.6	警告	シマンテック	-	Symantec Workspace Virtualization における権限を取得される脆弱性	CWE-119 バッファエラー	CVE-2013-4679	2013-08-6 16:42	2013-08-1	Show	GitHub Exploit DB Packet Storm

224973	7.5	危険	Parallels	-	Parallels Plesk Panel に任意のコードが実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4878	2013-08-6 15:52	2013-06-7	Show	GitHub Exploit DB Packet Storm

224974	6.8	警告	シマンテック	-	Symantec PGP Desktop および Symantec Encryption Desktop の RDDService における権限を取得される脆弱性	CWE-Other その他	CVE-2013-1610	2013-08-6 15:00	2013-08-1	Show	GitHub Exploit DB Packet Storm

224975	9	危険	ヒューレット・パッカード	-	HP Integrated Lights-Out 3 および HP Integrated Lights-Out 4 のファームウェアにおける認証を回避される脆弱性	CWE-noinfo 情報不足	CVE-2013-4805	2013-08-6 14:55	2013-07-16	Show	GitHub Exploit DB Packet Storm

224976	6.8	警告	シスコシステムズ	-	Cisco Unified Communications Manager におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-3451	2013-08-6 14:54	2013-08-2	Show	GitHub Exploit DB Packet Storm

224977	6.8	警告	シスコシステムズ	-	Cisco Unified Communications Manager の User WebDialer ページにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-3450	2013-08-6 14:53	2013-08-2	Show	GitHub Exploit DB Packet Storm

224978	4	警告	シスコシステムズ	-	Cisco Unified Communications Manager の Web ポータルにおける重要なスタックトレース情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-3442	2013-08-6 13:58	2013-08-2	Show	GitHub Exploit DB Packet Storm

224979	5	警告	Apache Software Foundation	-	Subversion の mod_dav_svn Apache HTTPD サーバモジュールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-1884	2013-08-6 11:38	2013-03-29	Show	GitHub Exploit DB Packet Storm

224980	4.3	警告	Apache Software Foundation	-	Subversion の mod_dav_svn Apache HTTPD サーバモジュールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2013-1849	2013-08-6 11:37	2013-04-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200201	8.8	HIGH Network	tibco oracle	jasperreports_library jasperreports_server retail_order_broker	The report generator component of TIBCO Software Inc.'s TIBCO JasperReports Library, TIBCO JasperReports Library for ActiveMatrix BPM, TIBCO JasperReports Server, TIBCO JasperReports Server for AWS M…	CWE-79 Cross-site Scripting	CVE-2020-9410	2024-11-21 14:40	2020-05-20	Show	GitHub Exploit DB Packet Storm

200202	9.8	CRITICAL Network	tibco oracle	jasperreports_server retail_order_broker	The administrative UI component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server for AWS Marketplace, and TIBCO JasperReports Server for ActiveMatrix BPM contains a vul…	CWE-276 Incorrect Default Permissions	CVE-2020-9409	2024-11-21 14:40	2020-05-20	Show	GitHub Exploit DB Packet Storm

200203	5.4	MEDIUM Network	microfocus	enterprise_developer enterprise_server	Cross Site scripting vulnerability on Micro Focus Enterprise Server and Enterprise developer, affecting all versions prior to version 5.0 Patch Update 8. The vulnerability could allow an attacker to …	CWE-79 Cross-site Scripting	CVE-2020-9524	2024-11-21 14:40	2020-05-18	Show	GitHub Exploit DB Packet Storm

200204	9.8	CRITICAL Network	dahuasecurity	sd6al_firmware sd5a_firmware sd1a_firmware ptz1a_firmware sd50_firmware sd52c_firmware ipc-hx5842h_firmware ipc-hx7842h_firmware ipc-hx2xxx_firmware ipc-hxxx5x4x_firmware	Some Dahua products with Build time before December 2019 have Session ID predictable vulnerabilities. During normal user access, an attacker can use the predicted Session ID to construct a data packe…	CWE-330 Use of Insufficiently Random Values	CVE-2020-9502	2024-11-21 14:40	2020-05-14	Show	GitHub Exploit DB Packet Storm

200205	5.5	MEDIUM Local	dahuasecurity	web_p2p	Attackers can obtain Cloud Key information from the Dahua Web P2P control in specific ways. Cloud Key is used to authenticate the connection between the client tool and the platform. An attacker may …	NVD-CWE-noinfo	CVE-2020-9501	2024-11-21 14:40	2020-05-14	Show	GitHub Exploit DB Packet Storm

200206	7.5	HIGH Network	oracle	iplanet_web_server	PRODUCT NOT SUPPORTED WHEN ASSIGNED Oracle iPlanet Web Server 7.0.x has Incorrect Access Control for admingui/version URIs in the Administration console, as demonstrated by unauthenticated read…	CWE-306 Missing Authentication for Critical Function	CVE-2020-9315	2024-11-21 14:40	2020-05-11	Show	GitHub Exploit DB Packet Storm

200207	4.8	MEDIUM Network	oracle	iplanet_web_server	PRODUCT NOT SUPPORTED WHEN ASSIGNED Oracle iPlanet Web Server 7.0.x allows image injection in the Administration console via the productNameSrc parameter to an admingui URI. This issue exists b…	CWE-79 Cross-site Scripting	CVE-2020-9314	2024-11-21 14:40	2020-05-11	Show	GitHub Exploit DB Packet Storm

200208	7.0	HIGH Local	siedle	sg_150-0_firmware	The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows local privilege escalation via a race condition in logrotate. By using an exploit chain, an attacker with access to the network can g…	CWE-362 Race Condition	CVE-2020-9475	2024-11-21 14:40	2020-05-8	Show	GitHub Exploit DB Packet Storm

200209	8.8	HIGH Network	siedle	sg_150-0_firmware	The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows remote code execution via the backup functionality in the web frontend. By using an exploit chain, an attacker with access to the net…	CWE-494 Download of Code Without Integrity Check	CVE-2020-9474	2024-11-21 14:40	2020-05-8	Show	GitHub Exploit DB Packet Storm

200210	7.5	HIGH Network	huawei	oceanstor_5310_firmware	Huawei OceanStor 5310 product with version of V500R007C60SPC100 has an invalid pointer access vulnerability. The software system access an invalid pointer when attacker malformed packet. Due to the i…	CWE-763 Release of Invalid Pointer or Reference	CVE-2020-9098	2024-11-21 14:40	2020-05-1	Show	GitHub Exploit DB Packet Storm