Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249361	6.8	警告	アップルサイバートラスト株式会社 NTP Project ヒューレット・パッカードターボリナックスオラクル VMware レッドハット	-	NTP の ntpq における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-0159	2012-03-27 11:35	2009-04-14	Show	GitHub Exploit DB Packet Storm

249362	5	警告	アップルサイバートラスト株式会社レッドハットオラクル NTP Project	-	NTP における証明書チェーンの有効性を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-0021	2012-03-27 11:01	2009-01-7	Show	GitHub Exploit DB Packet Storm

249363	5	警告	アップルサイバートラスト株式会社 PNG Development Group オラクル VMware レッドハット	-	libpng に含まれる pngrutil.c におけるメモリリークの脆弱性	CWE-399 リソース管理の問題	CVE-2010-2249	2012-03-27 10:32	2010-06-26	Show	GitHub Exploit DB Packet Storm

249364	7.5	危険	アップルサイバートラスト株式会社 Mozilla Foundation PNG Development Group オラクル VMware フェンリル株式会社レッドハット	-	libpng に脆弱性	CWE-119 バッファエラー	CVE-2010-1205	2012-03-27 10:29	2010-07-6	Show	GitHub Exploit DB Packet Storm

249365	7.8	危険	アップルサイバートラスト株式会社 PNG Development Group Lunascape オラクル VMware フェンリル株式会社レッドハット	-	libpng における圧縮された補助チャンクの処理に脆弱性	CWE-399 リソース管理の問題	CVE-2010-0205	2012-03-27 10:22	2010-03-4	Show	GitHub Exploit DB Packet Storm

249366	7.5	危険	クアンタムデル IBM	-	複数のテープライブラリ製品におけるアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-1844	2012-03-26 18:12	2012-03-22	Show	GitHub Exploit DB Packet Storm

249367	5	警告	クアンタムデル	-	Quantum Scalar i500 および Dell ML6000 における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-1841	2012-03-26 18:08	2012-03-22	Show	GitHub Exploit DB Packet Storm

249368	5	警告	LG-Nortel	-	LG-Nortel ELO GS24M に複数の脆弱性	CWE-287 不適切な認証	CVE-2012-1838	2012-03-26 16:29	2012-03-22	Show	GitHub Exploit DB Packet Storm

249369	7.5	危険	Webglimpse	-	WebGlimpse に OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2012-1795	2012-03-26 16:24	2012-03-20	Show	GitHub Exploit DB Packet Storm

249370	7.5	危険	Pydio	-	AjaXplorer におけるログインのアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2012-1840	2012-03-26 16:08	2012-03-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199041	5.4	MEDIUM Network	ibm	rational_quality_manager rational_team_concert rational_doors_next_generation rational_rhapsody_design_manager rhapsody_model_manager doors_next engineering_workflow_management c…	IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentia…	CWE-79 Cross-site Scripting	CVE-2020-4697	2024-11-21 14:33	2021-01-9	Show	GitHub Exploit DB Packet Storm

199042	5.4	MEDIUM Network	ibm	rational_quality_manager rational_team_concert rational_doors_next_generation rational_rhapsody_design_manager rhapsody_model_manager doors_next engineering_workflow_management c…	IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentia…	CWE-79 Cross-site Scripting	CVE-2020-4691	2024-11-21 14:33	2021-01-9	Show	GitHub Exploit DB Packet Storm

199043	5.3	MEDIUM Network	ibm	spectrum_protect_plus	IBM Spectrum Protect Plus 10.1.0 through 10.1.6 may allow unauthenticated and unauthorized access to VDAP proxy which can result in an attacker obtaining information they are not authorized to access…	CWE-306 CWE-862 Missing Authentication for Critical Function Missing Authorization	CVE-2020-5022	2024-11-21 14:33	2021-01-9	Show	GitHub Exploit DB Packet Storm

199044	4.4	MEDIUM Local	ibm	spectrum_protect_plus	IBM Spectrum Protect Plus 10.1.0 through 10.1.6 does not invalidate session after a password reset which could allow a local user to impersonate another user on the system. IBM X-Force ID: 193657.	CWE-384 Session Fixation	CVE-2020-5021	2024-11-21 14:33	2021-01-9	Show	GitHub Exploit DB Packet Storm

199045	6.1	MEDIUM Network	ibm	spectrum_protect_plus	IBM Spectrum Protect Plus 10.1.0 through 10.1.6 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker coul…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2020-5020	2024-11-21 14:33	2021-01-9	Show	GitHub Exploit DB Packet Storm

199046	6.5	MEDIUM Network	ibm	spectrum_protect_plus	IBM Spectrum Protect Plus 10.1.0 through 10.1.6 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. By sending a specially crafted HTTP request, a remo…	CWE-74 Injection	CVE-2020-5019	2024-11-21 14:33	2021-01-9	Show	GitHub Exploit DB Packet Storm

199047	7.5	HIGH Network	ibm	spectrum_protect_plus	IBM Spectrum Protect Plus 10.1.0 through 10.1.6 may include sensitive information in its URLs increasing the risk of such information being caputured by an attacker. IBM X-Force ID: 193654.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-5018	2024-11-21 14:33	2021-01-9	Show	GitHub Exploit DB Packet Storm

199048	5.5	MEDIUM Local	ibm	spectrum_protect	IBM Spectrum Protect Plus 10.1.0 through 10.1.6 may allow a local user to obtain access to information beyond their intended role and permissions. IBM X-Force ID: 193653.	NVD-CWE-noinfo	CVE-2020-5017	2024-11-21 14:33	2021-01-9	Show	GitHub Exploit DB Packet Storm

199049	4.3	MEDIUM Network	ibm	engineering_requirements_quality_assistant_on-premises	IBM Engineering Requirements Quality Assistant On-Premises could allow an authenticated user to obtain sensitive information due to improper input validation. IBM X-Force ID: 186282.	CWE-20 Improper Input Validation	CVE-2020-4667	2024-11-21 14:33	2021-01-9	Show	GitHub Exploit DB Packet Storm

199050	5.4	MEDIUM Network	ibm	engineering_requirements_quality_assistant_on-premises	IBM Engineering Requirements Quality Assistant On-Premises is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the in…	CWE-79 Cross-site Scripting	CVE-2020-4666	2024-11-21 14:33	2021-01-9	Show	GitHub Exploit DB Packet Storm