Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225001 8.3 危険 シスコシステムズ - Cisco TelePresence TC Software におけるルート権限のシェルアクセスを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3379 2013-06-24 18:32 2013-06-19 Show GitHub Exploit DB Packet Storm
225002 7.8 危険 シスコシステムズ - Cisco TelePresence TC Software および TE Software におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3378 2013-06-24 18:16 2013-06-19 Show GitHub Exploit DB Packet Storm
225003 7.8 危険 シスコシステムズ - Cisco TelePresence TC Software および TE Software におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-3377 2013-06-24 18:08 2013-06-19 Show GitHub Exploit DB Packet Storm
225004 9 危険 Huawei - Huawei Seco Versatile Security Manager における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4633 2013-06-24 16:58 2013-04-3 Show GitHub Exploit DB Packet Storm
225005 7.8 危険 Huawei - Huawei Access Router (AR) におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4632 2013-06-24 16:57 2013-04-7 Show GitHub Exploit DB Packet Storm
225006 7.8 危険 Huawei - 複数の Huawei AR ルータにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-4631 2013-06-24 16:54 2013-04-25 Show GitHub Exploit DB Packet Storm
225007 7.6 危険 Huawei - 複数の Huawei AR ルータにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4630 2013-06-24 16:54 2013-03-13 Show GitHub Exploit DB Packet Storm
225008 8.5 危険 Huawei - Huawei Video Conference system 用の Huawei viewpoint VP9610 および VP9620 ユニットにおけるセッションをハイジャックされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-4629 2013-06-24 16:53 2013-05-13 Show GitHub Exploit DB Packet Storm
225009 3.5 注意 Huawei - Huawei Campus Switch デバイス上で稼働する複数の Huawei Quidway SPU ボードにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-4628 2013-06-24 16:52 2013-05-16 Show GitHub Exploit DB Packet Storm
225010 7.5 危険 Huawei - Huawei の AR ルータおよびスイッチ製品におけるセッションをハイジャックされる脆弱性 CWE-310
暗号の問題 		CVE-2012-6571 2013-06-24 16:50 2012-08-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199201 5.3 MEDIUM
Network 		express-mock-middleware_project express-mock-middleware express-mock-middleware through 0.0.6 is vulnerable to Prototype Pollution. Exported functions by the package can be tricked into adding or modifying properties of the `Object.prototype`. Exploitatio… CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7616 2024-11-21 14:37 2020-04-7 Show GitHub Exploit DB Packet Storm
199202 7.8 HIGH
Local 		fsa_project fsa fsa through 0.5.1 is vulnerable to Command Injection. The first argument of 'execGitCommand()', located within 'lib/rep.js#63' can be controlled by users without any sanitization to inject arbitrary … CWE-78
OS Command  		CVE-2020-7615 2024-11-21 14:37 2020-04-7 Show GitHub Exploit DB Packet Storm
199203 9.8 CRITICAL
Network 		npm-programmatic_project npm-programmatic npm-programmatic through 0.0.12 is vulnerable to Command Injection.The packages and option properties are concatenated together without any validation and are used by the 'exec' function directly. CWE-20
CWE-78
 Improper Input Validation 
OS Command  		CVE-2020-7614 2024-11-21 14:37 2020-04-7 Show GitHub Exploit DB Packet Storm
199204 8.1 HIGH
Network 		clamscan_project clamscan clamscan through 1.2.0 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the `_is_clamav_binary` function located within `Index.js`. It should be noted that t… CWE-78
OS Command  		CVE-2020-7613 2024-11-21 14:37 2020-04-7 Show GitHub Exploit DB Packet Storm
199205 9.8 CRITICAL
Network 		jooby jooby This affects the package io.jooby:jooby-netty before 1.6.9, from 2.0.0 and before 2.2.1. The DefaultHttpHeaders is set to false which means it does not validates that the header isn't being abused fo… NVD-CWE-Other
CVE-2020-7622 2024-11-21 14:37 2020-04-7 Show GitHub Exploit DB Packet Storm
199206 5.3 MEDIUM
Network 		dot_project dot eivindfjeldstad-dot below 1.0.3 is vulnerable to Prototype Pollution.The function 'set' could be tricked into adding or modifying properties of 'Object.prototype' using a '__proto__' payload. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7639 2024-11-21 14:37 2020-04-6 Show GitHub Exploit DB Packet Storm
199207 5.3 MEDIUM
Network 		confinit_project confinit confinit through 0.3.0 is vulnerable to Prototype Pollution.The 'setDeepProperty' function could be tricked into adding or modifying properties of 'Object.prototype' using a '__proto__' payload. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7638 2024-11-21 14:37 2020-04-6 Show GitHub Exploit DB Packet Storm
199208 5.3 MEDIUM
Network 		class-transformer_project class-transformer class-transformer before 0.3.1 allow attackers to perform Prototype Pollution. The classToPlainFromExist function could be tricked into adding or modifying properties of Object.prototype using a __pr… CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7637 2024-11-21 14:37 2020-04-6 Show GitHub Exploit DB Packet Storm
199209 9.8 CRITICAL
Network 		adb-driver_project adb-driver adb-driver through 0.1.8 is vulnerable to Command Injection.It allows execution of arbitrary commands via the command function. CWE-78
OS Command  		CVE-2020-7636 2024-11-21 14:37 2020-04-6 Show GitHub Exploit DB Packet Storm
199210 9.8 CRITICAL
Network 		compass-compile_project compass-compile compass-compile through 0.0.1 is vulnerable to Command Injection.It allows execution of arbitrary commands via tha options argument. CWE-78
OS Command  		CVE-2020-7635 2024-11-21 14:37 2020-04-6 Show GitHub Exploit DB Packet Storm