Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 12:16 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226851 6.8 警告 Ruby on Rails project - Ruby on Rails におけるクロスサイトリクエストフォージェリ (CSRF) 保護を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7248 2012-12-20 19:10 2008-11-18 Show GitHub Exploit DB Packet Storm
226852 5.8 警告 silcnet - SILC Toolkit の silcd におけるスタック領域を上書きされる脆弱性 CWE-134
書式文字列の問題 		CVE-2008-7160 2012-12-20 19:10 2009-09-10 Show GitHub Exploit DB Packet Storm
226853 5.8 警告 silcnet - SILC Toolkit の lib/silcasn1/silcasn1_encode.c におけるスタック領域を上書きされる脆弱性 CWE-134
書式文字列の問題 		CVE-2008-7159 2012-12-20 19:10 2009-09-10 Show GitHub Exploit DB Packet Storm
226854 7.5 危険 phprisk - NetRisk における任意のユーザのパスワードを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7155 2012-12-20 19:10 2009-09-2 Show GitHub Exploit DB Packet Storm
226855 6.8 警告 Simon Rycroft - SID における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-7152 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
226856 10 危険 synfig - Synfig Animation Studio における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2008-7148 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
226857 10 危険 RARLAB - RARLAB WinRAR における脆弱性 CWE-noinfo
情報不足 		CVE-2008-7144 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
226858 6.8 警告 phpBB - phpBB におけるセッションをハイジャックされる脆弱性 CWE-200
情報漏えい 		CVE-2008-7143 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
226859 4.3 警告 redgalaxy - Chris LaPointe RedGalaxy Download Center のデフォルト URI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7134 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
226860 5 警告 xyssl - XySSL におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-7129 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210401 9.8 CRITICAL
Network 		intel endpoint_management_assistant Path traversal in the Intel(R) EMA before version 1.3.3 may allow an unauthenticated user to potentially enable escalation of privilege via network access. CWE-22
Path Traversal 		CVE-2020-12315 2024-11-21 13:59 2020-11-13 Show GitHub Exploit DB Packet Storm
210402 4.4 MEDIUM
Local 		intel
netapp 		active_management_technology_firmware
cloud_backup 		Out-of-bounds read in subsystem in Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable information disclosure via local acc… CWE-125
Out-of-bounds Read 		CVE-2020-12356 2024-11-21 13:59 2020-11-13 Show GitHub Exploit DB Packet Storm
210403 6.8 MEDIUM
Physics 		intel trusted_execution_engine Authentication bypass by capture-replay in RPMB protocol message authentication subsystem in Intel(R) TXE versions before 4.0.30 may allow an unauthenticated user to potentially enable escalation of … CWE-294
Authentication Bypass by Capture-replay  		CVE-2020-12355 2024-11-21 13:59 2020-11-13 Show GitHub Exploit DB Packet Storm
210404 7.8 HIGH
Local 		intel active_management_technology_software_development_kit Incorrect default permissions in Windows(R) installer in Intel(R) AMT SDK versions before 14.0.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-276
Incorrect Default Permissions  		CVE-2020-12354 2024-11-21 13:59 2020-11-13 Show GitHub Exploit DB Packet Storm
210405 6.5 MEDIUM
Adjacent 		intel dual_band_wireless-ac_3168_firmware
dual_band_wireless-ac_8260_firmware
dual_band_wireless-ac_8265_firmware
wi-fi_6_ax200_firmware
wi-fi_6_ax201_firmware
wireless-ac_9260_firmware
w… 		Improper input validation in some Intel(R) Wireless Bluetooth(R) products before version 21.110 may allow an unauthenticated user to potentially enable denial of service via adjacent access. CWE-20
 Improper Input Validation  		CVE-2020-12322 2024-11-21 13:59 2020-11-13 Show GitHub Exploit DB Packet Storm
210406 8.8 HIGH
Adjacent 		intel dual_band_wireless-ac_3168_firmware
dual_band_wireless-ac_8260_firmware
dual_band_wireless-ac_8265_firmware
wi-fi_6_ax200_firmware
wi-fi_6_ax201_firmware
wireless-ac_9260_firmware
w… 		Improper buffer restriction in some Intel(R) Wireless Bluetooth(R) products before version 21.110 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. NVD-CWE-noinfo
CVE-2020-12321 2024-11-21 13:59 2020-11-13 Show GitHub Exploit DB Packet Storm
210407 6.5 MEDIUM
Adjacent 		intel proset\/wireless_wifi Insufficient control flow management in some Intel(R) PROSet/Wireless WiFi products before version 21.110 may allow an unauthenticated user to potentially enable denial of service via adjacent access. NVD-CWE-Other
CVE-2020-12319 2024-11-21 13:59 2020-11-13 Show GitHub Exploit DB Packet Storm
210408 7.8 HIGH
Local 		intel proset\/wireless_wifi Protection mechanism failure in some Intel(R) PROSet/Wireless WiFi products before version 21.110 may allow an authenticated user to potentially enable escalation of privilege via local access. NVD-CWE-noinfo
CVE-2020-12318 2024-11-21 13:59 2020-11-13 Show GitHub Exploit DB Packet Storm
210409 6.5 MEDIUM
Adjacent 		intel proset\/wireless_wifi Improper buffer restriction in some Intel(R) PROSet/Wireless WiFi products before version 21.110 may allow an unauthenticated user to potentially enable denial of service via adjacent access. NVD-CWE-noinfo
CVE-2020-12317 2024-11-21 13:59 2020-11-13 Show GitHub Exploit DB Packet Storm
210410 6.5 MEDIUM
Adjacent 		intel proset\/wireless_wifi Improper input validation in some Intel(R) PROSet/Wireless WiFi products before version 21.110 may allow an unauthenticated user to potentially enable denial of service via adjacent access. CWE-20
 Improper Input Validation  		CVE-2020-12314 2024-11-21 13:59 2020-11-13 Show GitHub Exploit DB Packet Storm