Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252481 7.5 危険 Authenex - ASAS Server 上の Authenex Web Management Control における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4801 2011-12-16 15:16 2011-09-16 Show GitHub Exploit DB Packet Storm
252482 9 危険 Rhino Software - Serv-U FTP サーバにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4800 2011-12-16 15:15 2011-12-14 Show GitHub Exploit DB Packet Storm
252483 4.3 警告 マイクロソフト - Microsoft Internet Explorer におけるコンテンツを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2011-3404 2011-12-16 11:52 2011-12-13 Show GitHub Exploit DB Packet Storm
252484 9.3 危険 マイクロソフト - Windows 2008 および Windows 7 上で稼働する Microsoft Internet Explorer 9 における権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-2019 2011-12-16 11:50 2011-12-13 Show GitHub Exploit DB Packet Storm
252485 7.2 危険 マイクロソフト - 複数の Microsoft Windows のカーネルにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2018 2011-12-16 11:49 2011-12-13 Show GitHub Exploit DB Packet Storm
252486 4.3 警告 マイクロソフト - Microsoft Internet Explorer 8 の XSS フィルタにおけるコンテンツを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2011-1992 2011-12-16 11:48 2011-12-13 Show GitHub Exploit DB Packet Storm
252487 9.3 危険 マイクロソフト - Microsoft Excel および Office における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-3403 2011-12-16 11:40 2011-12-13 Show GitHub Exploit DB Packet Storm
252488 9 危険 マイクロソフト - Microsoft Windows におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-3406 2011-12-16 11:38 2011-12-13 Show GitHub Exploit DB Packet Storm
252489 9.3 危険 マイクロソフト - 複数の Microsoft PowerPoint 製品における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-3413 2011-12-16 11:37 2011-12-13 Show GitHub Exploit DB Packet Storm
252490 9.3 危険 マイクロソフト - Microsoft PowerPoint 2007 および 2010 における権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-3396 2011-12-16 11:36 2011-12-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195601 7.8 HIGH
Local 		oracle openjdk An insecure modification flaw in the /etc/passwd file was found in the openjdk-1.8 and openjdk-11 containers. This flaw allows an attacker with access to the container to modify the /etc/passwd and e… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2021-20264 2024-11-21 14:46 2021-10-7 Show GitHub Exploit DB Packet Storm
195602 9.8 CRITICAL
Network 		ibm cloud_pak_for_security IBM Cloud Pak for Security (CP4S) 1.7.0.0, 1.7.1.0, 1.7.2.0, and 1.8.0.0 could allow an attacker to perform unauthorized actions due to improper or missing authentication controls. IBM X-Force ID: 19… CWE-287
Improper Authentication 		CVE-2021-20578 2024-11-21 14:46 2021-10-1 Show GitHub Exploit DB Packet Storm
195603 6.1 MEDIUM
Network 		ibm sterling_order_management IBM Sterling Order Management 9.4, 9.5, and 10.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fun… CWE-79
Cross-site Scripting 		CVE-2021-20554 2024-11-21 14:46 2021-10-1 Show GitHub Exploit DB Packet Storm
195604 4.4 MEDIUM
Local 		linux
debian 		linux_kernel
debian_linux 		A flaw was found in the Linux kernel. A corrupted timer tree caused the task wakeup to be missing in the timerqueue_add function in lib/timerqueue.c. This flaw allows a local attacker with special us… - CVE-2021-20317 2024-11-21 14:46 2021-09-27 Show GitHub Exploit DB Packet Storm
195605 4.3 MEDIUM
Network 		ibm sterling_file_gateway IBM Sterling File Gateway 2.2.0.0 through 6.1.0.3 could allow a remote authenciated user to obtain sensitive information. By sending a specially crafted request, the user could disclose a valid filep… NVD-CWE-noinfo
CVE-2021-20563 2024-11-21 14:46 2021-09-24 Show GitHub Exploit DB Packet Storm
195606 4.3 MEDIUM
Network 		ibm sterling_file_gateway IBM Sterling File Gateway 2.2.0.0 through 6.1.0.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information co… CWE-209
Information Exposure Through an Error Message 		CVE-2021-20485 2024-11-21 14:46 2021-09-24 Show GitHub Exploit DB Packet Storm
195607 5.4 MEDIUM
Network 		ibm sterling_file_gateway IBM Sterling File Gateway 2.2.0.0 through 6.1.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fu… CWE-79
Cross-site Scripting 		CVE-2021-20484 2024-11-21 14:46 2021-09-24 Show GitHub Exploit DB Packet Storm
195608 5.5 MEDIUM
Local 		ibm security_verify_bridge IBM Security Verify Bridge 1.0.5.0 does not properly validate a certificate which could allow a local attacker to obtain sensitive information that could aid in further attacks against the system. IB… CWE-295
Improper Certificate Validation  		CVE-2021-20435 2024-11-21 14:46 2021-09-24 Show GitHub Exploit DB Packet Storm
195609 4.4 MEDIUM
Local 		ibm security_verify_bridge IBM Security Verify Bridge 1.0.5.0 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 196346. CWE-522
 Insufficiently Protected Credentials 		CVE-2021-20434 2024-11-21 14:46 2021-09-24 Show GitHub Exploit DB Packet Storm
195610 2.7 LOW
Network 		ibm security_guardium IBM Security Guardium 11.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further … CWE-209
Information Exposure Through an Error Message 		CVE-2021-20377 2024-11-21 14:46 2021-09-24 Show GitHub Exploit DB Packet Storm