Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225911 4.3 警告 Orchard Project - Orchard におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3645 2013-06-17 11:59 2013-06-13 Show GitHub Exploit DB Packet Storm
225912 10 危険 オラクル - Oracle Java SE の Java Runtime Environment および JavaFX における 2D の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-0437 2013-06-14 19:15 2013-02-1 Show GitHub Exploit DB Packet Storm
225913 10 危険 オラクル - Oracle Java SE の JavaFX における脆弱性 CWE-noinfo
情報不足 		CVE-2013-0436 2013-06-14 19:11 2013-02-1 Show GitHub Exploit DB Packet Storm
225914 4.3 警告 ジュニパーネットワークス - Juniper Junos Pulse Secure Access Service および Junos Pulse Access Control Service における SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2013-3970 2013-06-14 16:27 2013-06-12 Show GitHub Exploit DB Packet Storm
225915 6.9 警告 サン・マイクロシステムズ
オラクル		 - Oracle Java SE の Java Runtime Environment におけるクライアントのインストールプロセスの処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-0430 2013-06-14 10:18 2013-02-1 Show GitHub Exploit DB Packet Storm
225916 10 危険 オラクル - Oracle Java SE の JavaFX における脆弱性 CWE-noinfo
情報不足 		CVE-2013-1483 2013-06-13 18:14 2013-02-1 Show GitHub Exploit DB Packet Storm
225917 10 危険 オラクル - Oracle Java SE の JavaFX における脆弱性 CWE-noinfo
情報不足 		CVE-2013-1482 2013-06-13 18:11 2013-02-1 Show GitHub Exploit DB Packet Storm
225918 10 危険 サン・マイクロシステムズ
オラクル		 - Oracle Java SE の Java Runtime Environment および JavaFX における脆弱性 CWE-noinfo
情報不足 		CVE-2013-1479 2013-06-13 17:49 2013-02-1 Show GitHub Exploit DB Packet Storm
225919 4.9 警告 Linux - Linux Kernel の net/tipc/socket.c における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-3235 2013-06-13 17:38 2013-04-7 Show GitHub Exploit DB Packet Storm
225920 4.9 警告 Linux - Linux Kernel の net/iucv/af_iucv.c における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-3229 2013-06-13 17:36 2013-04-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201541 5.5 MEDIUM
Local 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to path traversal (with write access) via crafted syscheck messages written directly… CWE-22
Path Traversal 		CVE-2020-8446 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201542 9.8 CRITICAL
Network 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the OS_CleanMSG function in ossec-analysisd doesn't remove or encode terminal control characters or newlines from processed log messages. In many cases, those charact… CWE-20
 Improper Input Validation  		CVE-2020-8445 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201543 9.8 CRITICAL
Network 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to a use-after-free during processing of ossec-alert formatted msgs (received from a… CWE-416
 Use After Free 		CVE-2020-8444 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201544 9.8 CRITICAL
Network 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to an off-by-one heap-based buffer overflow during the cleaning of crafted syslog ms… CWE-787
CWE-193
 Out-of-bounds Write
 Off-by-one Error 		CVE-2020-8443 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201545 8.8 HIGH
Network 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to a heap-based buffer overflow in the rootcheck decoder component via an authentica… CWE-787
 Out-of-bounds Write 		CVE-2020-8442 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201546 7.2 HIGH
Network 		arris ruckus_zoneflex_r500_firmware Ruckus ZoneFlex R500 104.0.0.0.1347 devices allow an authenticated attacker to execute arbitrary OS commands via the hidden /forms/nslookupHandler form, as demonstrated by the nslookuptarget=|cat${IF… CWE-78
OS Command  		CVE-2020-8438 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201547 9.8 CRITICAL
Network 		denx
opensuse 		u-boot
leap 		In Das U-Boot through 2020.01, a double free has been found in the cmd/gpt.c do_rename_gpt_parts() function. Double freeing may result in a write-what-where condition, allowing an attacker to execute… CWE-787
CWE-415
 Out-of-bounds Write
 Double Free 		CVE-2020-8432 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201548 7.5 HIGH
Network 		iktm bearftp IKTeam BearFTP before 0.2.0 allows remote attackers to achieve denial of service via a large volume of connections to the PASV mode port. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-8416 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201549 8.8 HIGH
Network 		webargs_project webargs flaskparser.py in Webargs 5.x through 5.5.2 doesn't check that the Content-Type header is application/json when receiving JSON input. If the request body is valid JSON, it will accept it even if the … CWE-352
 Origin Validation Error 		CVE-2020-7965 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201550 7.1 HIGH
Local 		linux linux_kernel fs/namei.c in the Linux kernel before 5.5 has a may_create_in_sticky use-after-free, which allows local users to cause a denial of service (OOPS) or possibly obtain sensitive information from kernel … CWE-416
 Use After Free 		CVE-2020-8428 2024-11-21 14:38 2020-01-29 Show GitHub Exploit DB Packet Storm