Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231141	9.3	危険	Yahoo!	-	Yahoo! Widgets の YDPCTL.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-4034	2012-12-20 18:33	2007-07-27	Show	GitHub Exploit DB Packet Storm

231142	7.5	危険	webSPELL	-	Webspell の index.php における絶対パストラバーサルの脆弱性	-	CVE-2007-4028	2012-12-20 18:33	2007-07-26	Show	GitHub Exploit DB Packet Storm

231143	6.8	警告	Telaxus LLC	-	epesi framework における任意の PHP コードを実行される脆弱性	-	CVE-2007-4026	2012-12-20 18:33	2007-07-26	Show	GitHub Exploit DB Packet Storm

231144	4.3	警告	サン・マイクロシステムズ	-	Windows 用の SJS Application Server における JSP ソースコードを取得される脆弱性	-	CVE-2007-4025	2012-12-20 18:33	2007-07-24	Show	GitHub Exploit DB Packet Storm

231145	4.3	警告	w1l3d4	-	W1L3D4 Philboard の W1L3D4_aramasonuc.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4024	2012-12-20 18:33	2007-07-26	Show	GitHub Exploit DB Packet Storm

231146	4.3	警告	WordPress.org	-	WordPress 用の Blix テーマなどに関する特定の index.php インストールスクリプトにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4014	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

231147	6.8	警告	virtual hosting control system	-	VHCS におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2007-3988	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

231148	5	警告	securecomputing	-	Secure Computing SecurityReporter の file.cgi における認証を回避される脆弱性	-	CVE-2007-3986	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

231149	5	警告	securecomputing	-	SecurityReporter の file.cgi におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3985	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

231150	7.5	危険	zenturi	-	sasatl.dll の NixonMyPrograms クラスにおけるバッファオーバーフローの脆弱性	-	CVE-2007-3984	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197971	8.8	HIGH Adjacent	intel netapp	active_management_technology_firmware cloud_backup	Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via a…	CWE-125 Out-of-bounds Read	CVE-2020-8749	2024-11-21 14:39	2020-11-13	Show	GitHub Exploit DB Packet Storm

197972	9.1	CRITICAL Network	intel netapp	active_management_technology_firmware cloud_backup	Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure and/or…	CWE-125 Out-of-bounds Read	CVE-2020-8747	2024-11-21 14:39	2020-11-13	Show	GitHub Exploit DB Packet Storm

197973	6.5	MEDIUM Adjacent	intel netapp	active_management_technology_firmware cloud_backup	Integer overflow in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable denial of service via adjacent …	CWE-190 Integer Overflow or Wraparound	CVE-2020-8746	2024-11-21 14:39	2020-11-13	Show	GitHub Exploit DB Packet Storm

197974	6.8	MEDIUM Physics	intel siemens	converged_security_and_manageability_engine trusted_execution_technology simatic_drive_controller_firmware simatic_et200sp_1515sp_pc2_firmware simatic_field_pg_m5_firmware simatic_fiel…	Insufficient control flow management in subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25 , Intel(R) TXE versions before 3.1.80 …	NVD-CWE-noinfo	CVE-2020-8745	2024-11-21 14:39	2020-11-13	Show	GitHub Exploit DB Packet Storm

197975	7.8	HIGH Local	intel siemens	trusted_execution_engine server_platform_services converged_security_and_management_engine simatic_s7-1518-4_pn\/dp_mfp_firmware simatic_s7-1518f-4_pn\/dp_mfp_firmware simatic_s7-1500_…	Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE versions before 4.0.30 Intel(R) SPS versions before E3_05.01.04.200…	CWE-665 Improper Initialization	CVE-2020-8744	2024-11-21 14:39	2020-11-13	Show	GitHub Exploit DB Packet Storm

197976	6.7	MEDIUM Local	intel netapp	bios hci_storage_node_bios solidfire_bios hci_compute_node_bios aff_bios fas_bios	Out of bounds write in Intel BIOS platform sample code for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.	CWE-787 Out-of-bounds Write	CVE-2020-8740	2024-11-21 14:39	2020-11-13	Show	GitHub Exploit DB Packet Storm

197977	7.8	HIGH Local	intel netapp	bios hci_storage_node_bios solidfire_bios hci_compute_node_bios aff_bios fas_bios	Use of potentially dangerous function in Intel BIOS platform sample code for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local access.	NVD-CWE-noinfo	CVE-2020-8739	2024-11-21 14:39	2020-11-13	Show	GitHub Exploit DB Packet Storm

197978	6.7	MEDIUM Local	intel netapp	bios cloud_backup hci_storage_node_bios solidfire_bios hci_compute_node_bios fas\/aff_bios	Improper conditions check in Intel BIOS platform sample code for some Intel(R) Processors before may allow a privileged user to potentially enable escalation of privilege via local access.	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2020-8738	2024-11-21 14:39	2020-11-13	Show	GitHub Exploit DB Packet Storm

197979	6.8	MEDIUM Physics	intel	quartus_prime stratix_10_fpga_firmware	Improper buffer restrictions in the Intel(R) Stratix(R) 10 FPGA firmware provided with the Intel(R) Quartus(R) Prime Pro software before version 20.1 may allow an unauthenticated user to potentially …	NVD-CWE-noinfo	CVE-2020-8737	2024-11-21 14:39	2020-11-13	Show	GitHub Exploit DB Packet Storm

197980	5.5	MEDIUM Local	intel netapp fedoraproject debian	microcode clustered_data_ontap hcl_compute_node_bios hci_storage_node_bios solidfire_bios fedora debian_linux	Improper removal of sensitive information before storage or transfer in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.	CWE-212 Improper Removal of Sensitive Information Before Storage or Transfer	CVE-2020-8696	2024-11-21 14:39	2020-11-13	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed