Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226001	6.8	警告	GroundWork	-	GroundWork Monitor Enterprise におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-3513	2013-05-9 16:33	2013-03-7	Show	GitHub Exploit DB Packet Storm

226002	6.5	警告	GroundWork	-	GroundWork Monitor Enterprise の Cacti コンポーネントにおける構成の設定を読まれるの脆弱性	CWE-20 不適切な入力確認	CVE-2013-3512	2013-05-9 16:33	2013-03-7	Show	GitHub Exploit DB Packet Storm

226003	5.8	警告	GroundWork	-	GroundWork Monitor Enterprise の NeDi コンポーネントにおけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2013-3511	2013-05-9 16:32	2013-03-7	Show	GitHub Exploit DB Packet Storm

226004	6.5	警告	GroundWork	-	GroundWork Monitor Enterprise における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-3510	2013-05-9 16:31	2013-03-7	Show	GitHub Exploit DB Packet Storm

226005	6.5	警告	GroundWork	-	GroundWork Monitor Enterprise の NeDi コンポーネントにおける任意のコマンドを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3509	2013-05-9 16:30	2013-03-7	Show	GitHub Exploit DB Packet Storm

226006	6.5	警告	GroundWork	-	GroundWork Monitor Enterprise の NeDi コンポーネントにおける任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-3508	2013-05-9 16:26	2013-03-7	Show	GitHub Exploit DB Packet Storm

226007	4	警告	GroundWork	-	GroundWork Monitor Enterprise の NeDi コンポーネントにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-3507	2013-05-9 16:24	2013-03-7	Show	GitHub Exploit DB Packet Storm

226008	7.5	危険	GroundWork	-	GroundWork Monitor Enterprise の Performance コンポーネントにおける任意のコマンドを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3506	2013-05-9 16:23	2013-03-7	Show	GitHub Exploit DB Packet Storm

226009	4	警告	GroundWork	-	GroundWork Monitor Enterprise の Nagios-App コンポーネントにおけるアクセス制限を回避される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-3505	2013-05-9 16:22	2013-03-7	Show	GitHub Exploit DB Packet Storm

226010	5.5	警告	GroundWork	-	GroundWork Monitor Enterprise の MONARCH コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-3504	2013-05-9 16:21	2013-03-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201691	9.8	CRITICAL Network	arubanetworks	clearpass_policy_manager	The ClearPass Policy Manager web interface is affected by a vulnerability that leads to authentication bypass. Upon successful bypass an attacker could then execute an exploit that would allow to rem…	CWE-306 Missing Authentication for Critical Function	CVE-2020-7115	2024-11-21 14:36	2020-06-3	Show	GitHub Exploit DB Packet Storm

201692	6.5	MEDIUM Adjacent	zte	f680_firmware	There is an input validation vulnerability in a PON terminal product of ZTE, which supports the creation of WAN connections through WEB management pages. The front-end limits the length of the WAN co…	CWE-20 Improper Input Validation	CVE-2020-6868	2024-11-21 14:36	2020-06-1	Show	GitHub Exploit DB Packet Storm

201693	7.5	HIGH Network	mulesoft	mule_runtime	A Denial of Service vulnerability in MuleSoft Mule CE/EE 3.8.x, 3.9.x, and 4.x released before April 7, 2020, could allow remote attackers to submit data which can lead to resource exhaustion.	NVD-CWE-noinfo	CVE-2020-6937	2024-11-21 14:36	2020-05-30	Show	GitHub Exploit DB Packet Storm

201694	8.8	HIGH Local	bosch	recording_station_firmware	Improper Access Control in the Kiosk Mode functionality of Bosch Recording Station allows a local unauthenticated attacker to escape from the Kiosk Mode and access the underlying operating system.	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2020-6774	2024-11-21 14:36	2020-05-28	Show	GitHub Exploit DB Packet Storm

201695	9.8	CRITICAL Network	mozilla canonical debian opensuse	thunderbird firefox firefox_esr ubuntu_linux debian_linux leap	A buffer overflow could occur when parsing and validating SCTP chunks in WebRTC. This could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox ESR <…	CWE-787 Out-of-bounds Write	CVE-2020-6831	2024-11-21 14:36	2020-05-27	Show	GitHub Exploit DB Packet Storm

201696	7.5	HIGH Network	mozilla	firefox	For native-to-JS bridging, the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token was being used for JS-to-native also, but it isn't need…	CWE-200 Information Exposure	CVE-2020-6830	2024-11-21 14:36	2020-05-27	Show	GitHub Exploit DB Packet Storm

201697	8.1	HIGH Network	hpe	nimbleos	Potential remote access security vulnerabilities have been identified with HPE Nimble Storage systems that could be exploited by an attacker to access and modify sensitive information on the system. …	NVD-CWE-noinfo	CVE-2020-7139	2024-11-21 14:36	2020-05-20	Show	GitHub Exploit DB Packet Storm

201698	8.8	HIGH Network	hpe	nimbleos	Potential remote code execution security vulnerabilities have been identified with HPE Nimble Storage systems that could be exploited by an attacker to gain elevated privileges on the array. The foll…	NVD-CWE-noinfo	CVE-2020-7138	2024-11-21 14:36	2020-05-20	Show	GitHub Exploit DB Packet Storm

201699	6.7	MEDIUM Local	hpe	superdome_flex_server_firmware	A validation issue in HPE Superdome Flex's RMC component may allow local elevation of privilege. Apply HPE Superdome Flex Server version 3.25.46 or later to resolve this issue.	CWE-20 Improper Input Validation	CVE-2020-7137	2024-11-21 14:36	2020-05-20	Show	GitHub Exploit DB Packet Storm

201700	6.1	MEDIUM Network	pcs	dexicon_enterprise	PCS DEXICON 3.4.1 allows XSS via the loginName parameter in login_action.jsp.	CWE-79 Cross-site Scripting	CVE-2020-6956	2024-11-21 14:36	2020-05-19	Show	GitHub Exploit DB Packet Storm