Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249591	7.8	危険	シスコシステムズ	-	Cisco IOS XR の NETIO および IPV4_IO プロセスにおけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-3295	2012-05-8 11:28	2012-05-2	Show	GitHub Exploit DB Packet Storm

249592	6.8	警告	シスコシステムズ	-	Cisco Secure Access Control Server におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-3293	2012-05-8 11:28	2012-05-2	Show	GitHub Exploit DB Packet Storm

249593	3.6	注意	シスコシステムズ	-	Cisco IOS における No Service Password-Recovery 機能を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3289	2012-05-8 11:25	2012-05-2	Show	GitHub Exploit DB Packet Storm

249594	5	警告	シスコシステムズ	-	Cisco Adaptive Security Appliances 5500 series デバイスにおける CRLF インジェクションの脆弱性	CWE-20 CWE-94	CVE-2011-3285	2012-05-8 11:24	2012-05-2	Show	GitHub Exploit DB Packet Storm

249595	5	警告	シスコシステムズ	-	Cisco Carrier Routing System におけるサービス運用妨害 (メトロサブシステムクラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-3283	2012-05-8 11:24	2012-05-2	Show	GitHub Exploit DB Packet Storm

249596	5.4	警告	シスコシステムズ	-	Cisco IOS の HTTP クライアントにおけるサービス運用妨害 (デバイスクラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-2586	2012-05-8 11:23	2011-10-19	Show	GitHub Exploit DB Packet Storm

249597	5	警告	シスコシステムズ	-	Cisco Unified Contact Center Express におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-2583	2012-05-8 11:22	2012-05-2	Show	GitHub Exploit DB Packet Storm

249598	7.8	危険	シスコシステムズ	-	Cisco IOS におけるサービス運用妨害 (メモリ消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-2578	2012-05-8 11:22	2012-05-2	Show	GitHub Exploit DB Packet Storm

249599	7.8	危険	シスコシステムズ	-	Cisco Adaptive Security Appliances 5500 シリーズデバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2012-0378	2012-05-8 11:20	2012-05-3	Show	GitHub Exploit DB Packet Storm

249600	5	警告	シスコシステムズ	-	Cisco Unified Communications Manager の voice-sipstack コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2012-0376	2012-05-8 11:19	2012-05-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201411	6.5	MEDIUM Network	mongodb	mongodb	A user authorized to perform database queries may cause denial of service by issuing a specially crafted query which violates an invariant in the server selection subsystem. This issue affects MongoD…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2020-7926	2024-11-21 14:38	2020-11-24	Show	GitHub Exploit DB Packet Storm

201412	7.5	HIGH Network	mongodb	mongodb	Incorrect validation of user input in the role name parser may lead to use of uninitialized memory allowing an unauthenticated attacker to use a specially crafted request to cause a denial of service…	CWE-20 Improper Input Validation	CVE-2020-7925	2024-11-21 14:38	2020-11-24	Show	GitHub Exploit DB Packet Storm

201413	7.4	HIGH Network	nextcloud	social	Missing validation of server certificates for out-going connections in Nextcloud Social < 0.4.0 allowed a man-in-the-middle attack.	CWE-295 Improper Certificate Validation	CVE-2020-8279	2024-11-21 14:38	2020-11-19	Show	GitHub Exploit DB Packet Storm

201414	5.3	MEDIUM Network	nextcloud	social	Improper access control in Nextcloud Social app version 0.3.1 allowed to read posts of any user.	CWE-863 Incorrect Authorization	CVE-2020-8278	2024-11-21 14:38	2020-11-19	Show	GitHub Exploit DB Packet Storm

201415	7.5	HIGH Network	nodejs fedoraproject oracle c-ares_project	node.js fedora graalvm retail_xstore_point_of_service jd_edwards_enterpriseone_tools mysql_cluster blockchain_platform c-ares	A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Denial of Service in versions < 15.2.1, < 14.15.1, and < 12.19.1 by getting the appli…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-8277	2024-11-21 14:38	2020-11-19	Show	GitHub Exploit DB Packet Storm

201416	8.8	HIGH Network	citrix	sd-wan	Privilege escalation of an authenticated user to root in Citrix SD-WAN center versions before 11.2.2, 11.1.2b and 10.2.8.	CWE-78 OS Command	CVE-2020-8273	2024-11-21 14:38	2020-11-16	Show	GitHub Exploit DB Packet Storm

201417	7.5	HIGH Network	citrix	sd-wan	Authentication Bypass resulting in exposure of SD-WAN functionality in Citrix SD-WAN Center versions before 11.2.2, 11.1.2b and 10.2.8	CWE-287 Improper Authentication	CVE-2020-8272	2024-11-21 14:38	2020-11-16	Show	GitHub Exploit DB Packet Storm

201418	9.8	CRITICAL Network	citrix	sd-wan	Unauthenticated remote code execution with root privileges in Citrix SD-WAN Center versions before 11.2.2, 11.1.2b and 10.2.8	CWE-22 Path Traversal	CVE-2020-8271	2024-11-21 14:38	2020-11-16	Show	GitHub Exploit DB Packet Storm

201419	8.8	HIGH Network	citrix	virtual_apps_and_desktops	An unprivileged Windows user on the VDA or an SMB user can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285871 and CTX285872, 7.15 LTSR CU6 ho…	CWE-78 OS Command	CVE-2020-8270	2024-11-21 14:38	2020-11-16	Show	GitHub Exploit DB Packet Storm

201420	8.8	HIGH Network	citrix	xendesktop xenapp virtual_apps_and_desktops	An unprivileged Windows user on the VDA can perform arbitrary command execution as SYSTEM in CVAD versions before 2009, 1912 LTSR CU1 hotfixes CTX285870 and CTX286120, 7.15 LTSR CU6 hotfix CTX285344 …	CWE-269 Improper Privilege Management	CVE-2020-8269	2024-11-21 14:38	2020-11-16	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed