Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228261 4.9 警告 サン・マイクロシステムズ - Sun VirtualBox におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2715 2012-12-20 19:10 2009-08-7 Show GitHub Exploit DB Packet Storm
228262 4.9 警告 サン・マイクロシステムズ - Sun VirtualBox におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-2714 2012-12-20 19:10 2009-08-5 Show GitHub Exploit DB Packet Storm
228263 4.3 警告 サン・マイクロシステムズ - Sun Java System Access Manager の CDCServlet コンポーネントにおける重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-2713 2012-12-20 19:10 2009-08-5 Show GitHub Exploit DB Packet Storm
228264 2.1 注意 サン・マイクロシステムズ - Sun Java System Access Manager および OpenSSO Enterprise などにおける平文パスワードを特定される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2712 2012-12-20 19:10 2009-08-5 Show GitHub Exploit DB Packet Storm
228265 5 警告 strongSwan - strongSwan の asn1_length 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-310
暗号の問題 		CVE-2009-2661 2012-12-20 19:10 2009-07-23 Show GitHub Exploit DB Packet Storm
228266 7.5 危険 ZNC - ZNC におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2658 2012-12-20 19:10 2009-08-4 Show GitHub Exploit DB Packet Storm
228267 9.3 危険 sorcerersoftware - Sorcerer Software MultiMedia Jukebox におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-2650 2012-12-20 19:10 2009-07-30 Show GitHub Exploit DB Packet Storm
228268 6.8 警告 rich white - School Data Navigator の app_and_readme/navigator/index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2641 2012-12-20 19:10 2009-07-28 Show GitHub Exploit DB Packet Storm
228269 7.5 危険 prosmdr - ProSMDR の login.aspx における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2612 2012-12-20 19:10 2009-07-27 Show GitHub Exploit DB Packet Storm
228270 3.5 注意 scott courtney - Drupal 用の Links Package モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2610 2012-12-20 19:10 2009-06-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195121 5.3 MEDIUM
Network 		spice_project
redhat 		spice
enterprise_linux 		A flaw was found in spice in versions before 0.14.92. A DoS tool might make it easier for remote attackers to cause a denial of service (CPU consumption) by performing many renegotiations within a si… NVD-CWE-Other
CVE-2021-20201 2024-11-21 14:46 2021-05-28 Show GitHub Exploit DB Packet Storm
195122 9.6 CRITICAL
Network 		redhat keycloak A flaw was found in keycloak in versions before 13.0.0. A Self Stored XSS attack vector escalating to a complete account takeover is possible due to user-supplied data fields not being properly encod… CWE-116
 Improper Encoding or Escaping of Output 		CVE-2021-20195 2024-11-21 14:46 2021-05-28 Show GitHub Exploit DB Packet Storm
195123 6.5 MEDIUM
Local 		qemu
debian 		qemu
debian_linux 		A NULL pointer dereference flaw was found in the floppy disk emulator of QEMU. This issue occurs while processing read/write ioport commands if the selected floppy drive is not initialized with a blo… - CVE-2021-20196 2024-11-21 14:46 2021-05-27 Show GitHub Exploit DB Packet Storm
195124 5.5 MEDIUM
Local 		gnome
redhat
fedoraproject 		networkmanager
enterprise_linux
openshift_container_platform
fedora 		A flaw was found in NetworkManager in versions before 1.30.0. Setting match.path and activating a profile crashes NetworkManager. The highest threat from this vulnerability is to system availability. CWE-20
 Improper Input Validation  		CVE-2021-20297 2024-11-21 14:46 2021-05-27 Show GitHub Exploit DB Packet Storm
195125 5.5 MEDIUM
Local 		oracle
redhat 		virtualization
ansible_tower
google_cloud_platform_ansible_collection
cisco_nx-os_collection
ansible
community_general_collection
community_network_collection
docker_community_co… 		A flaw was found in ansible. Credentials, such as secrets, are being disclosed in console log by default and not protected by no_log feature when using those modules. An attacker can take advantage o… - CVE-2021-20191 2024-11-21 14:46 2021-05-27 Show GitHub Exploit DB Packet Storm
195126 4.4 MEDIUM
Local 		linux linux_kernel A flaw was found in the Linux kernel's implementation of string matching within a packet. A privileged user (with root or CAP_NET_ADMIN) when inserting iptables rules could insert a rule which can pa… - CVE-2021-20177 2024-11-21 14:46 2021-05-27 Show GitHub Exploit DB Packet Storm
195127 8.2 HIGH
Network 		ibm websphere_application_server IBM WebSphere Application Server 8.0, 8.5, 9.0, and Liberty Java Batch is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vu… CWE-611
XXE 		CVE-2021-20492 2024-11-21 14:46 2021-05-27 Show GitHub Exploit DB Packet Storm
195128 9.1 CRITICAL
Network 		ibm power9_system_firmware
scale-out_lc_system_firmware 		IBM Power9 Self Boot Engine(SBE) could allow a privileged user to inject malicious code and compromise the integrity of the host firmware bypassing the host firmware signature verification process. CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2021-20487 2024-11-21 14:46 2021-05-27 Show GitHub Exploit DB Packet Storm
195129 6.5 MEDIUM
Network 		ibm cloud_pak_for_data IBM Cloud Pak for Data 3.0 could allow an authenticated user to obtain sensitive information when installed with additional plugins. IBM X-Force ID: 197668. NVD-CWE-noinfo
CVE-2021-20486 2024-11-21 14:46 2021-05-27 Show GitHub Exploit DB Packet Storm
195130 5.5 MEDIUM
Local 		redhat
fedoraproject 		ansible_tower
ansible
fedora 		A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the security feature when using the bitbucket_pipeline_variable module. This flaw… - CVE-2021-20178 2024-11-21 14:46 2021-05-26 Show GitHub Exploit DB Packet Storm