Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251271	4.3	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-2275	2011-09-9 09:49	2011-07-19	Show	GitHub Exploit DB Packet Storm

251272	4.3	警告	リアルネットワークス	-	RealNetworks RealPlayer の ActiveX コントロールにおけるクロスゾーンスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2947	2011-09-8 13:36	2011-08-16	Show	GitHub Exploit DB Packet Storm

251273	10	危険	リアルネットワークス	-	RealNetworks RealPlayer および RealPlayer Enterprise の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-2946	2011-09-8 13:35	2011-08-16	Show	GitHub Exploit DB Packet Storm

251274	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2945	2011-09-8 13:34	2011-08-16	Show	GitHub Exploit DB Packet Storm

251275	10	危険	Mozilla Foundation レッドハット	-	複数の Mozilla 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0084	2011-09-8 13:33	2011-08-16	Show	GitHub Exploit DB Packet Storm

251276	4.3	警告	Mozilla Foundation レッドハット	-	複数の Mozilla 製品における同一生成元ポリシーを回避される脆弱性	CWE-200 情報漏えい	CVE-2011-2983	2011-09-8 13:32	2011-08-16	Show	GitHub Exploit DB Packet Storm

251277	10	危険	Mozilla Foundation レッドハット	-	複数の Mozilla 製品におけるクローム特権で任意の JavaScript を実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-2984	2011-09-7 11:35	2011-08-16	Show	GitHub Exploit DB Packet Storm

251278	7.2	危険	Mozilla Foundation	-	Mozilla Firefox における権限昇格の脆弱性	CWE-Other その他	CVE-2011-2980	2011-09-7 11:34	2011-08-16	Show	GitHub Exploit DB Packet Storm

251279	10	危険	Mozilla Foundation レッドハット	-	複数の Mozilla 製品の appendChild 関数における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-2378	2011-09-7 11:33	2011-08-16	Show	GitHub Exploit DB Packet Storm

251280	9.3	危険	Mozilla Foundation レッドハット	-	複数の Mozilla 製品のイベント管理実装における同一生成元ポリシーを回避される脆弱性	CWE-16 環境設定	CVE-2011-2981	2011-09-7 11:32	2011-08-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196461	6.5	MEDIUM Network	avaya	aura_system_manager weblm	An XML external entity (XXE) vulnerability in Avaya WebLM admin interface allows authenticated users to read arbitrary files or conduct server-side request forgery (SSRF) attacks via a crafted DTD in…	CWE-611 XXE	CVE-2020-7032	2024-11-21 14:36	2020-11-13	Show	GitHub Exploit DB Packet Storm

196462	5.4	MEDIUM Network	avaya	equinox_conferencing	A Cross Site Scripting (XSS) Vulnerability on the Unified Portal Client (web client) used in Avaya Equinox Conferencing can allow an authenticated user to perform XSS attacks. The affected versions o…	CWE-79 Cross-site Scripting	CVE-2020-7033	2024-11-21 14:36	2020-11-13	Show	GitHub Exploit DB Packet Storm

196463	8.8	HIGH Network	hp	oneview synergy_composer_2 synergy_composer	There is a remote escalation of privilege possible for a malicious user that has a OneView account in OneView and Synergy Composer. HPE has provided updates to Oneview and Synergy Composer: Update to…	NVD-CWE-noinfo	CVE-2020-7198	2024-11-21 14:36	2020-11-7	Show	GitHub Exploit DB Packet Storm

196464	8.8	HIGH Network	zte	zxa10_eodn_firmware	A ZTE product is impacted by an information leak vulnerability. An attacker could use this vulnerability to obtain the authentication password of the handheld terminal and access the device illegally…	NVD-CWE-noinfo	CVE-2020-6877	2024-11-21 14:36	2020-11-6	Show	GitHub Exploit DB Packet Storm

196465	6.8	MEDIUM Physics	hp	apollo_2000_firmware apollo_4200_gen10_firmware apollo_4500_firmware proliant_xl230k_gen10_firmware proliant_xl270d_gen10_firmware proliant_bl460c_gen10_firmware proliant_dl120_gen1…	A local elevation of privilege using physical access security vulnerability was found in HPE Proliant Gen10 Servers using Intel Innovation Engine (IE). This attack requires a physical attack to the s…	NVD-CWE-noinfo	CVE-2020-7207	2024-11-21 14:36	2020-11-6	Show	GitHub Exploit DB Packet Storm

196466	7.2	HIGH Network	arubanetworks	airwave_glass	A remote execution of arbitrary commands vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2.	NVD-CWE-noinfo	CVE-2020-7129	2024-11-21 14:36	2020-11-5	Show	GitHub Exploit DB Packet Storm

196467	9.8	CRITICAL Network	arubanetworks	airwave_glass	A remote unauthenticated arbitrary code execution vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2.	CWE-306 Missing Authentication for Critical Function	CVE-2020-7128	2024-11-21 14:36	2020-11-5	Show	GitHub Exploit DB Packet Storm

196468	5.3	MEDIUM Network	mozilla	firefox	When performing EC scalar point multiplication, the wNAF point multiplication algorithm was used; which leaked partial information about the nonce used during signature generation. Given an electro-m…	NVD-CWE-noinfo	CVE-2020-6829	2024-11-21 14:36	2020-10-28	Show	GitHub Exploit DB Packet Storm

196469	9.8	CRITICAL Network	hp	storeserv_management_console	SSMC3.7.0.0 is vulnerable to remote authentication bypass. HPE StoreServ Management Console (SSMC) 3.7.0.0 is an off node multiarray manager web application and remains isolated from data on the mana…	CWE-287 Improper Authentication	CVE-2020-7197	2024-11-21 14:36	2020-10-27	Show	GitHub Exploit DB Packet Storm

196470	6.5	MEDIUM Network	hp	ezmeral_container_platform bluedata_epic	The HPE BlueData EPIC Software Platform version 4.0 and HPE Ezmeral Container Platform 5.0 use an insecure method of handling sensitive Kerberos passwords that is susceptible to unauthorized intercep…	CWE-200 CWE-522 Information Exposure Insufficiently Protected Credentials	CVE-2020-7196	2024-11-21 14:36	2020-10-27	Show	GitHub Exploit DB Packet Storm