Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226151	4.6	警告	Linux	-	Linux Kernel の block/scsi_ioctl.c におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4542	2013-03-28 18:33	2013-02-28	Show	GitHub Exploit DB Packet Storm

226152	1.9	注意	Linux	-	Linux Kernel の fs/ext4/extents.c における重要な情報を取得される脆弱性	CWE-362 競合状態	CVE-2012-4508	2013-03-28 18:28	2012-10-28	Show	GitHub Exploit DB Packet Storm

226153	2.6	注意	アップル	-	Apple iOS および Apple Safari で使用される WebKit におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0962	2013-03-28 16:24	2013-01-29	Show	GitHub Exploit DB Packet Storm

226154	4.3	警告	アップル Google	-	複数の製品で使用される WebKit におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2889	2013-03-28 15:54	2012-09-25	Show	GitHub Exploit DB Packet Storm

226155	6.8	警告	シマンテック	-	Symantec Enterprise Vault for File System Archiving における権限を取得される脆弱性	CWE-Other その他	CVE-2013-1609	2013-03-28 15:32	2013-03-21	Show	GitHub Exploit DB Packet Storm

226156	6	警告	IBM	-	IBM Domino の webadmin.nsf におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-0489	2013-03-28 15:26	2013-03-21	Show	GitHub Exploit DB Packet Storm

226157	4.3	警告	IBM	-	IBM Domino の webadmin.nsf におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0488	2013-03-28 15:25	2013-03-21	Show	GitHub Exploit DB Packet Storm

226158	8.5	危険	IBM	-	IBM Domino の Java コンソールにおける一時的な資格をハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2013-0487	2013-03-28 15:23	2013-03-21	Show	GitHub Exploit DB Packet Storm

226159	1.5	注意	IBM	-	IBM iNotes におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0525	2013-03-28 15:17	2013-03-21	Show	GitHub Exploit DB Packet Storm

226160	4.3	警告	IBM	-	IBM iNotes におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5943	2013-03-28 14:27	2013-03-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209881	6.8	MEDIUM Physics	juniper	junos	On Juniper Networks EX and QFX Series, an authentication bypass vulnerability may allow a user connected to the console port to login as root without any password. This issue might only occur in cert…	CWE-287 Improper Authentication	CVE-2020-1618	2024-11-21 14:11	2020-04-9	Show	GitHub Exploit DB Packet Storm

209882	7.5	HIGH Network	juniper	junos	This issue occurs on Juniper Networks Junos OS devices which do not support Advanced Forwarding Interface (AFI) / Advanced Forwarding Toolkit (AFT). Devices using AFI and AFT are not exploitable to t…	CWE-665 Improper Initialization	CVE-2020-1617	2024-11-21 14:11	2020-04-9	Show	GitHub Exploit DB Packet Storm

209883	5.3	MEDIUM Network	juniper	virtual_advanced_threat_protection advanced_threat_protection	Due to insufficient server-side login attempt limit enforcement, a vulnerability in the SSH login service of Juniper Networks Juniper Advanced Threat Prevention (JATP) Series and Virtual JATP (vJATP)…	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2020-1616	2024-11-21 14:11	2020-04-9	Show	GitHub Exploit DB Packet Storm

209884	9.8	CRITICAL Network	paloaltonetworks	pan-os	A format string vulnerability in the Varrcvr daemon of PAN-OS on PA-7000 Series devices with a Log Forwarding Card (LFC) allows remote attackers to crash the daemon creating a denial of service condi…	CWE-134 Use of Externally-Controlled Format String	CVE-2020-1992	2024-11-21 14:11	2020-04-9	Show	GitHub Exploit DB Packet Storm

209885	4.4	MEDIUM Local	paloaltonetworks	pan-os vm-series	TechSupport files generated on Palo Alto Networks VM Series firewalls for Microsoft Azure platform configured with high availability (HA) inadvertently collect Azure dashboard service account credent…	CWE-522 Insufficiently Protected Credentials	CVE-2020-1978	2024-11-21 14:11	2020-04-9	Show	GitHub Exploit DB Packet Storm

209886	5.4	MEDIUM Network	redhat quarkus	keycloak quarkus	A vulnerability was found in all versions of Keycloak where, the pages on the Admin Console area of the application are completely missing general HTTP security headers in HTTP-responses. This does n…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2020-1728	2024-11-21 14:11	2020-04-6	Show	GitHub Exploit DB Packet Storm

209887	6.1	MEDIUM Network	apache fedoraproject debian canonical opensuse netapp broadcom oracle	http_server fedora debian_linux ubuntu_linux leap oncommand_unified_manager_core_package brocade_fabric_operating_system sd-wan_aware instantis_enterprisetrack communicatio…	In Apache HTTP Server 2.4.0 to 2.4.41, redirects configured with mod_rewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an an unexpected URL…	CWE-601 Open Redirect	CVE-2020-1927	2024-11-21 14:11	2020-04-2	Show	GitHub Exploit DB Packet Storm

209888	6.5	MEDIUM Network	apache	druid	When LDAP authentication is enabled in Apache Druid 0.17.0, callers of Druid APIs with a valid set of LDAP credentials can bypass the credentialsValidator.userSearch filter barrier that determines if…	CWE-74 Injection	CVE-2020-1958	2024-11-21 14:11	2020-04-2	Show	GitHub Exploit DB Packet Storm

209889	5.3	MEDIUM Adjacent	apache oracle netapp	cxf peoplesoft_enterprise_peopletools communications_diameter_signaling_router communications_session_report_manager communications_element_manager enterprise_manager_base_platform …	Apache CXF has the ability to integrate with JMX by registering an InstrumentationManager extension with the CXF bus. If the ‘createMBServerConnectorFactory‘ property of the default InstrumentationMa…	NVD-CWE-noinfo	CVE-2020-1954	2024-11-21 14:11	2020-04-2	Show	GitHub Exploit DB Packet Storm

209890	5.3	MEDIUM Network	apache fedoraproject debian canonical opensuse oracle	http_server fedora debian_linux ubuntu_linux leap instantis_enterprisetrack communications_element_manager enterprise_manager_ops_center communications_session_report_manager<…	In Apache HTTP Server 2.4.0 to 2.4.41, mod_proxy_ftp may use uninitialized memory when proxying to a malicious FTP server.	CWE-908 Use of Uninitialized Resource	CVE-2020-1934	2024-11-21 14:11	2020-04-2	Show	GitHub Exploit DB Packet Storm