Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226111 10 危険 シスコシステムズ - Cisco UCS の Manager コンポーネントの IPMI 機能におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-1183 2013-04-26 16:51 2013-04-24 Show GitHub Exploit DB Packet Storm
226112 7.8 危険 シスコシステムズ - 複数の Cisco 製品上で稼働する Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1181 2013-04-26 16:49 2013-04-24 Show GitHub Exploit DB Packet Storm
226113 9 危険 シスコシステムズ - Nexus 7000 および MDS 9000 デバイス上で稼働する Cisco NX-OS におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-1180 2013-04-26 16:47 2013-04-24 Show GitHub Exploit DB Packet Storm
226114 9 危険 シスコシステムズ - Nexus 7000 および MDS 9000 デバイス上で稼働する Cisco NX-OS におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-1179 2013-04-26 16:46 2013-04-24 Show GitHub Exploit DB Packet Storm
226115 8.3 危険 シスコシステムズ - 複数の Cisco 製品上で稼働する Cisco NX-OS の CDP の実装におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-1178 2013-04-26 16:45 2013-04-24 Show GitHub Exploit DB Packet Storm
226116 9.3 危険 Lexmark - Lexmark Markvision Enterprise における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3055 2013-04-26 16:16 2013-04-22 Show GitHub Exploit DB Packet Storm
226117 10 危険 Intergraph Corporation - Internet Explorer、Firefox および Chrome 用の ERDAS APOLLO ECWP プラグインにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-0728 2013-04-26 16:15 2013-04-23 Show GitHub Exploit DB Packet Storm
226118 4.7 警告 Linux - Linux Kernel の fs/namespace.c におけるファイルシステムの read-only プロパティを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1957 2013-04-26 16:12 2013-04-5 Show GitHub Exploit DB Packet Storm
226119 3.5 注意 OpenStack
Amazon.com, Inc.		 - 複数の OpenStack 製品の v1 API における認証情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-1840 2013-04-26 15:15 2013-03-15 Show GitHub Exploit DB Packet Storm
226120 4.3 警告 ヤフー株式会社 - Yahoo!ブラウザーにおけるアドレスバー偽装の脆弱性 CWE-Other
その他 		CVE-2013-2307 2013-04-26 14:00 2013-04-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209571 7.5 HIGH
Network 		szuray
jtechdigital
provideoinstruments 		iptv\/h.264_video_encoder_firmware
iptv\/h.265_video_encoder_firmware
h.264_iptv_encoder_1080p\@60hz_firmware
vecaster-hd-h264_firmware
vecaster-hd-hevc_firmware
vecaster-4k-hevc_firmw… 		An issue was discovered in the box application on HiSilicon based IPTV/H.264/H.265 video encoders. When the administrator configures a secret URL for RTSP streaming, the stream is still available via… NVD-CWE-noinfo
CVE-2020-24216 2024-11-21 14:14 2020-10-6 Show GitHub Exploit DB Packet Storm
209572 6.1 MEDIUM
Network 		car_rental_management_system_project car_rental_management_system A Persistent Cross-Site Scripting (XSS) vulnerability in message_admin.php in Projectworlds Car Rental Management System v1.0 allows unauthenticated remote attackers to harvest an admin login session… CWE-79
Cross-site Scripting 		CVE-2020-23832 2024-11-21 14:14 2020-10-6 Show GitHub Exploit DB Packet Storm
209573 9.8 CRITICAL
Network 		szuray
jtechdigital
provideoinstruments 		iptv\/h.264_video_encoder_firmware
iptv\/h.265_video_encoder_firmware
h.264_iptv_encoder_1080p\@60hz_firmware
vecaster-hd-h264_firmware
vecaster-hd-hevc_firmware
vecaster-4k-hevc_firmw… 		An issue was discovered in the box application on HiSilicon based IPTV/H.264/H.265 video encoders. Attackers can use hard-coded credentials in HTTP requests to perform any administrative task on the … CWE-798
 Use of Hard-coded Credentials 		CVE-2020-24215 2024-11-21 14:14 2020-10-6 Show GitHub Exploit DB Packet Storm
209574 9.8 CRITICAL
Network 		szuray
jtechdigital
provideoinstruments 		iptv\/h.264_video_encoder_firmware
iptv\/h.265_video_encoder_firmware
h.264_iptv_encoder_1080p\@60hz_firmware
vecaster-hd-h264_firmware
vecaster-hd-hevc_firmware
vecaster-4k-hevc_firmw… 		An issue was discovered in the box application on HiSilicon based IPTV/H.264/H.265 video encoders. Attackers can send a crafted unauthenticated RTSP request to cause a buffer overflow and application… NVD-CWE-Other
CVE-2020-24214 2024-11-21 14:14 2020-10-6 Show GitHub Exploit DB Packet Storm
209575 9.8 CRITICAL
Network 		jumpmind symmetricds Symmetric DS <3.12.0 uses mx4j to provide access to JMX over HTTP. mx4j, by default, has no auth and is available on all interfaces. An attacker can interact with JMX: get system info, and invoke MBe… NVD-CWE-noinfo
CVE-2020-24231 2024-11-21 14:14 2020-10-6 Show GitHub Exploit DB Packet Storm
209576 7.2 HIGH
Network 		zohocorp manageengine_desktop_central An issue was discovered in the client side of Zoho ManageEngine Desktop Central 10.0.0.SP-534. An attacker-controlled server can trigger an integer overflow in InternetSendRequestEx and InternetSendR… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2020-24397 2024-11-21 14:14 2020-10-3 Show GitHub Exploit DB Packet Storm
209577 7.8 HIGH
Local 		cloudflare cloudflared `cloudflared` versions prior to 2020.8.1 contain a local privilege escalation vulnerability on Windows systems. When run on a Windows system, `cloudflared` searches for configuration files which coul… CWE-427
 Uncontrolled Search Path Element 		CVE-2020-24356 2024-11-21 14:14 2020-10-3 Show GitHub Exploit DB Packet Storm
209578 7.8 HIGH
Local 		trendmicro apex_one A vulnerability in Trend Micro Apex One may allow a local attacker to manipulate the process of the security agent unload option (if configured), which then could be manipulated to gain a privilege e… CWE-287
Improper Authentication 		CVE-2020-24563 2024-11-21 14:14 2020-09-29 Show GitHub Exploit DB Packet Storm
209579 7.8 HIGH
Local 		trendmicro officescan A vulnerability in Trend Micro OfficeScan XG SP1 on Microsoft Windows may allow an attacker to create a hard link to any file on the system, which then could be manipulated to gain a privilege escala… CWE-59
Link Following 		CVE-2020-24562 2024-11-21 14:14 2020-09-29 Show GitHub Exploit DB Packet Storm
209580 8.8 HIGH
Network 		multi_user_project multi_user A Cross-Site Request Forgery (CSRF) vulnerability in the Multi User plugin 1.8.2 for GetSimple CMS allows remote attackers to add admin (or other) users after an authenticated admin visits a third-pa… CWE-352
 Origin Validation Error 		CVE-2020-23837 2024-11-21 14:14 2020-09-25 Show GitHub Exploit DB Packet Storm