Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225051 8.3 危険 Seowon Intech - Seowon Intech WiMAX SWC-9100 ルータの cgi-bin/diagnostic.cgi の ping 機能における任意のコマンドを実行される脆弱性 CWE-20
CWE-Other
CVE-2013-7179 2014-02-5 17:57 2013-12-19 Show GitHub Exploit DB Packet Storm
225052 10 危険 GateHouse
Harris
Thuraya Telecommunications
Hughes Network Systems
日本無線株式会社
Inmarsat plc.		 - 複数の衛星通信端末のファームウェアにおける任意のコードを実行される脆弱性 CWE-287
CWE-Other
CVE-2013-6035 2014-02-5 17:50 2013-10-4 Show GitHub Exploit DB Packet Storm
225053 10 危険 GateHouse
Harris
Thuraya Telecommunications
Hughes Network Systems
日本無線株式会社
Inmarsat plc.		 - 複数の衛星通信端末のファームウェアにおける不特定のログインアクセス権を取得される脆弱性 CWE-255
CWE-Other
CVE-2013-6034 2014-02-5 17:49 2013-10-4 Show GitHub Exploit DB Packet Storm
225054 3.5 注意 Lexmark - Lexmark の複数のプリンタ製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6033 2014-02-5 17:05 2013-10-4 Show GitHub Exploit DB Packet Storm
225055 10 危険 Lexmark - Lexmark の複数のプリンタ製品の cgi-bin/postpf/cgi-bin/dynamic/config/config.html における Password Protect の管理パスワードを削除される脆弱性 CWE-20
CWE-Other
CVE-2013-6032 2014-02-5 17:00 2013-10-4 Show GitHub Exploit DB Packet Storm
225056 4 警告 IBM - IBM General Parallel File System におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0834 2014-02-5 16:12 2014-01-31 Show GitHub Exploit DB Packet Storm
225057 6.8 警告 IBM - IBM InfoSphere Master Data Management - Collaborative Edition および InfoSphere Master Data Management Server for Product Information Management におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5427 2014-02-5 16:11 2013-08-22 Show GitHub Exploit DB Packet Storm
225058 9.3 危険 ZTE - ZTE ZXV10 W300 に認証情報がハードコードされている問題 CWE-255
CWE-Other
CVE-2014-0329 2014-02-5 15:50 2014-02-3 Show GitHub Exploit DB Packet Storm
225059 4.9 警告 クアルコム
Android for MSM		 - MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで使用される Linux Kernel 用 MSM カメラドライバにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-4739 2014-02-5 11:54 2013-10-15 Show GitHub Exploit DB Packet Storm
225060 7.2 危険 クアルコム
Android for MSM		 - MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで使用される Linux Kernel 用 MSM カメラドライバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4738 2014-02-5 11:53 2013-10-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210081 7.5 HIGH
Network 		netflix chaos_monkey Jenkins Chaos Monkey Plugin 0.3 and earlier does not perform permission checks in several HTTP endpoints, allowing attackers with Overall/Read permission to generate load and to generate memory leaks. CWE-862
 Missing Authorization 		CVE-2020-2322 2024-11-21 14:25 2020-12-4 Show GitHub Exploit DB Packet Storm
210082 8.1 HIGH
Network 		jenkins shelve_project A cross-site request forgery (CSRF) vulnerability in Jenkins Shelve Project Plugin 3.0 and earlier allows attackers to shelve, unshelve, or delete a project. CWE-352
 Origin Validation Error 		CVE-2020-2321 2024-11-21 14:25 2020-12-4 Show GitHub Exploit DB Packet Storm
210083 9.8 CRITICAL
Network 		jenkins installation_manager_tool Jenkins Plugin Installation Manager Tool 2.1.3 and earlier does not verify plugin downloads. CWE-494
 Download of Code Without Integrity Check 		CVE-2020-2320 2024-11-21 14:25 2020-12-4 Show GitHub Exploit DB Packet Storm
210084 7.2 HIGH
Network 		qnap qts If exploited, the command injection vulnerability could allow remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. QTS versions prior to 4.4.3.1421 on build 20200907. CWE-77
Command Injection 		CVE-2020-2492 2024-11-21 14:25 2020-11-16 Show GitHub Exploit DB Packet Storm
210085 7.2 HIGH
Network 		qnap qts If exploited, the command injection vulnerability could allow remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. QTS versions prior to 4.4.3.1421 on build 20200907. CWE-77
Command Injection 		CVE-2020-2490 2024-11-21 14:25 2020-11-16 Show GitHub Exploit DB Packet Storm
210086 6.5 MEDIUM
Network 		jenkins vmware_lab_manager_slaves Jenkins VMware Lab Manager Slaves Plugin 0.2.8 and earlier stores a password unencrypted in the global config.xml file on the Jenkins controller where it can be viewed by users with access to the Jen… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2319 2024-11-21 14:25 2020-11-5 Show GitHub Exploit DB Packet Storm
210087 6.5 MEDIUM
Network 		jenkins mail_commander Jenkins Mail Commander Plugin for Jenkins-ci Plugin 1.0.0 and earlier stores passwords unencrypted in job config.xml files on the Jenkins controller where they can be viewed by users with Extended Re… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2318 2024-11-21 14:25 2020-11-5 Show GitHub Exploit DB Packet Storm
210088 5.4 MEDIUM
Network 		jenkins findbugs Jenkins FindBugs Plugin 5.0.0 and earlier does not escape the annotation message in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to provide r… CWE-79
Cross-site Scripting 		CVE-2020-2317 2024-11-21 14:25 2020-11-5 Show GitHub Exploit DB Packet Storm
210089 5.4 MEDIUM
Network 		jenkins static_analysis_utilities Jenkins Static Analysis Utilities Plugin 1.96 and earlier does not escape the annotation message in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers w… CWE-79
Cross-site Scripting 		CVE-2020-2316 2024-11-21 14:25 2020-11-5 Show GitHub Exploit DB Packet Storm
210090 6.5 MEDIUM
Network 		jenkins visualworks_store Jenkins Visualworks Store Plugin 1.1.3 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. - CVE-2020-2315 2024-11-21 14:25 2020-11-5 Show GitHub Exploit DB Packet Storm