Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251791 7.8 危険 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の CIFS 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2248 2011-03-1 14:31 2010-04-26 Show GitHub Exploit DB Packet Storm
251792 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の vidplin.dll におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4393 2011-02-28 16:33 2011-01-27 Show GitHub Exploit DB Packet Storm
251793 7.6 危険 サイバートラスト株式会社
Pango.org
レッドハット		 - Pango の pango_ft2_font_render_box_glyph 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0020 2011-02-28 16:30 2011-01-24 Show GitHub Exploit DB Packet Storm
251794 6.8 警告 Lomtec - Lomtec ActiveWeb Professional 3.0 CMS における任意のファイルをアップロードおよび実行可能な脆弱性 CWE-Other
その他 		CVE-2011-0678 2011-02-28 16:25 2011-01-26 Show GitHub Exploit DB Packet Storm
251795 4.9 警告 サイバートラスト株式会社
VMware
Xen プロジェクト
レッドハット		 - Xen の arch/ia64/xen/faults.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-2070 2011-02-28 14:55 2010-06-16 Show GitHub Exploit DB Packet Storm
251796 7.1 危険 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の Bluetooth ソケットにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-1084 2011-02-28 14:54 2010-04-6 Show GitHub Exploit DB Packet Storm
251797 5 警告 Eyrie
VMware
レッドハット		 - pam_krb5 における有効なユーザ名を列挙される脆弱性 CWE-287
不適切な認証 		CVE-2009-1384 2011-02-28 14:51 2009-05-28 Show GitHub Exploit DB Packet Storm
251798 4.4 警告 サイバートラスト株式会社
VMware
レッドハット		 - Red Hat Enterprise Linux の pam_krb5 における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3825 2011-02-28 14:48 2008-10-2 Show GitHub Exploit DB Packet Storm
251799 6.8 警告 Haxx
アップル
VMware
サイバートラスト株式会社
レッドハット		 - libcurl の content_encoding.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0734 2011-02-28 14:41 2010-02-9 Show GitHub Exploit DB Packet Storm
251800 4.3 警告 VMware
OpenSSL Project		 - OpenSSL クライアントの ssl3_get_key_exchange 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2939 2011-02-28 14:39 2010-08-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197101 7.5 HIGH
Network 		ibm aspera_high-speed_transfer_server_for_cloud_pak_for_integration
aspera_shares_on_demand
aspera_server_on_demand
aspera_faspex_on_demand
aspera_application_platform_on_demand
aspera_tra… 		Certain IBM Aspera applications are vulnerable to arbitrary memory corruption based on the product configuration, which could allow an attacker with intimate knowledge of the system to execute arbitr… CWE-787
 Out-of-bounds Write 		CVE-2020-4435 2024-11-21 14:32 2020-06-10 Show GitHub Exploit DB Packet Storm
197102 7.5 HIGH
Network 		ibm aspera_high-speed_transfer_server_for_cloud_pak_for_integration
aspera_shares_on_demand
aspera_server_on_demand
aspera_faspex_on_demand
aspera_application_platform_on_demand
aspera_tra… 		Certain IBM Aspera applications are vulnerable to buffer overflow based on the product configuration and valid authentication, which could allow an attacker with intimate knowledge of the system to e… CWE-120
Classic Buffer Overflow 		CVE-2020-4434 2024-11-21 14:32 2020-06-10 Show GitHub Exploit DB Packet Storm
197103 7.5 HIGH
Network 		ibm aspera_high-speed_transfer_server_for_cloud_pak_for_integration
aspera_shares_on_demand
aspera_server_on_demand
aspera_faspex_on_demand
aspera_application_platform_on_demand
aspera_tra… 		Certain IBM Aspera applications are vulnerable to a stack-based buffer overflow, caused by improper bounds checking. This could allow a remote attacker with intimate knowledge of the server to execut… CWE-20
CWE-787
 Improper Input Validation 
 Out-of-bounds Write 		CVE-2020-4433 2024-11-21 14:32 2020-06-10 Show GitHub Exploit DB Packet Storm
197104 7.5 HIGH
Network 		ibm aspera_high-speed_transfer_server_for_cloud_pak_for_integration
aspera_shares_on_demand
aspera_server_on_demand
aspera_faspex_on_demand
aspera_application_platform_on_demand
aspera_tra… 		Certain IBM Aspera applications are vulnerable to command injection after valid authentication, which could allow an attacker with intimate knowledge of the system to execute commands in a SOAP API. … CWE-77
Command Injection 		CVE-2020-4432 2024-11-21 14:32 2020-06-10 Show GitHub Exploit DB Packet Storm
197105 6.1 MEDIUM
Network 		boltcms bolt In Bolt CMS before version 3.7.1, the filename of uploaded files was vulnerable to stored XSS. It is not possible to inject javascript code in the file name when creating/uploading the file. But, onc… CWE-79
Cross-site Scripting 		CVE-2020-4041 2024-11-21 14:32 2020-06-9 Show GitHub Exploit DB Packet Storm
197106 4.3 MEDIUM
Network 		boltcms bolt Bolt CMS before version 3.7.1 lacked CSRF protection in the preview generating endpoint. Previews are intended to be generated by the admins, developers, chief-editors, and editors, who are authorize… - CVE-2020-4040 2024-11-21 14:32 2020-06-9 Show GitHub Exploit DB Packet Storm
197107 7.4 HIGH
Network 		prisma graphql-playground-middleware-hapi
graphql-playground-middleware-lambda
graphql-playground-middleware-koa
graphql-playground-middleware-express
graphql-playground-html 		GraphQL Playground (graphql-playground-html NPM package) before version 1.6.22 have a severe XSS Reflection attack vulnerability. All unsanitized user input passed into renderPlaygroundPage() method … - CVE-2020-4038 2024-11-21 14:32 2020-06-9 Show GitHub Exploit DB Packet Storm
197108 7.4 HIGH
Network 		ibm maximo_asset_management IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to server side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially le… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-4529 2024-11-21 14:32 2020-06-8 Show GitHub Exploit DB Packet Storm
197109 9.8 CRITICAL
Network 		ibm websphere_application_server IBM WebSphere Application Server 8.5 and 9.0 traditional could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects. IBM X-Force ID:… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-4450 2024-11-21 14:32 2020-06-6 Show GitHub Exploit DB Packet Storm
197110 7.5 HIGH
Network 		ibm websphere_application_server IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 traditional could allow a remote attacker to obtain sensitive information with a specially-crafted sequence of serialized objects. IBM X-Force … CWE-502
 Deserialization of Untrusted Data 		CVE-2020-4449 2024-11-21 14:32 2020-06-6 Show GitHub Exploit DB Packet Storm