Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225891	6.8	警告	bestwebsharing	-	Groovy Media Player におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-2760	2013-04-17 14:41	2013-04-16	Show	GitHub Exploit DB Packet Storm

225892	4.3	警告	IBM	-	IBM XIV Storage System Gen3 におけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2012-4829	2013-04-17 14:40	2013-04-10	Show	GitHub Exploit DB Packet Storm

225893	4.9	警告	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルにおける権限昇格の脆弱性	CWE-362 競合状態	CVE-2013-1294	2013-04-16 17:24	2013-04-9	Show	GitHub Exploit DB Packet Storm

225894	4.3	警告	マイクロソフト	-	複数の Microsoft 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1289	2013-04-16 17:04	2013-04-9	Show	GitHub Exploit DB Packet Storm

225895	7.2	危険	マイクロソフト	-	Microsoft Windows Defender における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0078	2013-04-16 17:02	2013-04-9	Show	GitHub Exploit DB Packet Storm

225896	7.2	危険	マイクロソフト	-	複数の Microsoft Windows 製品の CSRSS における権限昇格の脆弱性	CWE-119 バッファエラー	CVE-2013-1295	2013-04-16 17:00	2013-04-9	Show	GitHub Exploit DB Packet Storm

225897	5	警告	マイクロソフト	-	複数の Microsoft Active Directory のコンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1282	2013-04-16 16:57	2013-04-9	Show	GitHub Exploit DB Packet Storm

225898	6.2	警告	Motorola Solutions, Inc クアルコム	-	Qualcomm MSM8960 を使用する複数の Motorola 製 Android の TrustZone カーネルにおけるブートローダのロックを解除される脆弱性	CWE-16 環境設定	CVE-2013-3051	2013-04-16 16:55	2013-04-13	Show	GitHub Exploit DB Packet Storm

225899	4.9	警告	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルにおける権限昇格の脆弱性	CWE-362 競合状態	CVE-2013-1284	2013-04-16 16:53	2013-04-9	Show	GitHub Exploit DB Packet Storm

225900	3.5	注意	マイクロソフト	-	Microsoft SharePoint Server 2013 におけるリスト項目の読み取り制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1290	2013-04-16 16:52	2013-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213451	9.8	CRITICAL Network	rittal	cmciii-pu-9333e0fb_firmware pdu-3c002dec_firmware cmc_iii_pu_7030.000_firmware lcp-cw_firmware iot_interface_3124.300	An issue was discovered on Rittal PDU-3C002DEC through 5.17.10 and CMCIII-PU-9333E0FB through 3.17.10 devices. There is a Backdoor root account.	CWE-798 Use of Hard-coded Credentials	CVE-2020-11951	2024-11-21 13:58	2020-07-14	Show	GitHub Exploit DB Packet Storm

213452	9.0	CRITICAL Network	pandorafms	pandora_fms	Pandora FMS 7.0 NG <= 746 suffers from Multiple XSS vulnerabilities in different browser views. A network administrator scanning a SNMP device can trigger a Cross Site Scripting (XSS), which can run …	CWE-79 Cross-site Scripting	CVE-2020-11749	2024-11-21 13:58	2020-07-14	Show	GitHub Exploit DB Packet Storm

213453	9.8	CRITICAL Network	microfocus	identity_manager	Elevation of privilege and/or unauthorized access vulnerability in Micro Focus Identity Manager. Affecting versions prior to 4.7.3 and 4.8.1 hot fix 1. The vulnerability could allow information expos…	NVD-CWE-noinfo	CVE-2020-11849	2024-11-21 13:58	2020-07-8	Show	GitHub Exploit DB Packet Storm

213454	6.1	MEDIUM Network	telefonica	o2_business	The O2 Business application 1.2.0 for Android exposes the canvasm.myo2.SplashActivity activity to other applications. The purpose of this activity is to handle deeplinks that can be delivered either …	CWE-601 Open Redirect	CVE-2020-11882	2024-11-21 13:58	2020-07-8	Show	GitHub Exploit DB Packet Storm

213455	8.1	HIGH Network	python fedoraproject canonical	pillow fedora ubuntu_linux	In libImaging/SgiRleDecode.c in Pillow through 7.0.0, a number of out-of-bounds reads exist in the parsing of SGI image files, a different issue than CVE-2020-5311.	CWE-125 Out-of-bounds Read	CVE-2020-11538	2024-11-21 13:58	2020-06-26	Show	GitHub Exploit DB Packet Storm

213456	5.3	MEDIUM Network	wolfssl	wolfssl	The private-key operations in ecc.c in wolfSSL before 4.4.0 do not use a constant-time modular inverse when mapping to affine coordinates, aka a "projective coordinates leak."	CWE-203 Information Exposure Through Discrepancy	CVE-2020-11735	2024-11-21 13:58	2020-06-25	Show	GitHub Exploit DB Packet Storm

213457	7.5	HIGH Network	mi	xiaomi_r3600_firmware	Xiaomi router R3600 ROM before 1.0.50 is affected by a sensitive information leakage caused by an insecure interface get_config_result without authentication	CWE-306 Missing Authentication for Critical Function	CVE-2020-11961	2024-11-21 13:58	2020-06-25	Show	GitHub Exploit DB Packet Storm

213458	9.8	CRITICAL Network	mi	xiaomi_r3600_firmware	Xiaomi router R3600 ROM before 1.0.50 is affected by a vulnerability when checking backup file in c_upload interface let attacker able to extract malicious file under any location in /tmp, lead to po…	NVD-CWE-noinfo	CVE-2020-11960	2024-11-21 13:58	2020-06-25	Show	GitHub Exploit DB Packet Storm

213459	7.5	HIGH Network	mi	xiaomi_r3600_firmware	An unsafe configuration of nginx lead to information leak in Xiaomi router R3600 ROM before 1.0.50.	NVD-CWE-noinfo	CVE-2020-11959	2024-11-21 13:58	2020-06-25	Show	GitHub Exploit DB Packet Storm

213460	7.8	HIGH Local	winmagic	securedoc	The SDDisk2k.sys driver of WinMagic SecureDoc v8.5 and earlier allows local users to write to arbitrary kernel memory addresses because the IOCTL dispatcher lacks pointer validation. Exploiting this …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-11520	2024-11-21 13:58	2020-06-23	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed