Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252241	7.5	危険	日本電気アップルアライドテレシスサン・マイクロシステムズ BEAシステムズレッドハット	-	Java Web Start において許可されていないシステムクラスが実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-2435	2011-11-28 16:52	2007-04-30	Show	GitHub Exploit DB Packet Storm

252242	4	警告	サイボウズ	-	サイボウズ Office におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2677	2011-11-28 16:45	2011-10-7	Show	GitHub Exploit DB Packet Storm

252243	6.8	警告	Zenprise Inc.	-	Zenprise Device Manager にクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-4498	2011-11-28 14:56	2011-11-21	Show	GitHub Exploit DB Packet Storm

252244	7.5	危険	アップル	-	Apple iTunes における脆弱性に対するアップデート	CWE-94 コード・インジェクション	CVE-2008-3434	2011-11-28 14:56	2011-11-15	Show	GitHub Exploit DB Packet Storm

252245	7.5	危険	アップル	-	Apple Time Capsule および AirPort Base Station (802.11n) における複数の脆弱性に対するアップデート	CWE-20 不適切な入力確認	CVE-2011-0997	2011-11-28 14:52	2011-11-11	Show	GitHub Exploit DB Packet Storm

252246	9.3	危険	Aviosoft	-	Aviosoft DTV Player にバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4496	2011-11-28 14:49	2011-10-11	Show	GitHub Exploit DB Packet Storm

252247	5	警告	デル	-	Dell KACE K2000 System Deployment Appliance に不正ログイン可能な脆弱性	CWE-310 暗号の問題	CVE-2011-4046	2011-11-28 14:49	2011-11-9	Show	GitHub Exploit DB Packet Storm

252248	4.3	警告	デル	-	Dell KACE K2000 System Deployment Appliance に情報漏えいの脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-4048	2011-11-28 14:48	2011-11-9	Show	GitHub Exploit DB Packet Storm

252249	3.5	注意	デル	-	Dell KACE K2000 System Deployment Appliance にクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4436	2011-11-28 14:47	2011-11-9	Show	GitHub Exploit DB Packet Storm

252250	9.3	危険	デル	-	Dell KACE K2000 System Deployment Appliance にコマンドインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2011-4047	2011-11-28 14:46	2011-11-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
215001	7.5	HIGH Network	google	android	There is an improper configuration of recorder related service. Product: AndroidVersions: Android SoCAndroid ID: A-156333723	NVD-CWE-noinfo	CVE-2020-0228	2024-11-21 13:53	2020-07-18	Show	GitHub Exploit DB Packet Storm

215002	7.8	HIGH Local	google	android	In onCommand of CompanionDeviceManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege allowing background data…	CWE-862 Missing Authorization	CVE-2020-0227	2024-11-21 13:53	2020-07-18	Show	GitHub Exploit DB Packet Storm

215003	7.8	HIGH Local	google	android	In createWithSurfaceParent of Client.cpp, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege in the graphics server with no additional exe…	CWE-787 CWE-843 Out-of-bounds Write Type Confusion	CVE-2020-0226	2024-11-21 13:53	2020-07-18	Show	GitHub Exploit DB Packet Storm

215004	9.8	CRITICAL Network	google	android	In a2dp_vendor_ldac_decoder_decode_packet of a2dp_vendor_ldac_decoder.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no addit…	CWE-787 Out-of-bounds Write	CVE-2020-0225	2024-11-21 13:53	2020-07-18	Show	GitHub Exploit DB Packet Storm

215005	9.8	CRITICAL Network	google	android	In FastKeyAccumulator::GetKeysSlow of keys.cc, there is a possible out of bounds write due to type confusion. This could lead to remote code execution when processing a proxy configuration with no ad…	CWE-787 CWE-843 Out-of-bounds Write Type Confusion	CVE-2020-0224	2024-11-21 13:53	2020-07-18	Show	GitHub Exploit DB Packet Storm

215006	6.4	MEDIUM Local	google opensuse	android leap	In cdev_get of char_dev.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no…	CWE-362 CWE-416 Race Condition Use After Free	CVE-2020-0305	2024-11-21 13:53	2020-07-18	Show	GitHub Exploit DB Packet Storm

215007	9.8	CRITICAL Network	google	android	In crus_sp_shared_ioctl we first copy 4 bytes from userdata into "size" variable, and then use that variable as the size parameter for "copy_from_user", ending up overwriting memory following "crus_s…	CWE-787 Out-of-bounds Write	CVE-2020-0235	2024-11-21 13:53	2020-06-16	Show	GitHub Exploit DB Packet Storm

215008	7.8	HIGH Local	google	android	In crus_afe_get_param of msm-cirrus-playback.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution pr…	CWE-787 Out-of-bounds Write	CVE-2020-0234	2024-11-21 13:53	2020-06-16	Show	GitHub Exploit DB Packet Storm

215009	9.8	CRITICAL Network	google	android	Function abc_pcie_issue_dma_xfer_sync creates a transfer object, adds it to the session object then continues to work with it. A concurrent thread could retrieve created transfer object from the sess…	CWE-416 Use After Free	CVE-2020-0232	2024-11-21 13:53	2020-06-16	Show	GitHub Exploit DB Packet Storm

215010	9.8	CRITICAL Network	google	android	This is an unbounded write into kernel global memory, via a user-controlled buffer size.Product: AndroidVersions: Android kernelAndroid ID: A-135130450	CWE-787 Out-of-bounds Write	CVE-2020-0223	2024-11-21 13:53	2020-06-16	Show	GitHub Exploit DB Packet Storm