Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250241 4.3 警告 IBM - IBM WebSphere Portal の検索センターにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2172 2012-03-27 18:43 2011-05-26 Show GitHub Exploit DB Packet Storm
250242 5 警告 OpenBSD - OpenBSD の glob 実装における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-2168 2012-03-27 18:43 2011-05-24 Show GitHub Exploit DB Packet Storm
250243 6.5 警告 Timo Sirainen - Dovecot の script-login におけるディレクトトラバーサル攻撃を実行される脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-2167 2012-03-27 18:43 2011-05-24 Show GitHub Exploit DB Packet Storm
250244 6.5 警告 Timo Sirainen - Dovecot の script-login におけるアクセス制限を回避される脆弱性 CWE-16
環境設定 		CVE-2011-2166 2012-03-27 18:43 2011-05-24 Show GitHub Exploit DB Packet Storm
250245 6.8 警告 ウォッチガード・テクノロジー - WatchGuard XCS の STARTTLS 実装における暗号化された SMTP セッションに任意のコマンドを挿入される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2165 2012-03-27 18:43 2011-04-1 Show GitHub Exploit DB Packet Storm
250246 10 危険 アドビシステムズ - Adobe Photoshop における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2011-2164 2012-03-27 18:43 2011-05-20 Show GitHub Exploit DB Packet Storm
250247 9.3 危険 IBM - IBM Systems Director の Virtualization Manager における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2011-2163 2012-03-27 18:43 2011-05-20 Show GitHub Exploit DB Packet Storm
250248 10 危険 FFmpeg
Mandriva, Inc.
mplayerhq		 - MPlayer などの製品で使用される Ffmpeg における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2011-2162 2012-03-27 18:43 2011-05-16 Show GitHub Exploit DB Packet Storm
250249 4.3 警告 VideoLAN
FFmpeg
mplayerhq		 - MPlayer などの製品で使用される FFmpeg の ape_read_header 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2161 2012-03-27 18:43 2011-05-20 Show GitHub Exploit DB Packet Storm
250250 9.3 危険 FFmpeg
mplayerhq		 - MPlayer などの製品で使用される FFmpeg の VC-1 デコーディング機能における脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2160 2012-03-27 18:43 2011-05-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201741 5.5 MEDIUM
Local 		bitdefender antivirus A privilege escalation vulnerability in BDLDaemon as used in Bitdefender Antivirus for Mac allows a local attacker to obtain authentication tokens for requests submitted to the Bitdefender Cloud. Thi… CWE-269
 Improper Privilege Management 		CVE-2020-8092 2024-11-21 14:38 2020-01-31 Show GitHub Exploit DB Packet Storm
201742 5.5 MEDIUM
Local 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to a denial of service (NULL pointer dereference) via crafted messages written direc… CWE-476
 NULL Pointer Dereference 		CVE-2020-8448 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201743 9.8 CRITICAL
Network 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to a use-after-free during processing of syscheck formatted msgs (received from auth… CWE-416
 Use After Free 		CVE-2020-8447 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201744 5.5 MEDIUM
Local 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to path traversal (with write access) via crafted syscheck messages written directly… CWE-22
Path Traversal 		CVE-2020-8446 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201745 9.8 CRITICAL
Network 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the OS_CleanMSG function in ossec-analysisd doesn't remove or encode terminal control characters or newlines from processed log messages. In many cases, those charact… CWE-20
 Improper Input Validation  		CVE-2020-8445 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201746 9.8 CRITICAL
Network 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to a use-after-free during processing of ossec-alert formatted msgs (received from a… CWE-416
 Use After Free 		CVE-2020-8444 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201747 9.8 CRITICAL
Network 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to an off-by-one heap-based buffer overflow during the cleaning of crafted syslog ms… CWE-787
CWE-193
 Out-of-bounds Write
 Off-by-one Error 		CVE-2020-8443 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201748 8.8 HIGH
Network 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to a heap-based buffer overflow in the rootcheck decoder component via an authentica… CWE-787
 Out-of-bounds Write 		CVE-2020-8442 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201749 7.2 HIGH
Network 		arris ruckus_zoneflex_r500_firmware Ruckus ZoneFlex R500 104.0.0.0.1347 devices allow an authenticated attacker to execute arbitrary OS commands via the hidden /forms/nslookupHandler form, as demonstrated by the nslookuptarget=|cat${IF… CWE-78
OS Command  		CVE-2020-8438 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
201750 9.8 CRITICAL
Network 		denx
opensuse 		u-boot
leap 		In Das U-Boot through 2020.01, a double free has been found in the cmd/gpt.c do_rename_gpt_parts() function. Double freeing may result in a write-what-where condition, allowing an attacker to execute… CWE-787
CWE-415
 Out-of-bounds Write
 Double Free 		CVE-2020-8432 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm