Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249061 6.3 警告 Gentoo Linux - logrotate のデフォルト設定におけるシンボリックリンク攻撃を誘発する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1548 2012-03-27 18:43 2011-03-30 Show GitHub Exploit DB Packet Storm
249062 7.5 危険 Andy's PHP Knowledgebase Project - Aphpkb における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-1546 2012-03-27 18:43 2011-03-16 Show GitHub Exploit DB Packet Storm
249063 6.8 警告 ヒューレット・パッカード - HP Insight Control Performance Management におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-1545 2012-03-27 18:43 2011-05-3 Show GitHub Exploit DB Packet Storm
249064 6 警告 ヒューレット・パッカード - HP Insight Control Performance Management における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2011-1544 2012-03-27 18:43 2011-05-3 Show GitHub Exploit DB Packet Storm
249065 4.3 警告 ヒューレット・パッカード - HP SIM におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-1543 2012-03-27 18:43 2011-04-29 Show GitHub Exploit DB Packet Storm
249066 4.3 警告 ヒューレット・パッカード - HP SIM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1542 2012-03-27 18:43 2011-04-29 Show GitHub Exploit DB Packet Storm
249067 10 危険 ヒューレット・パッカード - HP SMH におけるアクセス制限を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2011-1541 2012-03-27 18:43 2011-04-29 Show GitHub Exploit DB Packet Storm
249068 9 危険 ヒューレット・パッカード - HP SMH における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-1540 2012-03-27 18:43 2011-04-29 Show GitHub Exploit DB Packet Storm
249069 5 警告 ヒューレット・パッカード - HP PSP における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2011-1539 2012-03-27 18:43 2011-05-3 Show GitHub Exploit DB Packet Storm
249070 4.9 警告 ヒューレット・パッカード - HP PSP におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1538 2012-03-27 18:43 2011-05-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211701 5.5 MEDIUM
Local 		zephyrproject zephyr Remote Denial of Service in LwM2M do_write_op_tlv. Zephyr versions >= 1.14.2, >= 2.2.0 contain Improper Input Validation (CWE-20), Loop with Unreachable Exit Condition ('Infinite Loop') (CWE-835). Fo… CWE-20
CWE-835
 Improper Input Validation 
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-13602 2024-11-21 14:01 2021-05-26 Show GitHub Exploit DB Packet Storm
211702 9.8 CRITICAL
Network 		zephyrproject zephyr Possible read out of bounds in dns read. Zephyr versions >= 1.14.2, >= 2.3.0 contain Out-of-bounds Read (CWE-125). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advi… CWE-125
Out-of-bounds Read 		CVE-2020-13601 2024-11-21 14:01 2021-05-26 Show GitHub Exploit DB Packet Storm
211703 7.6 HIGH
Physics 		zephyrproject zephyr Malformed SPI in response for eswifi can corrupt kernel memory. Zephyr versions >= 1.14.2, >= 2.3.0 contain Heap-based Buffer Overflow (CWE-122). For more information, see https://github.com/zephyrpr… CWE-787
 Out-of-bounds Write 		CVE-2020-13600 2024-11-21 14:01 2021-05-26 Show GitHub Exploit DB Packet Storm
211704 3.3 LOW
Local 		zephyrproject zephyr Security problem with settings and littlefs. Zephyr versions >= 1.14.2, >= 2.3.0 contain Incorrect Default Permissions (CWE-276). For more information, see https://github.com/zephyrproject-rtos/zephy… CWE-276
Incorrect Default Permissions  		CVE-2020-13599 2024-11-21 14:01 2021-05-26 Show GitHub Exploit DB Packet Storm
211705 7.8 HIGH
Local 		zephyrproject zephyr FS: Buffer Overflow when enabling Long File Names in FAT_FS and calling fs_stat. Zephyr versions >= v1.14.2, >= v2.3.0 contain Stack-based Buffer Overflow (CWE-121). For more information, see https:/… CWE-787
 Out-of-bounds Write 		CVE-2020-13598 2024-11-21 14:01 2021-05-26 Show GitHub Exploit DB Packet Storm
211706 5.3 MEDIUM
Network 		drupal drupal Access bypass vulnerability in of Drupal Core Workspaces allows an attacker to access data without correct permissions. The Workspaces module doesn't sufficiently check access permissions when switch… CWE-276
Incorrect Default Permissions  		CVE-2020-13667 2024-11-21 14:01 2021-05-18 Show GitHub Exploit DB Packet Storm
211707 6.1 MEDIUM
Adjacent 		systemd_project
fedoraproject
netapp 		systemd
fedora
cloud_backup
active_iq_unified_manager 		An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing att… CWE-290
 Authentication Bypass by Spoofing 		CVE-2020-13529 2024-11-21 14:01 2021-05-11 Show GitHub Exploit DB Packet Storm
211708 9.8 CRITICAL
Network 		drupal drupal Access bypass vulnerability in Drupal Core allows JSON:API when JSON:API is in read/write mode. Only sites that have the read_only set to FALSE under jsonapi.settings config are vulnerable. This issu… NVD-CWE-noinfo
CVE-2020-13665 2024-11-21 14:01 2021-05-6 Show GitHub Exploit DB Packet Storm
211709 6.1 MEDIUM
Network 		drupal drupal Open Redirect vulnerability in Drupal Core allows a user to be tricked into visiting a specially crafted link which would redirect them to an arbitrary external URL. This issue affects: Drupal Drupal… CWE-601
Open Redirect 		CVE-2020-13662 2024-11-21 14:01 2021-05-6 Show GitHub Exploit DB Packet Storm
211710 8.8 HIGH
Network 		drupal drupal Arbitrary PHP code execution vulnerability in Drupal Core under certain circumstances. An attacker could trick an administrator into visiting a malicious site that could result in creating a carefull… CWE-77
Command Injection 		CVE-2020-13664 2024-11-21 14:01 2021-05-6 Show GitHub Exploit DB Packet Storm