Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225671	4	警告	GroundWork	-	GroundWork Monitor Enterprise の Nagios-App コンポーネントにおけるアクセス制限を回避される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-3505	2013-05-9 16:22	2013-03-7	Show	GitHub Exploit DB Packet Storm

225672	5.5	警告	GroundWork	-	GroundWork Monitor Enterprise の MONARCH コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-3504	2013-05-9 16:21	2013-03-7	Show	GitHub Exploit DB Packet Storm

225673	3.5	注意	GroundWork	-	GroundWork Monitor Enterprise の MONARCH コンポーネントにおける任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3503	2013-05-9 16:18	2013-03-7	Show	GitHub Exploit DB Packet Storm

225674	6.5	警告	GroundWork	-	GroundWork Monitor Enterprise における任意のコマンドを実行される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-3502	2013-05-9 16:17	2013-03-7	Show	GitHub Exploit DB Packet Storm

225675	4.3	警告	GroundWork	-	GroundWork Monitor Enterprise におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3501	2013-05-9 16:16	2013-03-7	Show	GitHub Exploit DB Packet Storm

225676	7.5	危険	GroundWork	-	GroundWork Monitor Enterprise におけるファイルシステムの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3500	2013-05-9 16:15	2013-03-7	Show	GitHub Exploit DB Packet Storm

225677	7.5	危険	GroundWork	-	GroundWork Monitor Enterprise における管理者権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3499	2013-05-9 16:07	2013-03-7	Show	GitHub Exploit DB Packet Storm

225678	6.3	警告	シスコシステムズ	-	Cisco ISR G2 ルータ上で稼働する Cisco IOS の ISM モジュールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-287 不適切な認証	CVE-2013-1241	2013-05-9 15:43	2013-05-7	Show	GitHub Exploit DB Packet Storm

225679	1.9	注意	Linux	-	Linux kernel の net/core/scm.c におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1958	2013-05-9 11:18	2013-04-5	Show	GitHub Exploit DB Packet Storm

225680	2.1	注意	Linux	-	Linux Kernel の kernel/user_namespace.c におけるファイルシステムの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1956	2013-05-9 11:11	2013-04-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212551	8.8	HIGH Network	apache	superset	While investigating a bug report on Apache Superset, it was determined that an authenticated user could craft requests via a number of templated text fields in the product that would allow arbitrary …	NVD-CWE-noinfo	CVE-2020-13948	2024-11-21 14:02	2020-09-17	Show	GitHub Exploit DB Packet Storm

212552	8.8	HIGH Network	istio-operator_project	istio-operator	An incorrect access control flaw was found in the operator, openshift-service-mesh/istio-rhel8-operator all versions through 1.1.3. This flaw allows an attacker with a basic level of access to the cl…	CWE-862 Missing Authorization	CVE-2020-14306	2024-11-21 14:02	2020-09-17	Show	GitHub Exploit DB Packet Storm

212553	6.1	MEDIUM Network	apache	atlas	Apache Atlas before 2.1.0 contain a XSS vulnerability. While saving search or rendering elements values are not sanitized correctly and because of that it triggers the XSS vulnerability.	CWE-79 Cross-site Scripting	CVE-2020-13928	2024-11-21 14:02	2020-09-17	Show	GitHub Exploit DB Packet Storm

212554	9.8	CRITICAL Network	daemonology	bsdiff	A memory corruption vulnerability is present in bspatch as shipped in Colin Percival’s bsdiff tools version 4.3. Insufficient checks when handling external inputs allows an attacker to bypass the san…	CWE-787 Out-of-bounds Write	CVE-2020-14315	2024-11-21 14:02	2020-09-16	Show	GitHub Exploit DB Packet Storm

212555	5.5	MEDIUM Local	linux debian canonical starwindsoftware	linux_kernel debian_linux ubuntu_linux starwind_virtual_san	A memory out-of-bounds read flaw was found in the Linux kernel before 5.9-rc2 with the ext3/ext4 file system, in the way it accesses a directory with broken indexing. This flaw allows a local user to…	-	CVE-2020-14314	2024-11-21 14:02	2020-09-16	Show	GitHub Exploit DB Packet Storm

212556	4.4	MEDIUM Local	linux	linux_kernel	A memory disclosure flaw was found in the Linux kernel's ethernet drivers, in the way it read data from the EEPROM of the device. This flaw allows a local user to read uninitialized values from the k…	-	CVE-2020-14304	2024-11-21 14:02	2020-09-16	Show	GitHub Exploit DB Packet Storm

212557	9.8	CRITICAL Network	mi	r3600_firmware	In Xiaomi router R3600 ROM version<1.0.66, filters in the set_WAN6 interface can be bypassed, causing remote code execution. The router administrator can gain root access from this vulnerability.	CWE-77 Command Injection	CVE-2020-14100	2024-11-21 14:02	2020-09-11	Show	GitHub Exploit DB Packet Storm

212558	9.8	CRITICAL Network	mi	xiaomi_ai_speaker_firmware	Memory overflow in Xiaomi AI speaker Rom version <1.59.6 can happen when the speaker verifying a malicious firmware during OTA process.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-14096	2024-11-21 14:02	2020-09-11	Show	GitHub Exploit DB Packet Storm

212559	7.5	HIGH Network	bitcoin	bitcoin_core	Bitcoin Core 0.20.0 allows remote denial of service.	NVD-CWE-noinfo	CVE-2020-14198	2024-11-21 14:02	2020-09-11	Show	GitHub Exploit DB Packet Storm

212560	5.9	MEDIUM Network	apache oracle debian	activemq flexcube_private_banking communications_diameter_signaling_router debian_linux	Apache ActiveMQ uses LocateRegistry.createRegistry() to create the JMX RMI registry and binds the server to the "jmxrmi" entry. It is possible to connect to the registry without authentication and ca…	CWE-306 Missing Authentication for Critical Function	CVE-2020-13920	2024-11-21 14:02	2020-09-11	Show	GitHub Exploit DB Packet Storm