Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225631 4.3 警告 Xfig project - Xfig の u_bound.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-4228 2012-12-20 19:28 2009-12-8 Show GitHub Exploit DB Packet Storm
225632 6.8 警告 Xfig project - Xfig の f_readold.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4227 2012-12-20 19:28 2009-12-8 Show GitHub Exploit DB Packet Storm
225633 7.1 危険 サン・マイクロシステムズ - Sun OpenSolaris のカーネルにおけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2009-4226 2012-12-20 19:28 2009-12-3 Show GitHub Exploit DB Packet Storm
225634 7.5 危険 smartisoft - phpBazar における管理コントロールパネルへのアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4222 2012-12-20 19:28 2009-12-7 Show GitHub Exploit DB Packet Storm
225635 7.5 危険 smartisoft - phpBazar の classified.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4221 2012-12-20 19:28 2009-12-7 Show GitHub Exploit DB Packet Storm
225636 7.5 危険 raphael mazoyer - PointComma の includes/classes/pctemplate.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4220 2012-12-20 19:28 2009-12-7 Show GitHub Exploit DB Packet Storm
225637 7.5 危険 ringsworld - Flashlight Free Edition の admin.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4205 2012-12-20 19:28 2009-12-4 Show GitHub Exploit DB Packet Storm
225638 7.5 危険 ringsworld - Flashlight Free Edition の read.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4204 2012-12-20 19:28 2009-12-4 Show GitHub Exploit DB Packet Storm
225639 7.5 危険 vollmar - Joomla! 用の Seminar コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4200 2012-12-20 19:28 2009-12-4 Show GitHub Exploit DB Packet Storm
225640 7.2 危険 サン・マイクロシステムズ - x86-64 platform 上で稼動する Sun Solaris などのカーネルにおける権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-4191 2012-12-20 19:28 2009-12-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198971 9.8 CRITICAL
Network 		qualcomm msm8960
mdm9607
mdm9650
msm8909w
mdm9635m
mdm9655
mdm9615
mdm9625
mdm9640
mdm9645
sdm630
qca6174a
qca6574au
qca6584au
qca9379
msm8976
msm8952
apq809… 		Possible memory out of bound issue during music playback when an incorrect bit stream content is copied into array without checking the length of array in Snapdragon Auto, Snapdragon Compute, Snapdra… CWE-120
Classic Buffer Overflow 		CVE-2020-3686 2024-11-21 14:31 2021-01-21 Show GitHub Exploit DB Packet Storm
198972 7.5 HIGH
Network 		qualcomm msm8960
mdm9206
mdm9607
mdm9650
msm8909w
mdm9635m
mdm9655
mdm9615
mdm9625
mdm9640
mdm9645
sdm630
qca6174a
qca6574au
qca6584
qca6584au
qca9379
msm897… 		Pointer variable which is freed is not cleared can result in memory corruption and leads to denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT,… CWE-415
 Double Free 		CVE-2020-3685 2024-11-21 14:31 2021-01-21 Show GitHub Exploit DB Packet Storm
198973 9.8 CRITICAL
Network 		cisco dna_spaces\ A vulnerability in the web-based management interface of Cisco DNA Spaces Connector could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerabil… CWE-78
OS Command  		CVE-2020-3586 2024-11-21 14:31 2020-11-19 Show GitHub Exploit DB Packet Storm
198974 9.8 CRITICAL
Network 		cisco iot_field_network_director A vulnerability in the REST API of Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote attacker to access the back-end database of an affected system. The vulnerability exis… CWE-306
Missing Authentication for Critical Function 		CVE-2020-3531 2024-11-21 14:31 2020-11-19 Show GitHub Exploit DB Packet Storm
198975 6.5 MEDIUM
Network 		cisco expressway
telepresence_video_communication_server 		A vulnerability in the Traversal Using Relays around NAT (TURN) server component of Cisco Expressway software could allow an unauthenticated, remote attacker to bypass security controls and send netw… CWE-269
 Improper Privilege Management 		CVE-2020-3482 2024-11-21 14:31 2020-11-19 Show GitHub Exploit DB Packet Storm
198976 6.5 MEDIUM
Network 		cisco webex_meetings_server A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to maintain bidirectional audio despite being expelled from an active Webex ses… CWE-662
 Improper Synchronization 		CVE-2020-3471 2024-11-21 14:31 2020-11-19 Show GitHub Exploit DB Packet Storm
198977 9.8 CRITICAL
Network 		cisco enterprise_nfv_infrastructure_software
integrated_management_controller 		Multiple vulnerabilities in the API subsystem of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote attacker to execute arbitrary code with root privileges. The vulne… CWE-20
 Improper Input Validation  		CVE-2020-3470 2024-11-21 14:31 2020-11-19 Show GitHub Exploit DB Packet Storm
198978 5.3 MEDIUM
Network 		cisco webex_meetings_server
webex_meetings 		A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to view sensitive information from the meeting room lobby. This vulnerability i… NVD-CWE-noinfo
CVE-2020-3441 2024-11-21 14:31 2020-11-19 Show GitHub Exploit DB Packet Storm
198979 9.1 CRITICAL
Network 		cisco webex_meetings_server A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to join a Webex session without appearing on the participant list. This vulnera… CWE-913
 Improper Control of Dynamically-Managed Code Resources 		CVE-2020-3419 2024-11-21 14:31 2020-11-19 Show GitHub Exploit DB Packet Storm
198980 9.8 CRITICAL
Network 		qualcomm apq8009_firmware
apq8017_firmware
apq8037_firmware
apq8053_firmware
mdm9250_firmware
mdm9607_firmware
mdm9628_firmware
mdm9640_firmware
mdm9650_firmware
msm8108_firmware 		u'When a non standard SIP sigcomp message is received from the network, then there may be chances of using more UDVM cycle or memory overflow' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consu… CWE-129
 Improper Validation of Array Index 		CVE-2020-3639 2024-11-21 14:31 2020-11-12 Show GitHub Exploit DB Packet Storm