Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248961 6.5 警告 Cloudera, Inc.
Apache Software Foundation		 - Cloudera 製品で使用される Apache Hadoop における任意のクラスタユーザアカウントになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2012-1574 2012-04-13 15:33 2012-04-12 Show GitHub Exploit DB Packet Storm
248962 5.8 警告 株式会社リクルート - どこでもリクナビ2013 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1240 2012-04-13 12:02 2012-04-13 Show GitHub Exploit DB Packet Storm
248963 5.8 警告 COM Meets Ruby - ActiveScriptRuby に HTML 上で任意の Ruby スクリプトを実行可能な脆弱性 CWE-Other
その他 		CVE-2012-1241 2012-04-13 12:01 2012-04-13 Show GitHub Exploit DB Packet Storm
248964 7.5 危険 360安全中心 - 360圧縮 (360zip) における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2225 2012-04-13 11:45 2012-04-11 Show GitHub Exploit DB Packet Storm
248965 7.5 危険 迅雷 - 迅雷 (Xunlei Thunder) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-2224 2012-04-13 11:44 2012-03-6 Show GitHub Exploit DB Packet Storm
248966 4.3 警告 Plume CMS - Plume CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2156 2012-04-13 11:07 2012-04-11 Show GitHub Exploit DB Packet Storm
248967 4.3 警告 CMS Made Simple - CMS Made Simple の admin/edituser.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1992 2012-04-13 11:06 2012-04-11 Show GitHub Exploit DB Packet Storm
248968 7.5 危険 Ola Lasisi - e-ticketing の loginscript.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1673 2012-04-12 16:57 2011-04-11 Show GitHub Exploit DB Packet Storm
248969 7.5 危険 useasdf_4444 - Hotel Booking Portal の getcity.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1672 2012-04-12 16:57 2011-04-11 Show GitHub Exploit DB Packet Storm
248970 4.3 警告 Novell - Novell ZENworks Configuration Management におけるクロスサイトトレーシング攻撃を誘発される脆弱性 CWE-200
情報漏えい 		CVE-2012-2223 2012-04-12 16:53 2012-02-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211431 5.9 MEDIUM
Network 		redhat
oracle 		xnio
jboss_operations_network
jboss_enterprise_application_platform
jboss_fuse
jboss_data_grid
jboss_brms
jboss_soa_platform
jboss_data_virtualization
communications_cloud_nat… 		A vulnerability was discovered in XNIO where file descriptor leak caused by growing amounts of NIO Selector file handles between garbage collection cycles. It may allow the attacker to cause a denial… NVD-CWE-Other
CVE-2020-14340 2024-11-21 14:03 2021-06-2 Show GitHub Exploit DB Packet Storm
211432 6.5 MEDIUM
Network 		redhat openshift_container_platform A flaw was found in the Restricted Security Context Constraints (SCC), where it allows pods to craft custom network packets. This flaw allows an attacker to cause a denial of service attack on an Ope… - CVE-2020-14336 2024-11-21 14:03 2021-06-2 Show GitHub Exploit DB Packet Storm
211433 5.5 MEDIUM
Local 		redhat satellite A flaw was found in Red Hat Satellite, which allows a privileged attacker to read OMAPI secrets through the ISC DHCP of Smart-Proxy. This flaw allows an attacker to gain control of DHCP records from … - CVE-2020-14335 2024-11-21 14:03 2021-06-2 Show GitHub Exploit DB Packet Storm
211434 7.5 HIGH
Network 		redhat
netapp 		integration_camel_k
resteasy
oncommand_insight 		A vulnerability was found in RESTEasy, where RootNode incorrectly caches routes. This issue results in hash flooding, leading to slower requests with higher CPU time spent searching and adding the en… NVD-CWE-Other
CVE-2020-14326 2024-11-21 14:03 2021-06-2 Show GitHub Exploit DB Packet Storm
211435 7.4 HIGH
Network 		samba rsync A flaw was found in rsync in versions since 3.2.0pre1. Rsync improperly validates certificate with host mismatch vulnerability. A remote, unauthenticated attacker could exploit the flaw by performing… - CVE-2020-14387 2024-11-21 14:03 2021-05-28 Show GitHub Exploit DB Packet Storm
211436 3.3 LOW
Local 		redhat ansible_tower A data exposure flaw was found in Ansible Tower in versions before 3.7.2, where sensitive data can be exposed from the /api/v2/labels/ endpoint. This flaw allows users from other organizations in the… - CVE-2020-14329 2024-11-21 14:03 2021-05-28 Show GitHub Exploit DB Packet Storm
211437 3.3 LOW
Local 		redhat ansible_tower A flaw was found in Ansible Tower in versions before 3.7.2. A Server Side Request Forgery flaw can be abused by supplying a URL which could lead to the server processing it connecting to internal ser… - CVE-2020-14328 2024-11-21 14:03 2021-05-28 Show GitHub Exploit DB Packet Storm
211438 5.5 MEDIUM
Local 		redhat ansible_tower A Server-side request forgery (SSRF) flaw was found in Ansible Tower in versions before 3.6.5 and before 3.7.2. Functionality on the Tower server is abused by supplying a URL that could lead to the s… - CVE-2020-14327 2024-11-21 14:03 2021-05-28 Show GitHub Exploit DB Packet Storm
211439 3.3 LOW
Local 		c-ares
fedoraproject 		c-ares
fedora 		A possible use-after-free and double-free in c-ares lib version 1.16.0 if ares_destroy() is called prior to ares_getaddrinfo() completing. This flaw possibly allows an attacker to crash the service t… CWE-415
CWE-416
 Double Free
 Use After Free 		CVE-2020-14354 2024-11-21 14:03 2021-05-13 Show GitHub Exploit DB Packet Storm
211440 10.0 CRITICAL
Network 		rockwellautomation factorytalk_services_platform In Rockwell Automation FactoryTalk Services Platform Versions 6.10.00 and 6.11.00, there is an issue with the implementation of the SHA-256 hashing algorithm with FactoryTalk Services Platform that p… - CVE-2020-14516 2024-11-21 14:03 2021-03-19 Show GitHub Exploit DB Packet Storm