Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224971 5.8 警告 IBM - IBM Tivoli Federated Identity Manager および Tivoli Federated Identity Manager Business Gateway におけるユーザを任意の Web サイトにリダイレクトされる脆弱性 CWE-20
CWE-Other
CVE-2013-5431 2013-11-11 16:33 2013-10-28 Show GitHub Exploit DB Packet Storm
224972 5 警告 シスコシステムズ - Cisco MDS 9000 デバイス上で稼働する Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-5566 2013-11-11 16:14 2013-11-6 Show GitHub Exploit DB Packet Storm
224973 4.3 警告 シスコシステムズ - Cisco IOS XR の OSPFv3 機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-5565 2013-11-11 16:13 2013-11-7 Show GitHub Exploit DB Packet Storm
224974 10 危険 シスコシステムズ - Cisco TelePresence VX Clinical Assistant の WIL-A モジュールにおけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-5558 2013-11-11 16:13 2013-11-6 Show GitHub Exploit DB Packet Storm
224975 7.5 危険 シスコシステムズ - Cisco Wide Area Application Services Mobile のサーバの Web 管理インターフェースにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-5554 2013-11-11 16:12 2013-11-6 Show GitHub Exploit DB Packet Storm
224976 7.8 危険 シスコシステムズ - Cisco IOS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-5553 2013-11-11 15:04 2013-11-6 Show GitHub Exploit DB Packet Storm
224977 4.3 警告 アップル - Apple iOS などで使用される WebKit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5131 2013-11-11 14:14 2013-09-18 Show GitHub Exploit DB Packet Storm
224978 4.3 警告 アップル - Apple iOS などで使用される WebKit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5129 2013-11-11 14:13 2013-09-18 Show GitHub Exploit DB Packet Storm
224979 8.5 危険 PineApp - PineApp Mail-SeCure における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4987 2013-11-11 11:33 2013-10-2 Show GitHub Exploit DB Packet Storm
224980 5.8 警告 LIGHTTPD - lighttpd におけるセッションをハイジャックされる脆弱性 CWE-310
暗号の問題 		CVE-2013-4508 2013-11-11 11:02 2013-11-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210821 8.8 HIGH
Network 		vfairs vfairs Any user logged in to a vFairs 3.3 virtual conference or event can perform SQL injection with a malicious query to the API. CWE-89
SQL Injection 		CVE-2020-26677 2024-11-21 14:20 2021-05-26 Show GitHub Exploit DB Packet Storm
210822 8.1 HIGH
Adjacent 		bluetooth mesh_profile Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device, reflecting the authentication evidence from a Provisioner, to complete authentication without posse… CWE-863
 Incorrect Authorization 		CVE-2020-26560 2024-11-21 14:20 2021-05-25 Show GitHub Exploit DB Packet Storm
210823 8.8 HIGH
Adjacent 		bluetooth mesh_profile Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device (participating in the provisioning protocol) to identify the AuthValue used given the Provisioner’s … CWE-863
 Incorrect Authorization 		CVE-2020-26559 2024-11-21 14:20 2021-05-25 Show GitHub Exploit DB Packet Storm
210824 4.2 MEDIUM
Adjacent 		bluetooth
fedoraproject
debian
linux
intel 		bluetooth_core_specification
fedora
debian_linux
linux_kernel
ax210_firmware
ax201_firmware
ax200_firmware
ac_9560_firmware
ac_9462_firmware
ac_9461_firmware
ac_9260_fir… 		Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 through 5.2 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (in the Passkey authe… CWE-287
Improper Authentication 		CVE-2020-26558 2024-11-21 14:20 2021-05-25 Show GitHub Exploit DB Packet Storm
210825 7.5 HIGH
Adjacent 		bluetooth mesh_profile Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device (without possession of the AuthValue used in the provisioning protocol) to determine the AuthValue via a brute… CWE-287
Improper Authentication 		CVE-2020-26557 2024-11-21 14:20 2021-05-25 Show GitHub Exploit DB Packet Storm
210826 7.5 HIGH
Adjacent 		bluetooth mesh_profile
bluetooth_core_specification 		Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device, able to conduct a successful brute-force attack on an insufficiently random AuthValue before the provisioning… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2020-26556 2024-11-21 14:20 2021-05-25 Show GitHub Exploit DB Packet Storm
210827 5.4 MEDIUM
Adjacent 		bluetooth
fedoraproject
intel 		bluetooth_core_specification
fedora
ax210_firmware
ax201_firmware
ax200_firmware
ac_9560_firmware
ac_9462_firmware
ac_9461_firmware
ac_9260_firmware
ac_8265_firmware
ac_… 		Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B through 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing witho… CWE-863
 Incorrect Authorization 		CVE-2020-26555 2024-11-21 14:20 2021-05-25 Show GitHub Exploit DB Packet Storm
210828 5.7 MEDIUM
Physics 		nordicsemi nrf52840_firmware Nordic Semiconductor nRF52840 devices through 2020-10-19 have improper protection against physical side channels. The flash read-out protection (APPROTECT) can be bypassed by injecting a fault during… CWE-203
 Information Exposure Through Discrepancy 		CVE-2020-27211 2024-11-21 14:20 2021-05-21 Show GitHub Exploit DB Packet Storm
210829 7.0 HIGH
Local 		st stm32cubel4_firmware STMicroelectronics STM32L4 devices through 2020-10-19 have incorrect access control. The flash read-out protection (RDP) can be degraded from RDP level 2 (no access via debug interface) to level 1 (l… CWE-74
Injection 		CVE-2020-27212 2024-11-21 14:20 2021-05-21 Show GitHub Exploit DB Packet Storm
210830 6.8 MEDIUM
Physics 		solokeys
nitrokey 		solo_firmware
somu_firmware
fido2_firmware 		The flash read-out protection (RDP) level is not enforced during the device initialization phase of the SoloKeys Solo 4.0.0 & Somu and the Nitrokey FIDO2 token. This allows an adversary to downgrade … CWE-326
Inadequate Encryption Strength 		CVE-2020-27208 2024-11-21 14:20 2021-05-21 Show GitHub Exploit DB Packet Storm