Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227331	4.3	警告	DELL EMC (旧 EMC Corporation)	-	RSA Archer SmartSuite Framework および RSA Archer eGRC におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1064	2013-02-7 16:26	2013-02-6	Show	GitHub Exploit DB Packet Storm

227332	4.9	警告	レッドハット	-	複数の JBoss Enterprise 製品におけるロールによる制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5478	2013-02-7 16:25	2013-01-24	Show	GitHub Exploit DB Packet Storm

227333	5.8	警告	レッドハット	-	複数の JBoss Enterprise 製品における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3370	2013-02-7 16:24	2013-01-24	Show	GitHub Exploit DB Packet Storm

227334	4.3	警告	レッドハット	-	複数の JBoss Enterprise 製品における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3369	2013-02-7 16:23	2013-01-24	Show	GitHub Exploit DB Packet Storm

227335	6.8	警告	レッドハット	-	複数の JBoss Enterprise 製品における MBean メソッドを呼び出される脆弱性	CWE-287 不適切な認証	CVE-2012-0874	2013-02-7 16:23	2013-01-24	Show	GitHub Exploit DB Packet Storm

227336	5	警告	レッドハット	-	複数の JBoss Enterprise 製品における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-0034	2013-02-7 16:22	2012-02-10	Show	GitHub Exploit DB Packet Storm

227337	4.3	警告	レッドハット	-	複数の JBoss Enterprise 製品におけるクロスサイトスクリプティングの脆弱性	CWE-20 不適切な入力確認	CVE-2011-4575	2013-02-7 16:21	2013-01-24	Show	GitHub Exploit DB Packet Storm

227338	6.9	警告	Google	-	Android の PowerVR SGX ドライバにおける root 権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1352	2013-02-7 16:21	2011-11-3	Show	GitHub Exploit DB Packet Storm

227339	7.1	危険	Google	-	Android の PowerVR SGX ドライバにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-1350	2013-02-7 16:20	2011-11-3	Show	GitHub Exploit DB Packet Storm

227340	5.1	警告	株式会社レーベルゲート	-	moraダウンローダーにおける実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2012-5188	2013-02-7 12:01	2013-02-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208571	9.8	CRITICAL Network	f5 netapp	nginx_controller cloud_backup	In versions 3.0.0-3.9.0, 2.0.0-2.9.0, and 1.0.1, the NGINX Controller Agent does not use absolute paths when calling system utilities.	CWE-22 Path Traversal	CVE-2020-27730	2024-11-21 14:21	2020-12-12	Show	GitHub Exploit DB Packet Storm

208572	7.5	HIGH Network	f5	big-ip_advanced_firewall_manager	In certain configurations on version 13.1.3.4, when a BIG-IP AFM HTTP security profile is applied to a virtual server and the BIG-IP system receives a request with specific characteristics, the conne…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2020-27713	2024-11-21 14:21	2020-12-12	Show	GitHub Exploit DB Packet Storm

208573	5.7	MEDIUM Local	linux redhat debian netapp	linux_kernel enterprise_linux enterprise_mrg debian_linux cloud_backup solidfire_baseboard_management_controller_firmware h410c_firmware	A use-after-free flaw was found in kernel/trace/ring_buffer.c in Linux kernel (before 5.10-rc1). There was a race problem in trace_open and resize of cpu buffer running parallely on different cpus, m…	-	CVE-2020-27825	2024-11-21 14:21	2020-12-12	Show	GitHub Exploit DB Packet Storm

208574	7.5	HIGH Network	frappe	frappe	In two-factor authentication, the system also sending 2fa secret key in response, which enables an intruder to breach the 2fa security.	NVD-CWE-noinfo	CVE-2020-27508	2024-11-21 14:21	2020-12-12	Show	GitHub Exploit DB Packet Storm

208575	7.8	HIGH Local	linux redhat netapp	linux_kernel enterprise_linux openshift_container_platform enterprise_mrg cloud_backup solidfire_baseboard_management_controller	A flaw was found in the Linux kernel’s implementation of MIDI, where an attacker with a local account and the permissions to issue ioctl commands to midi devices could trigger a use-after-free issue.…	-	CVE-2020-27786	2024-11-21 14:21	2020-12-11	Show	GitHub Exploit DB Packet Storm

208576	7.8	HIGH Local	jasper_project fedoraproject	jasper fedora	There's a flaw in jasper's jpc encoder in versions prior to 2.0.23. Crafted input provided to jasper by an attacker could cause an arbitrary out-of-bounds write. This could potentially affect data co…	-	CVE-2020-27828	2024-11-21 14:21	2020-12-11	Show	GitHub Exploit DB Packet Storm

208577	2.8	LOW Local	debian	advanced_package_tool	Various memory and file descriptor leaks were found in apt-python files python/arfile.cc, python/tag.cc, python/tarfile.cc, aka GHSL-2020-170. This issue affects: python-apt 1.1.0~beta1 versions prio…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2020-27351	2024-11-21 14:21	2020-12-10	Show	GitHub Exploit DB Packet Storm

208578	5.7	MEDIUM Local	debian netapp	advanced_package_tool solidfire_baseboard_management_controller_firmware	APT had several integer overflows and underflows while parsing .deb packages, aka GHSL-2020-168 GHSL-2020-169, in files apt-pkg/contrib/extracttar.cc, apt-pkg/deb/debfile.cc, and apt-pkg/contrib/arfi…	CWE-190 Integer Overflow or Wraparound	CVE-2020-27350	2024-11-21 14:21	2020-12-10	Show	GitHub Exploit DB Packet Storm

208579	5.5	MEDIUM Local	canonical	ubuntu_linux	Aptdaemon performed policykit checks after interacting with potentially untrusted files with elevated privileges. This affected versions prior to 1.1.1+bzr982-0ubuntu34.1, 1.1.1+bzr982-0ubuntu32.3, 1…	CWE-862 Missing Authorization	CVE-2020-27349	2024-11-21 14:21	2020-12-9	Show	GitHub Exploit DB Packet Storm

208580	7.8	HIGH Local	anydesk	anydesk	AnyDesk for macOS versions 6.0.2 and older have a vulnerability in the XPC interface that does not properly validate client requests and allows local privilege escalation.	CWE-20 Improper Input Validation	CVE-2020-27614	2024-11-21 14:21	2020-12-9	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed