Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229361	7.8	危険	VideoLAN	-	VideoLAN VLC Media Player の input.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3468	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

229362	7.8	危険	VideoLAN	-	VideoLAN VLC Media Player の stats.c における整数オーバーフローの脆弱性	-	CVE-2007-3467	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

229363	10	危険	sofaware	-	Check Point SofaWare Safe@Office における特定のデフォルトパスワードを含む脆弱性	-	CVE-2007-3465	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

229364	8.5	危険	sofaware	-	Check Point SofaWare Safe@Office における権限を取得される脆弱性	-	CVE-2007-3464	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

229365	6	警告	sofaware	-	Check Point SofaWare Safe@Office におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-3462	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

229366	10	危険	トレンドマイクロ	-	Trend Micro OfficeScan Corporate Edition の cgiChkMasterPwd.exe におけるパスワード要件を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-3455	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

229367	10	危険	トレンドマイクロ	-	Trend Micro OfficeScan Corporate Edition の CGIOCommon.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-3454	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

229368	4.3	警告	sj labs	-	SJ Labs SJphone におけるバッファオーバーフローの脆弱性	-	CVE-2007-3445	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

229369	4.3	警告	BlackBerry	-	Research in Motion BlackBerry 7270 におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3444	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

229370	2.3	注意	BlackBerry	-	Research in Motion BlackBerry 7270 におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3443	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196761	7.4	HIGH Network	bosch	smart_home	Improper certificate validation for certain connections in the Bosch Smart Home System App for iOS prior to version 9.17.1 potentially allows to intercept video contents by performing a man-in-the-mi…	CWE-295 Improper Certificate Validation	CVE-2020-6781	2024-11-21 14:36	2020-09-17	Show	GitHub Exploit DB Packet Storm

196762	4.3	MEDIUM Network	mcafee	email_gateway	Path Traversal vulnerability in McAfee McAfee Email Gateway (MEG) prior to 7.6.406 allows remote attackers to traverse the file system to access files or directories that are outside of the restricte…	CWE-22 Path Traversal	CVE-2020-7268	2024-11-21 14:36	2020-09-16	Show	GitHub Exploit DB Packet Storm

196763	3.6	LOW Local	php debian tenable	php debian_linux tenable.sc	In PHP versions 7.2.x below 7.2.33, 7.3.x below 7.3.21 and 7.4.x below 7.4.9, while processing PHAR files using phar extension, phar_parse_zipfile could be tricked into accessing freed memory, which …	CWE-416 Use After Free	CVE-2020-7068	2024-11-21 14:36	2020-09-10	Show	GitHub Exploit DB Packet Storm

196764	4.9	MEDIUM Network	arubanetworks	analytics_and_location_engine	A vulnerability exists in the Aruba Analytics and Location Engine (ALE) web management interface 2.1.0.2 and earlier firmware that allows an already authenticated administrative user to arbitrarily m…	NVD-CWE-noinfo	CVE-2020-7119	2024-11-21 14:36	2020-09-4	Show	GitHub Exploit DB Packet Storm

196765	9.1	CRITICAL Network	zte	zxiptv_firmware	A ZTE product is impacted by the cryptographic issues vulnerability. The encryption algorithm is not properly used, so remote attackers could use this vulnerability for account credential enumeration…	CWE-327 CWE-522 Use of a Broken or Risky Cryptographic Algorithm Insufficiently Protected Credentials	CVE-2020-6874	2024-11-21 14:36	2020-09-2	Show	GitHub Exploit DB Packet Storm

196766	5.3	MEDIUM Network	zte	zxr10_2800-4_almpufb\(low\)_firmware	A ZTE product has a DoS vulnerability. Because the equipment couldn’t distinguish the attack packets and normal packets with valid http links, the remote attackers could use this vulnerability to cau…	NVD-CWE-noinfo	CVE-2020-6873	2024-11-21 14:36	2020-09-2	Show	GitHub Exploit DB Packet Storm

196767	9.8	CRITICAL Network	os4ed	opensis	openSIS Community Edition version 7.3 is vulnerable to SQL injection via the USERNAME parameter of index.php.	CWE-89 SQL Injection	CVE-2020-6637	2024-11-21 14:36	2020-08-25	Show	GitHub Exploit DB Packet Storm

196768	6.5	MEDIUM Network	elastic	elasticsearch	In Elasticsearch before 7.9.0 and 6.8.12 a field disclosure flaw was found when running a scrolling search with Field Level Security. If a user runs the same query another more privileged user recent…	CWE-269 Improper Privilege Management	CVE-2020-7019	2024-11-21 14:36	2020-08-19	Show	GitHub Exploit DB Packet Storm

196769	8.8	HIGH Network	elastic	enterprise_search	Elastic Enterprise Search before 7.9.0 contain a credential exposure flaw in the App Search interface. If a user is given the ï¿½developerï¿½ role, they will be able to view the administrator API cre…	CWE-269 Improper Privilege Management	CVE-2020-7018	2024-11-21 14:36	2020-08-19	Show	GitHub Exploit DB Packet Storm

196770	3.9	LOW Physics	eaton	secureconnect	Eaton's Secure connect mobile app v1.7.3 & prior stores the user login credentials in logcat file when user create or register the account on the Mobile app. A malicious app or unauthorized user can …	CWE-200 CWE-532 Information Exposure Inclusion of Sensitive Information in Log Files	CVE-2020-6653	2024-11-21 14:36	2020-08-13	Show	GitHub Exploit DB Packet Storm