Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252691	10	危険	Mozilla Foundation	-	複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2011-3660	2011-12-22 15:41	2011-12-20	Show	GitHub Exploit DB Packet Storm

252692	7.5	危険	Mozilla Foundation	-	複数の Mozilla 製品の SVG 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3658	2011-12-22 15:40	2011-12-20	Show	GitHub Exploit DB Packet Storm

252693	6.8	警告	アップル	-	Apple QuickTime における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-3228	2011-12-22 15:24	2011-10-14	Show	GitHub Exploit DB Packet Storm

252694	4.3	警告	アップル	-	Apple QuickTime における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3220	2011-12-22 15:09	2011-10-14	Show	GitHub Exploit DB Packet Storm

252695	2.6	注意	アップル	-	Apple QuickTime Player におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3218	2011-12-22 15:02	2011-10-14	Show	GitHub Exploit DB Packet Storm

252696	7.2	危険	マイクロソフト	-	Microsoft Windows における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3408	2011-12-22 14:44	2011-12-13	Show	GitHub Exploit DB Packet Storm

252697	4.7	警告	BlackBerry	-	RIM BlackBerry Desktop Software における .ipd ファイルを復号される脆弱性	CWE-310 暗号の問題	CVE-2010-3741	2011-12-22 12:06	2010-10-5	Show	GitHub Exploit DB Packet Storm

252698	9.3	危険	BlackBerry	-	RIM BlackBerry Enterprise Server および BlackBerry Professional Software におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4778	2011-12-22 12:05	2009-12-1	Show	GitHub Exploit DB Packet Storm

252699	5	警告	BlackBerry	-	BlackBerry 8800 上の RIM BlackBerry Browser におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-3944	2011-12-22 12:04	2009-11-16	Show	GitHub Exploit DB Packet Storm

252700	4.3	警告	PukiWiki Plus!	-	PukiWiki Plus! におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3990	2011-12-22 12:03	2011-12-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208731	7.5	HIGH Network	squid-cache canonical debian fedoraproject opensuse	squid ubuntu_linux debian_linux fedora leap	Squid before 4.13 and 5.x before 5.0.4 allows a trusted peer to perform Denial of Service by consuming all available CPU cycles during handling of a crafted Cache Digest response message. This only o…	CWE-667 Improper Locking	CVE-2020-24606	2024-11-21 14:15	2020-08-25	Show	GitHub Exploit DB Packet Storm

208732	6.5	MEDIUM Network	wso2	identity_server_analytics api_microgateway api_manager enterprise_integrator api_manager_analytics	The Management Console in certain WSO2 products allows XXE attacks during EventReceiver updates. This affects API Manager through 3.0.0, API Manager Analytics 2.2.0 and 2.5.0, API Microgateway 2.2.0,…	CWE-611 XXE	CVE-2020-24591	2024-11-21 14:15	2020-08-22	Show	GitHub Exploit DB Packet Storm

208733	9.1	CRITICAL Network	wso2	api_microgateway api_manager	The Management Console in WSO2 API Manager through 3.1.0 and API Microgateway 2.2.0 allows XML Entity Expansion attacks.	CWE-776 XML Entity Expansion	CVE-2020-24590	2024-11-21 14:15	2020-08-22	Show	GitHub Exploit DB Packet Storm

208734	9.1	CRITICAL Network	wso2	api_microgateway api_manager	The Management Console in WSO2 API Manager through 3.1.0 and API Microgateway 2.2.0 allows XML External Entity injection (XXE) attacks.	CWE-611 XXE	CVE-2020-24589	2024-11-21 14:15	2020-08-22	Show	GitHub Exploit DB Packet Storm

208735	5.3	MEDIUM Network	wolfssl	wolfssl	An issue was discovered in the DTLS handshake implementation in wolfSSL before 4.5.0. Clear DTLS application_data messages in epoch 0 do not produce an out-of-order error. Instead, these messages are…	NVD-CWE-noinfo	CVE-2020-24585	2024-11-21 14:15	2020-08-21	Show	GitHub Exploit DB Packet Storm

208736	7.8	HIGH Local	gog	galaxy	The client (aka GalaxyClientService.exe) in GOG GALAXY through 2.0.41 (as of 12:58 AM Eastern, 9/26/21) allows local privilege escalation from any authenticated user to SYSTEM by instructing the Wind…	CWE-798 Use of Hard-coded Credentials	CVE-2020-24574	2024-11-21 14:15	2020-08-21	Show	GitHub Exploit DB Packet Storm

208737	7.5	HIGH Network	nexusdb	nexusdb	NexusQA NexusDB before 4.50.23 allows the reading of files via ../ directory traversal.	CWE-22 Path Traversal	CVE-2020-24571	2024-11-21 14:15	2020-08-21	Show	GitHub Exploit DB Packet Storm

208738	7.8	HIGH Local	voidtools	everything	voidtools Everything before 1.4.1 Beta Nightly 2020-08-18 allows privilege escalation via a Trojan horse urlmon.dll file in the installation directory. NOTE: this is only relevant if low-privileged u…	NVD-CWE-noinfo	CVE-2020-24567	2024-11-21 14:15	2020-08-21	Show	GitHub Exploit DB Packet Storm

208739	8.8	HIGH Local	qemu debian	qemu debian_linux	An issue was discovered in TCG Accelerator in QEMU 4.2.0, allows local attackers to execute arbitrary code, escalate privileges, and cause a denial of service (DoS). Note: This is disputed as a bug a…	NVD-CWE-noinfo	CVE-2020-24165	2024-11-21 14:14	2023-08-29	Show	GitHub Exploit DB Packet Storm

208740	5.5	MEDIUM Local	miniupnp_project	ngiflib	An issue was discovered in GetByte function in miniupnp ngiflib version 0.4, allows local attackers to cause a denial of service (DoS) via crafted .gif file (infinite loop).	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2020-24221	2024-11-21 14:14	2023-08-11	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed