Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249941 5 警告 IBM - IBM OmniFind におけるサービス運用妨害 (DoS) 状態となる脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3899 2012-03-27 18:42 2010-11-12 Show GitHub Exploit DB Packet Storm
249942 5 警告 IBM - IBM OmniFind における認証を回避する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3898 2012-03-27 18:42 2010-11-12 Show GitHub Exploit DB Packet Storm
249943 5 警告 IBM - IBM OmniFind の ESSearchApplication/palette.do における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-3897 2012-03-27 18:42 2010-11-12 Show GitHub Exploit DB Packet Storm
249944 7.5 危険 IBM - IBM OmniFind の ESSearchApplication ディレクトリツリーにおけるサーバ設定を変更される脆弱性 CWE-287
不適切な認証 		CVE-2010-3896 2012-03-27 18:42 2010-11-12 Show GitHub Exploit DB Packet Storm
249945 7.2 危険 IBM - IBM OmniFind の esRunCommand における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3895 2012-03-27 18:42 2010-11-12 Show GitHub Exploit DB Packet Storm
249946 9.3 危険 IBM - IBM OmniFind の Java_com_ibm_es_oss_CryptionNative_ESEncrypt 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3894 2012-03-27 18:42 2010-11-12 Show GitHub Exploit DB Packet Storm
249947 7.5 危険 IBM - IBM OmniFind の管理インタフェースにおける任意の管理者操作を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3893 2012-03-27 18:42 2010-11-12 Show GitHub Exploit DB Packet Storm
249948 6.8 警告 IBM - IBM OmniFind のログインフォームにおけるセッションをハイジャックされる脆弱性 CWE-Other
その他 		CVE-2010-3892 2012-03-27 18:42 2010-11-12 Show GitHub Exploit DB Packet Storm
249949 6.8 警告 IBM - IBM OmniFind の ESAdmin/security.do におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-3891 2012-03-27 18:42 2010-11-12 Show GitHub Exploit DB Packet Storm
249950 4.3 警告 IBM - IBM OmniFind におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3890 2012-03-27 18:42 2010-11-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196951 7.8 HIGH
Local 		fabulatech usb_for_remote_desktop ftusbbus2.sys in FabulaTech USB for Remote Desktop through 2020-02-19 allows privilege escalation via crafted IoCtl code related to a USB HID device. NVD-CWE-noinfo
CVE-2020-9332 2024-11-21 14:40 2020-06-18 Show GitHub Exploit DB Packet Storm
196952 7.5 HIGH
Network 		fortinet fortimanager
fortianalyzer 		Use of a hard-coded cryptographic key to encrypt password data in CLI configuration in FortiManager 6.2.3 and below, FortiAnalyzer 6.2.3 and below may allow an attacker with access to the CLI configu… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-9289 2024-11-21 14:40 2020-06-17 Show GitHub Exploit DB Packet Storm
196953 6.1 MEDIUM
Network 		microfocus arcsight_enterprise_security_manager_express Cross Site Scripting (XSS) vulnerability in Micro Focus ArcSight Enterprise Security Manager (ESM) product, Affecting versions 7.0.x, 7.2 and 7.2.1 . The vulnerabilities could be remotely exploited r… CWE-79
Cross-site Scripting 		CVE-2020-9522 2024-11-21 14:40 2020-06-16 Show GitHub Exploit DB Packet Storm
196954 9.8 CRITICAL
Network 		netflix conductor Netflix Titus uses Java Bean Validation (JSR 380) custom constraint validators. When building custom constraint violation error messages, different types of interpolation are supported, including Jav… CWE-917
 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') 		CVE-2020-9296 2024-11-21 14:40 2020-06-16 Show GitHub Exploit DB Packet Storm
196955 5.0 MEDIUM
Network 		open-xchange ox_guard OX Guard 2.10.3 and earlier allows SSRF. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-9427 2024-11-21 14:40 2020-06-16 Show GitHub Exploit DB Packet Storm
196956 6.1 MEDIUM
Network 		open-xchange ox_guard OX Guard 2.10.3 and earlier allows XSS. CWE-79
Cross-site Scripting 		CVE-2020-9426 2024-11-21 14:40 2020-06-16 Show GitHub Exploit DB Packet Storm
196957 9.8 CRITICAL
Network 		tibco managed_file_transfer_platform_server The file transfer component of TIBCO Software Inc.'s TIBCO Managed File Transfer Platform Server for IBM i contains a vulnerability that theoretically allows execution of arbitrary commands at the pr… NVD-CWE-noinfo
CVE-2020-9412 2024-11-21 14:40 2020-06-10 Show GitHub Exploit DB Packet Storm
196958 9.8 CRITICAL
Network 		tibco managed_file_transfer_platform_server The file transfer component of TIBCO Software Inc.'s TIBCO Managed File Transfer Platform Server for IBM i contains a vulnerability that theoretically allows an attacker to perform unauthorized netwo… NVD-CWE-noinfo
CVE-2020-9411 2024-11-21 14:40 2020-06-10 Show GitHub Exploit DB Packet Storm
196959 9.8 CRITICAL
Network 		huawei ips_module_firmware
ngfw_module_firmware
nip6300_firmware
nip6600_firmware
nip6800_firmware
secospace_usg6300_firmware
secospace_usg6500_firmware
secospace_usg6600_firmware
us… 		Huawei products IPS Module; NGFW Module; NIP6300; NIP6600; NIP6800; Secospace USG6300; Secospace USG6500; Secospace USG6600; USG9500 with versions of V500R001C00; V500R001C20; V500R001C30; V500R001C5… CWE-287
Improper Authentication 		CVE-2020-9099 2024-11-21 14:40 2020-06-8 Show GitHub Exploit DB Packet Storm
196960 4.3 MEDIUM
Adjacent 		homey homey_firmware
homey_pro_firmware 		An issue was discovered in all Athom Homey and Homey Pro devices up to the current version 4.2.0. An attacker within RF range can obtain a cleartext copy of the network configuration of the device, i… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-9462 2024-11-21 14:40 2020-06-5 Show GitHub Exploit DB Packet Storm