Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252171 5 警告 OfficeSIP Communications - OfficeSIP Server におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1008 2012-02-10 15:03 2012-02-8 Show GitHub Exploit DB Packet Storm
252172 2.1 注意 Foswiki - Foswiki の UI/Register.pm におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1004 2012-02-10 15:02 2012-02-8 Show GitHub Exploit DB Packet Storm
252173 10 危険 Zakon Group - OpenConf における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-1002 2012-02-10 15:01 2012-02-2 Show GitHub Exploit DB Packet Storm
252174 7.5 危険 Tube Ace - Tube Ace の mobile/search/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1029 2012-02-10 15:00 2012-02-8 Show GitHub Exploit DB Packet Storm
252175 4.3 警告 Simple Groupware Solutions - SimpleGroupware の bin/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1028 2012-02-10 14:59 2012-02-2 Show GitHub Exploit DB Packet Storm
252176 7.5 危険 Johannes Ekberg - XRay CMS の login2.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1026 2012-02-10 14:15 2012-02-8 Show GitHub Exploit DB Packet Storm
252177 5 警告 Dream Property GmbH - Enigma2 Webinterface のファイルにおける絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1025 2012-02-10 14:01 2012-02-8 Show GitHub Exploit DB Packet Storm
252178 5 警告 Dream Property GmbH - Enigma2 Webinterface のファイルにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1024 2012-02-10 14:00 2012-02-8 Show GitHub Exploit DB Packet Storm
252179 6.8 警告 Apache Software Foundation - Apache Struts 2 における任意の Java メソッド実行の脆弱性 CWE-Other
その他 		CVE-2012-0838 2012-02-10 12:02 2012-02-10 Show GitHub Exploit DB Packet Storm
252180 5.8 警告 4homepages - 4images の admin/index.php におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1023 2012-02-10 11:10 2012-02-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
215421 2.4 LOW
Physics 		baxter sigma_spectrum_infusion_system_firmware Baxter Sigma Spectrum Infusion Pumps Sigma Spectrum Infusion System v's6.x model 35700BAX & Baxter Spectrum Infusion System v's8.x model 35700BAX2 contain hardcoded passwords when physically entered … CWE-798
 Use of Hard-coded Credentials 		CVE-2020-12039 2024-11-21 13:59 2020-06-29 Show GitHub Exploit DB Packet Storm
215422 7.5 HIGH
Network 		baxter prismaflex_firmware
prismax_firmware 		Baxter PrismaFlex all versions, PrisMax all versions prior to 3.x, The affected devices do not implement data-in-transit encryption (e.g., TLS/SSL) when configured to send treatment data to a PDMS (P… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-12037 2024-11-21 13:59 2020-06-29 Show GitHub Exploit DB Packet Storm
215423 7.5 HIGH
Network 		baxter prismaflex_firmware
prismax_firmware 		Baxter PrismaFlex all versions, PrisMax all versions prior to 3.x, The affected devices do not implement data-in-transit encryption (e.g., TLS/SSL) when configured to send treatment data to a PDMS (P… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-12036 2024-11-21 13:59 2020-06-29 Show GitHub Exploit DB Packet Storm
215424 4.9 MEDIUM
Physics 		baxter prismaflex_firmware
prismax_firmware 		Baxter PrismaFlex all versions, PrisMax all versions prior to 3.x, The PrismaFlex device contains a hard-coded service password that provides access to biomedical information, device settings, calibr… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-12035 2024-11-21 13:59 2020-06-29 Show GitHub Exploit DB Packet Storm
215425 9.1 CRITICAL
Network 		baxter em2400_firmware
em1200_firmware 		Baxter ExactaMix EM 2400 Versions 1.10, 1.11 and ExactaMix EM1200 Versions 1.1, 1.2 systems store device data with sensitive information in an unencrypted database. This could allow an attacker with … CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-12032 2024-11-21 13:59 2020-06-29 Show GitHub Exploit DB Packet Storm
215426 6.1 MEDIUM
Physics 		baxter em2400_firmware
em1200_firmware 		Baxter ExactaMix EM 2400 versions 1.10, 1.11, 1.13, 1.14 and ExactaMix EM1200 Versions 1.1, 1.2, 1.4 and 1.5 does not restrict access to the USB interface from an unauthorized user with physical acce… NVD-CWE-Other
CVE-2020-12024 2024-11-21 13:59 2020-06-29 Show GitHub Exploit DB Packet Storm
215427 6.1 MEDIUM
Local 		baxter em2400_firmware
em1200_firmware 		Baxter ExactaMix EM 2400 Versions 1.10, 1.11, and 1.13 and ExactaMix EM1200 Versions 1.1, 1.2, and 1.4 does not restrict non administrative users from gaining access to the operating system and editi… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2020-12020 2024-11-21 13:59 2020-06-29 Show GitHub Exploit DB Packet Storm
215428 9.8 CRITICAL
Network 		baxter em2400_firmware
em1200_firmware 		Baxter ExactaMix EM 2400 & EM 1200, Versions ExactaMix EM2400 Versions 1.10, 1.11, 1.13, 1.14, ExactaMix EM1200 Versions 1.1, 1.2, 1.4, 1.5, Baxter ExactaMix EM 2400 Versions 1.10, 1.11, 1.13, 1.14 a… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-12016 2024-11-21 13:59 2020-06-29 Show GitHub Exploit DB Packet Storm
215429 7.5 HIGH
Network 		baxter em2400_firmware
em1200_firmware 		Baxter ExactaMix EM 2400 Versions 1.10, 1.11 and ExactaMix EM1200 Versions 1.1, 1.2 systems use cleartext messages to communicate order information with an order entry system. This could allow an att… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-12008 2024-11-21 13:59 2020-06-29 Show GitHub Exploit DB Packet Storm
215430 6.1 MEDIUM
Physics 		baxter em2400_firmware
em1200_firmware 		Baxter ExactaMix EM 2400 & EM 1200, Versions ExactaMix EM2400 Versions 1.10, 1.11, 1.13, 1.14, ExactaMix EM1200 Versions 1.1, 1.2, 1.4, 1.5, Baxter ExactaMix EM 2400 Versions 1.10, 1.11, and 1.13, an… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-12012 2024-11-21 13:59 2020-06-29 Show GitHub Exploit DB Packet Storm