Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231481	4.4	警告	SUSE xfsdump	-	xfsdump の xfs_fsr における xfs ファイルシステム上で任意のファイルを上書きされる脆弱性	CWE-362 CWE-Other	CVE-2007-2654	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

231482	7.5	危険	voodoo circle	-	VooDoo cIRCle におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2651	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

231483	7.8	危険	t-com	-	T-com Speedport W 700v における遅延を回避される脆弱性	-	CVE-2007-2649	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

231484	6.8	警告	yenc32	-	yEnc32 におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-2646	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

231485	5	警告	pinkcrow designs	-	PinkCrow Designs Gallery または maGAZIn の phpThumb.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2643	2012-12-20 18:19	2007-05-13	Show	GitHub Exploit DB Packet Storm

231486	7.8	危険	r2k	-	R2K Gallery の galeria.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2642	2012-12-20 18:19	2007-05-13	Show	GitHub Exploit DB Packet Storm

231487	7.5	危険	w1l3d4	-	W1L3D4 Philboard の W1L3D4_bolum.asp における SQL インジェクションの脆弱性	-	CVE-2007-2641	2012-12-20 18:19	2007-05-13	Show	GitHub Exploit DB Packet Storm

231488	10	危険	prosysinfo	-	TFTPdWin におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2639	2012-12-20 18:19	2007-05-13	Show	GitHub Exploit DB Packet Storm

231489	10	危険	positive software	-	H-Sphere SiteStudio におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2633	2012-12-20 18:19	2007-05-13	Show	GitHub Exploit DB Packet Storm

231490	7.5	危険	SquirrelMail Project	-	SquirrelMail におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-2631	2012-12-20 18:19	2007-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199411	7.5	HIGH Network	envoyproxy	envoy	Envoy version 1.14.2, 1.13.2, 1.12.4 or earlier may exhaust file descriptors and/or memory when accepting too many connections.	CWE-400 Uncontrolled Resource Consumption	CVE-2020-8663	2024-11-21 14:39	2020-07-2	Show	GitHub Exploit DB Packet Storm

199412	6.5	MEDIUM Network	netapp	hci_h610s_firmware	The NetApp HCI H610C, H615C and H610S Baseboard Management Controllers (BMC) are shipped with a documented default account and password that should be changed during the initial node setup. During up…	CWE-798 Use of Hard-coded Credentials	CVE-2020-8573	2024-11-21 14:39	2020-06-29	Show	GitHub Exploit DB Packet Storm

199413	7.2	HIGH Network	johnsoncontrols	exacqvision_web_service exacqvision_enterprise_manager	A vulnerability exists that could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterpr…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2020-9047	2024-11-21 14:39	2020-06-27	Show	GitHub Exploit DB Packet Storm

199414	7.8	HIGH Local	google opensuse	guest-oslogin leap	A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi…	CWE-276 Incorrect Default Permissions	CVE-2020-8933	2024-11-21 14:39	2020-06-22	Show	GitHub Exploit DB Packet Storm

199415	7.8	HIGH Local	google opensuse	guest-oslogin leap	A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi…	CWE-276 Incorrect Default Permissions	CVE-2020-8907	2024-11-21 14:39	2020-06-22	Show	GitHub Exploit DB Packet Storm

199416	7.8	HIGH Local	google opensuse	guest-oslogin leap	A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi…	CWE-276 Incorrect Default Permissions	CVE-2020-8903	2024-11-21 14:39	2020-06-22	Show	GitHub Exploit DB Packet Storm

199417	4.9	MEDIUM Network	isc opensuse netapp canonical	bind leap steelstore_cloud_integrated_storage ubuntu_linux	An attacker who is permitted to send zone data to a server via zone transfer can exploit this to intentionally trigger the assertion failure with a specially constructed zone, denying service to clie…	CWE-617 Reachable Assertion	CVE-2020-8618	2024-11-21 14:39	2020-06-18	Show	GitHub Exploit DB Packet Storm

199418	4.9	MEDIUM Network	isc fedoraproject opensuse debian canonical netapp	bind fedora leap debian_linux ubuntu_linux steelstore_cloud_integrated_storage	In ISC BIND9 versions BIND 9.11.14 -> 9.11.19, BIND 9.14.9 -> 9.14.12, BIND 9.16.0 -> 9.16.3, BIND Supported Preview Edition 9.11.14-S1 -> 9.11.19-S1: Unless a nameserver is providing authoritative s…	CWE-404 Improper Resource Shutdown or Release	CVE-2020-8619	2024-11-21 14:39	2020-06-18	Show	GitHub Exploit DB Packet Storm

199419	6.5	MEDIUM Network	open-xchange	open-xchange_appsuite	OX App Suite through 7.10.3 allows SSRF.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-8544	2024-11-21 14:39	2020-06-16	Show	GitHub Exploit DB Packet Storm

199420	7.5	HIGH Network	open-xchange	open-xchange_appsuite	OX App Suite through 7.10.3 has Improper Input Validation.	CWE-20 Improper Input Validation	CVE-2020-8543	2024-11-21 14:39	2020-06-16	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed