Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226581 5.8 警告 Apache Software Foundation - Apache CXF の URIMappingInterceptor における SOAP サービスへのアクセス権を取得される脆弱性 - CVE-2012-5633 2013-03-25 16:00 2012-11-14 Show GitHub Exploit DB Packet Storm
226582 7.5 危険 tg0 - Ruby 用 Curl Gem における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-2617 2013-03-25 14:21 2013-03-12 Show GitHub Exploit DB Packet Storm
226583 7.5 危険 Hampton Catlin - Ruby 用 MiniMagick Gem における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-2616 2013-03-25 14:20 2013-03-12 Show GitHub Exploit DB Packet Storm
226584 7.5 危険 Daniel Choi - Ruby 用 fastreader Gem における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-2615 2013-03-25 14:20 2013-03-12 Show GitHub Exploit DB Packet Storm
226585 7.5 危険 Stefaan Colman - Ruby 用 command_wrap Gem における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-1875 2013-03-25 14:19 2013-03-18 Show GitHub Exploit DB Packet Storm
226586 6.2 警告 Schweitzer Engineering Laboratories - Schweitzer Engineering Laboratories の AcSELerator QuickSet における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0665 2013-03-25 14:12 2013-03-20 Show GitHub Exploit DB Packet Storm
226587 4.3 警告 シーメンス - Siemens WinCC の HMI Web アプリケーションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0667 2013-03-25 11:35 2013-03-15 Show GitHub Exploit DB Packet Storm
226588 9.3 危険 リアルネットワークス - RealNetworks RealPlayer および RealPlayer SP におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-1750 2013-03-22 16:20 2013-03-15 Show GitHub Exploit DB Packet Storm
226589 2.1 注意 Mathijs Koenraadt - Drupal 用 Search API Sorts モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0227 2013-03-22 16:16 2013-01-23 Show GitHub Exploit DB Packet Storm
226590 6 警告 Ivan Zugec - Drupal 用 Keyboard Shortcut Utility モジュールにおけるノードを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0226 2013-03-22 16:16 2013-01-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
202271 7.5 HIGH
Network 		mozilla firefox For native-to-JS bridging, the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token was being used for JS-to-native also, but it isn't need… CWE-200
Information Exposure 		CVE-2020-6830 2024-11-21 14:36 2020-05-27 Show GitHub Exploit DB Packet Storm
202272 8.1 HIGH
Network 		hpe nimbleos Potential remote access security vulnerabilities have been identified with HPE Nimble Storage systems that could be exploited by an attacker to access and modify sensitive information on the system. … NVD-CWE-noinfo
CVE-2020-7139 2024-11-21 14:36 2020-05-20 Show GitHub Exploit DB Packet Storm
202273 8.8 HIGH
Network 		hpe nimbleos Potential remote code execution security vulnerabilities have been identified with HPE Nimble Storage systems that could be exploited by an attacker to gain elevated privileges on the array. The foll… NVD-CWE-noinfo
CVE-2020-7138 2024-11-21 14:36 2020-05-20 Show GitHub Exploit DB Packet Storm
202274 6.7 MEDIUM
Local 		hpe superdome_flex_server_firmware A validation issue in HPE Superdome Flex's RMC component may allow local elevation of privilege. Apply HPE Superdome Flex Server version 3.25.46 or later to resolve this issue. CWE-20
 Improper Input Validation  		CVE-2020-7137 2024-11-21 14:36 2020-05-20 Show GitHub Exploit DB Packet Storm
202275 6.1 MEDIUM
Network 		pcs dexicon_enterprise PCS DEXICON 3.4.1 allows XSS via the loginName parameter in login_action.jsp. CWE-79
Cross-site Scripting 		CVE-2020-6956 2024-11-21 14:36 2020-05-19 Show GitHub Exploit DB Packet Storm
202276 6.5 MEDIUM
Adjacent 		google
apple 		android
iphone_os
ipados
mac_os_x 		Some Broadcom chips mishandle Bluetooth random-number generation because a low-entropy Pseudo Random Number Generator (PRNG) is used in situations where a Hardware Random Number Generator (HRNG) shou… NVD-CWE-noinfo
CVE-2020-6616 2024-11-21 14:36 2020-05-9 Show GitHub Exploit DB Packet Storm
202277 7.8 HIGH
Local 		mcafee active_response Privilege Escalation vulnerability in McAfee Active Response (MAR) for Linux prior to 2.4.3 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not be… CWE-269
 Improper Privilege Management 		CVE-2020-7290 2024-11-21 14:36 2020-05-8 Show GitHub Exploit DB Packet Storm
202278 7.8 HIGH
Local 		mcafee active_response Privilege Escalation vulnerability in McAfee Active Response (MAR) for Windows prior to 2.4.3 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not … CWE-269
 Improper Privilege Management 		CVE-2020-7289 2024-11-21 14:36 2020-05-8 Show GitHub Exploit DB Packet Storm
202279 7.8 HIGH
Local 		mcafee endpoint_detection_and_response Privilege Escalation vulnerability in McAfee Exploit Detection and Response (EDR) for Mac prior to 3.1.0 Hotfix 1 allows a malicious script or program to perform functions that the local executing us… CWE-269
 Improper Privilege Management 		CVE-2020-7288 2024-11-21 14:36 2020-05-8 Show GitHub Exploit DB Packet Storm
202280 7.8 HIGH
Local 		mcafee endpoint_detection_and_response Privilege Escalation vulnerability in McAfee Exploit Detection and Response (EDR) for Linux prior to 3.1.0 Hotfix 1 allows a malicious script or program to perform functions that the local executing … CWE-269
 Improper Privilege Management 		CVE-2020-7287 2024-11-21 14:36 2020-05-8 Show GitHub Exploit DB Packet Storm