Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251271 6.3 警告 Puppet - Puppet Labs の Puppet における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-3869 2011-11-4 15:01 2011-09-30 Show GitHub Exploit DB Packet Storm
251272 5 警告 Puppet - Puppet Labs の Puppet におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-3848 2011-11-4 15:00 2011-09-28 Show GitHub Exploit DB Packet Storm
251273 4.3 警告 アップル - WebObjects におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3998 2011-11-4 14:03 2011-11-4 Show GitHub Exploit DB Packet Storm
251274 6.4 警告 Opengear - 複数の Opengear 製品における認証回避の脆弱性 CWE-287
不適切な認証 		CVE-2011-3997 2011-11-4 14:02 2011-11-4 Show GitHub Exploit DB Packet Storm
251275 9.3 危険 アップル - Windows 上で稼動する Apple QuickTime における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-3251 2011-11-4 11:52 2011-10-26 Show GitHub Exploit DB Packet Storm
251276 9.3 危険 アップル - Apple QuickTime における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-3250 2011-11-4 11:38 2011-10-28 Show GitHub Exploit DB Packet Storm
251277 9.3 危険 アップル - Apple QuickTime におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-3249 2011-11-4 11:38 2011-10-28 Show GitHub Exploit DB Packet Storm
251278 9.3 危険 アップル - Apple QuickTime における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2011-3248 2011-11-4 11:37 2011-10-28 Show GitHub Exploit DB Packet Storm
251279 9.3 危険 アップル - Windows 上で稼働する Apple QuickTime における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-3247 2011-11-4 11:36 2011-10-28 Show GitHub Exploit DB Packet Storm
251280 4.3 警告 IBM - IBM WebSphere ILOG Rule Team Server の content/error.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1371 2011-11-4 11:36 2011-10-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196191 6.8 MEDIUM
Network 		kubernetes kubernetes The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an att… CWE-601
Open Redirect 		CVE-2020-8559 2024-11-21 14:39 2020-07-22 Show GitHub Exploit DB Packet Storm
196192 7.2 HIGH
Network 		gpononu 1ge_router_wifi_onu_v2801rw_firmware
1ge\+3fe\+wifi_onu_v2804rgw_firmware 		Guangzhou 1GE ONU V2801RW 1.9.1-181203 through 2.9.0-181024 and V2804RGW 1.9.1-181203 through 2.9.0-181024 devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in … CWE-78
OS Command  		CVE-2020-8958 2024-11-21 14:39 2020-07-16 Show GitHub Exploit DB Packet Storm
196193 5.5 MEDIUM
Local 		openthread wpantund A memory leak in Openthread's wpantund versions up to commit 0e5d1601febb869f583e944785e5685c6c747be7, when used in an environment where wpanctl is directly interfacing with the control driver (eg: d… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2020-8916 2024-11-21 14:39 2020-07-8 Show GitHub Exploit DB Packet Storm
196194 7.5 HIGH
Network 		envoyproxy envoy Envoy version 1.14.2, 1.13.2, 1.12.4 or earlier may exhaust file descriptors and/or memory when accepting too many connections. CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-8663 2024-11-21 14:39 2020-07-2 Show GitHub Exploit DB Packet Storm
196195 6.5 MEDIUM
Network 		netapp hci_h610s_firmware The NetApp HCI H610C, H615C and H610S Baseboard Management Controllers (BMC) are shipped with a documented default account and password that should be changed during the initial node setup. During up… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-8573 2024-11-21 14:39 2020-06-29 Show GitHub Exploit DB Packet Storm
196196 7.2 HIGH
Network 		johnsoncontrols exacqvision_web_service
exacqvision_enterprise_manager 		A vulnerability exists that could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterpr… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-9047 2024-11-21 14:39 2020-06-27 Show GitHub Exploit DB Packet Storm
196197 7.8 HIGH
Local 		google
opensuse 		guest-oslogin
leap 		A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi… CWE-276
Incorrect Default Permissions  		CVE-2020-8933 2024-11-21 14:39 2020-06-22 Show GitHub Exploit DB Packet Storm
196198 7.8 HIGH
Local 		google
opensuse 		guest-oslogin
leap 		A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi… CWE-276
Incorrect Default Permissions  		CVE-2020-8907 2024-11-21 14:39 2020-06-22 Show GitHub Exploit DB Packet Storm
196199 7.8 HIGH
Local 		google
opensuse 		guest-oslogin
leap 		A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi… CWE-276
Incorrect Default Permissions  		CVE-2020-8903 2024-11-21 14:39 2020-06-22 Show GitHub Exploit DB Packet Storm
196200 4.9 MEDIUM
Network 		isc
opensuse
netapp
canonical 		bind
leap
steelstore_cloud_integrated_storage
ubuntu_linux 		An attacker who is permitted to send zone data to a server via zone transfer can exploit this to intentionally trigger the assertion failure with a specially constructed zone, denying service to clie… CWE-617
 Reachable Assertion 		CVE-2020-8618 2024-11-21 14:39 2020-06-18 Show GitHub Exploit DB Packet Storm