Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230141	9.3	危険	x multimedia system	-	xmms における整数アンダーフローの脆弱性	-	CVE-2007-0654	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

230142	9.3	危険	x multimedia system	-	xmms における整数オーバーフローの脆弱性	-	CVE-2007-0653	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

230143	7.5	危険	rbl	-	Raymond BERTHOU script collection の tForum における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-0642	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230144	7.5	危険	shaffer solutions corp	-	SSC DiskAccess NFS Client の EnumPrintersA 関数におけるバッファオーバーフローの脆弱性	-	CVE-2007-0641	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230145	10	危険	Zabbix	-	ZABBIX におけるバッファオーバーフローの脆弱性	-	CVE-2007-0640	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230146	5	警告	vlad alexa mancini	-	Vlad Alexa Mancini PHPFootball の show.php における重要な情報を取得される脆弱性	-	CVE-2007-0638	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230147	7.5	危険	t-systems solutions for research gmbh	-	MyNews の include/themes/themefunc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0633	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230148	7.5	危険	x-dev	-	X-dev xNews の classes/class.news.php における SQL インジェクションの脆弱性	-	CVE-2007-0630	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230149	6.4	警告	plain black	-	Plain Black WebGUI の www_purgeList メソッドにおける許可されていないアセットを削除される脆弱性	-	CVE-2007-0629	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230150	4.3	警告	サン・マイクロシステムズ	-	Sun Java System Access Manager におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0628	2012-12-20 18:19	2007-01-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199941	6.3	MEDIUM Local	cisco	duo_network_gateway	Duo has identified and fixed an issue with the Duo Network Gateway (DNG) product in which some customer-provided SSL certificates and private keys were not excluded from logging. This issue resulted …	CWE-522 Insufficiently Protected Credentials	CVE-2020-3483	2024-11-21 14:31	2020-10-15	Show	GitHub Exploit DB Packet Storm

199942	7.8	HIGH Local	cisco	duo_authentication_for_windows_logon_and_rdp	The Windows Logon installer prior to 4.1.2 did not properly validate file installation paths. This allows an attacker with local user privileges to coerce the installer to write to arbitrary privileg…	NVD-CWE-noinfo	CVE-2020-3427	2024-11-21 14:31	2020-10-15	Show	GitHub Exploit DB Packet Storm

199943	6.7	MEDIUM Local	cisco	staros	A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerabili…	CWE-78 OS Command	CVE-2020-3602	2024-11-21 14:31	2020-10-8	Show	GitHub Exploit DB Packet Storm

199944	6.7	MEDIUM Local	cisco	staros	A vulnerability in the CLI of Cisco StarOS operating system for Cisco ASR 5000 Series Routers could allow an authenticated, local attacker to elevate privileges on an affected device. The vulnerabili…	CWE-78 OS Command	CVE-2020-3601	2024-11-21 14:31	2020-10-8	Show	GitHub Exploit DB Packet Storm

199945	6.5	MEDIUM Network	cisco	vision_dynamic_signage_director	A vulnerability in the web-based management interface of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to access confidential information or make configuration…	CWE-306 Missing Authentication for Critical Function	CVE-2020-3598	2024-11-21 14:31	2020-10-8	Show	GitHub Exploit DB Packet Storm

199946	5.4	MEDIUM Network	cisco	nexus_data_broker	A vulnerability in the configuration restore feature of Cisco Nexus Data Broker software could allow an unauthenticated, remote attacker to perform a directory traversal attack on an affected device.…	CWE-22 Path Traversal	CVE-2020-3597	2024-11-21 14:31	2020-10-8	Show	GitHub Exploit DB Packet Storm

199947	7.5	HIGH Network	cisco	expressway telepresence_video_communication_server	A vulnerability in the Session Initiation Protocol (SIP) of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an unauthenticated, remote attacker to cause a …	CWE-670 Always-Incorrect Control Flow Implementation	CVE-2020-3596	2024-11-21 14:31	2020-10-8	Show	GitHub Exploit DB Packet Storm

199948	4.8	MEDIUM Network	cisco	identity_services_engine	A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an authenticated, remote attacker with administrative credentials to conduct a cross…	CWE-79 Cross-site Scripting	CVE-2020-3589	2024-11-21 14:31	2020-10-8	Show	GitHub Exploit DB Packet Storm

199949	5.8	MEDIUM Network	cisco	asyncos	A vulnerability in the antispam protection mechanisms of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass the URL reputation f…	CWE-20 Improper Input Validation	CVE-2020-3568	2024-11-21 14:31	2020-10-8	Show	GitHub Exploit DB Packet Storm

199950	6.5	MEDIUM Network	cisco	network_level_service industrial_network_director	A vulnerability in the management REST API of Cisco Industrial Network Director (IND) could allow an authenticated, remote attacker to cause the CPU utilization to increase to 100 percent, resulting …	CWE-20 Improper Input Validation	CVE-2020-3567	2024-11-21 14:31	2020-10-8	Show	GitHub Exploit DB Packet Storm