Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252441	5	警告	アップル	-	Apple Mac OS X の AFP Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1828	2010-11-25 15:17	2010-11-15	Show	GitHub Exploit DB Packet Storm

252442	4.3	警告	アップル	-	Apple Mac OS X の Time Machine における重要な情報を取得される脆弱性	CWE-DesignError	CVE-2010-1803	2010-11-25 15:16	2010-11-15	Show	GitHub Exploit DB Packet Storm

252443	7.5	危険	アップル	-	Apple Mac OS X の OpenSSL における X.509 証明書の認証を回避される脆弱性	CWE-310 暗号の問題	CVE-2010-1378	2010-11-25 15:15	2010-11-12	Show	GitHub Exploit DB Packet Storm

252444	4.9	警告	アップル	-	Apple Mac OS X の hfs 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2010-0105	2010-11-25 15:15	2010-04-27	Show	GitHub Exploit DB Packet Storm

252445	9.3	危険	アップルアドビシステムズレッドハット	-	Adobe Flash の ActionScript の処理に脆弱性	CWE-94 コード・インジェクション	CVE-2010-0209	2010-11-25 15:14	2010-08-11	Show	GitHub Exploit DB Packet Storm

252446	9.3	危険	アップルアドビシステムズターボリナックスレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-399 CWE-noinfo	CVE-2009-3793	2010-11-25 15:13	2010-06-10	Show	GitHub Exploit DB Packet Storm

252447	6.8	警告	アップル GNU Project ターボリナックスサイバートラスト株式会社レッドハット	-	GNU gzip における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-0001	2010-11-25 15:12	2010-01-29	Show	GitHub Exploit DB Packet Storm

252448	2.6	注意	アップルサン・マイクロシステムズ Apache Software Foundation	-	Apache HTTP Server 用 mod_perl の Status.pm におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0796	2010-11-25 15:12	2009-04-7	Show	GitHub Exploit DB Packet Storm

252449	6.8	警告	アップルサイバートラスト株式会社 WebDAV レッドハット	-	neon における X.509 証明書の処理に関する任意の SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2009-2474	2010-11-25 15:11	2009-08-18	Show	GitHub Exploit DB Packet Storm

252450	4.3	警告	アップルサイバートラスト株式会社 WebDAV レッドハット	-	neon におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-2473	2010-11-25 15:11	2009-08-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199761	9.1	CRITICAL Network	urve	urve	An issue was discovered in URVE Build 24.03.2020. Using the _internal/pc/shutdown.php path, it is possible to shutdown the system. Among others, the following files and scripts are also accessible: _…	CWE-306 Missing Authentication for Critical Function	CVE-2020-29551	2024-11-21 14:24	2020-12-24	Show	GitHub Exploit DB Packet Storm

199762	7.5	HIGH Network	urve	urve	An issue was discovered in URVE Build 24.03.2020. The password of an integration user account (used for the connection of the MS Office 365 Integration Service) is stored in cleartext in configuratio…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-29550	2024-11-21 14:24	2020-12-24	Show	GitHub Exploit DB Packet Storm

199763	9.8	CRITICAL Network	zyxel	usg20-vpn_firmware usg20w-vpn_firmware usg40_firmware usg40w_firmware usg60_firmware usg60w_firmware usg110_firmware usg210_firmware usg310_firmware usg1100_firmware usg…	Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found in cleartext in the firmware. This accoun…	CWE-522 Insufficiently Protected Credentials	CVE-2020-29583	2024-11-21 14:24	2020-12-23	Show	GitHub Exploit DB Packet Storm

199764	7.5	HIGH Network	miniweb_http_server_project	miniweb_http_server	MiniWeb HTTP server 0.8.19 allows remote attackers to cause a denial of service (daemon crash) via a long name for the first parameter in a POST request.	CWE-120 Classic Buffer Overflow	CVE-2020-29596	2024-11-21 14:24	2020-12-22	Show	GitHub Exploit DB Packet Storm

199765	4.3	MEDIUM Network	atlassian	crucible	Affected versions of Atlassian Crucible allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the file upload request feature of code reviews.…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-29447	2024-11-21 14:24	2020-12-21	Show	GitHub Exploit DB Packet Storm

199766	7.5	HIGH Network	golang	ssh	A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers.	CWE-476 NULL Pointer Dereference	CVE-2020-29652	2024-11-21 14:24	2020-12-17	Show	GitHub Exploit DB Packet Storm

199767	7.2	HIGH Network	pluck-cms	pluck	A file upload restriction bypass vulnerability in Pluck CMS before 4.7.13 allows an admin privileged user to gain access in the host through the "manage files" functionality, which may result in remo…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-29607	2024-11-21 14:24	2020-12-17	Show	GitHub Exploit DB Packet Storm

199768	9.1	CRITICAL Network	icinga	icinga	Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal will automatically be renewed, ignoring the CRL. This issue is fixed in Icinga 2 v2.11.8 and v2.12.…	CWE-295 Improper Certificate Validation	CVE-2020-29663	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm

199769	7.5	HIGH Network	xen	xapi	An issue was discovered in Xen XAPI before 2020-12-15. Certain xenstore keys provide feedback from the guest, and are therefore watched by toolstack. Specifically, keys are watched by xenopsd, and da…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-29487	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm

199770	5.5	MEDIUM Local	xen debian fedoraproject	xen debian_linux fedora	An issue was discovered in Xen 4.6 through 4.14.x. When acting upon a guest XS_RESET_WATCHES request, not all tracking information is freed. A guest can cause unbounded memory usage in oxenstored. Th…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2020-29485	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm