Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251721	4.3	警告	SAP	-	SAP Crystal Report Server の pubDBLogon.jsp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4805	2011-12-16 15:18	2011-12-14	Show	GitHub Exploit DB Packet Storm

251722	7.5	危険	Authenex	-	ASAS Server 上の Authenex Web Management Control における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4801	2011-12-16 15:16	2011-09-16	Show	GitHub Exploit DB Packet Storm

251723	9	危険	Rhino Software	-	Serv-U FTP サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4800	2011-12-16 15:15	2011-12-14	Show	GitHub Exploit DB Packet Storm

251724	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer におけるコンテンツを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-3404	2011-12-16 11:52	2011-12-13	Show	GitHub Exploit DB Packet Storm

251725	9.3	危険	マイクロソフト	-	Windows 2008 および Windows 7 上で稼働する Microsoft Internet Explorer 9 における権限昇格の脆弱性	CWE-Other その他	CVE-2011-2019	2011-12-16 11:50	2011-12-13	Show	GitHub Exploit DB Packet Storm

251726	7.2	危険	マイクロソフト	-	複数の Microsoft Windows のカーネルにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2018	2011-12-16 11:49	2011-12-13	Show	GitHub Exploit DB Packet Storm

251727	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 8 の XSS フィルタにおけるコンテンツを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-1992	2011-12-16 11:48	2011-12-13	Show	GitHub Exploit DB Packet Storm

251728	9.3	危険	マイクロソフト	-	Microsoft Excel および Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-3403	2011-12-16 11:40	2011-12-13	Show	GitHub Exploit DB Packet Storm

251729	9	危険	マイクロソフト	-	Microsoft Windows におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3406	2011-12-16 11:38	2011-12-13	Show	GitHub Exploit DB Packet Storm

251730	9.3	危険	マイクロソフト	-	複数の Microsoft PowerPoint 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-3413	2011-12-16 11:37	2011-12-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209091	5.3	MEDIUM Network	butok	fnet	An issue was discovered in FNET through 4.6.4. The code that initializes the DNS client interface structure does not set sufficiently random transaction IDs (they are always set to 1 in _fnet_dns_pol…	CWE-330 Use of Insufficiently Random Values	CVE-2020-17470	2024-11-21 14:08	2020-12-12	Show	GitHub Exploit DB Packet Storm

209092	7.5	HIGH Network	butok	fnet	An issue was discovered in FNET through 4.6.4. The code for processing the hop-by-hop header (in the IPv6 extension headers) doesn't check for a valid length of an extension header, and therefore an …	CWE-125 Out-of-bounds Read	CVE-2020-17468	2024-11-21 14:08	2020-12-12	Show	GitHub Exploit DB Packet Storm

209093	9.1	CRITICAL Network	butok	fnet	An issue was discovered in FNET through 4.6.4. The code for processing the hostname from an LLMNR request doesn't check for '\0' termination. Therefore, the deduced length of the hostname doesn't ref…	CWE-125 Out-of-bounds Read	CVE-2020-17467	2024-11-21 14:08	2020-12-12	Show	GitHub Exploit DB Packet Storm

209094	7.5	HIGH Network	butok	fnet	An issue was discovered in FNET through 4.6.4. The code for IPv6 fragment reassembly tries to access a previous fragment starting from a network incoming fragment that still doesn't have a reference …	CWE-824 Access of Uninitialized Pointer	CVE-2020-17469	2024-11-21 14:08	2020-12-12	Show	GitHub Exploit DB Packet Storm

209095	7.5	HIGH Network	altran	picotcp	An issue was discovered in picoTCP 1.7.0. The code for processing the IPv6 destination options does not check for a valid length of the destination options header. This results in an Out-of-Bounds Re…	CWE-125 Out-of-bounds Read	CVE-2020-17445	2024-11-21 14:08	2020-12-12	Show	GitHub Exploit DB Packet Storm

209096	7.5	HIGH Network	altran	picotcp	An issue was discovered in picoTCP 1.7.0. The routine for processing the next header field (and deducing whether the IPv6 extension headers are valid) doesn't check whether the header extension lengt…	CWE-20 CWE-190 CWE-835 Improper Input Validation Integer Overflow or Wraparound Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2020-17444	2024-11-21 14:08	2020-12-12	Show	GitHub Exploit DB Packet Storm

209097	7.5	HIGH Network	altran	picotcp	An issue was discovered in picoTCP 1.7.0. The code for creating an ICMPv6 echo replies doesn't check whether the ICMPv6 echo request packet's size is shorter than 8 bytes. If the size of the incoming…	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2020-17443	2024-11-21 14:08	2020-12-12	Show	GitHub Exploit DB Packet Storm

209098	7.5	HIGH Network	altran	picotcp	An issue was discovered in picoTCP 1.7.0. The code for parsing the hop-by-hop IPv6 extension headers does not validate the bounds of the extension header length value, which may result in Integer Wra…	CWE-190 Integer Overflow or Wraparound	CVE-2020-17442	2024-11-21 14:08	2020-12-12	Show	GitHub Exploit DB Packet Storm

209099	9.1	CRITICAL Network	altran microchip	picotcp mplab_harmony	An issue was discovered in picoTCP 1.7.0. The code for processing the IPv6 headers does not validate whether the IPv6 payload length field is equal to the actual size of the payload, which leads to a…	CWE-125 Out-of-bounds Read	CVE-2020-17441	2024-11-21 14:08	2020-12-12	Show	GitHub Exploit DB Packet Storm

209100	7.5	HIGH Network	uip_project	uip	An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. The code that parses incoming DNS packets does not validate that domain names present in the DNS responses have '\0' ter…	NVD-CWE-Other	CVE-2020-17440	2024-11-21 14:08	2020-12-12	Show	GitHub Exploit DB Packet Storm