Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252981 6.9 警告 CVS
レッドハット		 - CVS の rcs.c 内にある apply_rcs_change 関数における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2010-3846 2010-12-21 15:30 2010-11-5 Show GitHub Exploit DB Packet Storm
252982 10 危険 RealFlex Technologies - RealFlex RealWin HMI サービスにバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4142 2010-12-21 15:25 2010-11-22 Show GitHub Exploit DB Packet Storm
252983 4.3 警告 Webmin Project
オラクル		 - Webmin および Usermin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4568 2010-12-21 15:14 2010-01-5 Show GitHub Exploit DB Packet Storm
252984 6.8 警告 富士通 - Interstage Application Server における許可されていない IP アドレスからのリクエストのアクセスを許可する脆弱性 CWE-noinfo
情報不足 		- 2010-12-21 14:14 2010-11-19 Show GitHub Exploit DB Packet Storm
252985 8.3 危険 日立 - 日立の Groupmax 関連製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		- 2010-12-21 14:06 2010-11-17 Show GitHub Exploit DB Packet Storm
252986 4.3 警告 The PHP Group
アップル
サイバートラスト株式会社
レッドハット		 - PHP の var_export 関数における、重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-2531 2010-12-20 16:08 2010-07-22 Show GitHub Exploit DB Packet Storm
252987 4.6 警告 サイバートラスト株式会社
Linux
レッドハット		 - Hypervisor の命令のエミュレーションにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-0435 2010-12-20 16:01 2010-08-19 Show GitHub Exploit DB Packet Storm
252988 5 警告 レッドハット
Pidgin
オラクル		 - Pidgin の MSN プロトコルプラグインの msn_emoticon_msg 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1624 2010-12-20 16:00 2010-05-12 Show GitHub Exploit DB Packet Storm
252989 4.3 警告 IBM
Apache Software Foundation
アップル
サイバートラスト株式会社
富士通
ヒューレット・パッカード
ターボリナックス
日立		 - Apache HTTP Server の 413 エラーメッセージにおける HTTP メソッドを適切に検査しない問題 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6203 2010-12-20 15:38 2007-12-3 Show GitHub Exploit DB Packet Storm
252990 4.3 警告 シマンテック - PGP Desktop にデータインジェクションの脆弱性 CWE-310
暗号の問題 		CVE-2010-3618 2010-12-20 14:44 2010-11-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196461 6.5 MEDIUM
Network 		avaya aura_system_manager
weblm 		An XML external entity (XXE) vulnerability in Avaya WebLM admin interface allows authenticated users to read arbitrary files or conduct server-side request forgery (SSRF) attacks via a crafted DTD in… CWE-611
XXE 		CVE-2020-7032 2024-11-21 14:36 2020-11-13 Show GitHub Exploit DB Packet Storm
196462 5.4 MEDIUM
Network 		avaya equinox_conferencing A Cross Site Scripting (XSS) Vulnerability on the Unified Portal Client (web client) used in Avaya Equinox Conferencing can allow an authenticated user to perform XSS attacks. The affected versions o… CWE-79
Cross-site Scripting 		CVE-2020-7033 2024-11-21 14:36 2020-11-13 Show GitHub Exploit DB Packet Storm
196463 8.8 HIGH
Network 		hp oneview
synergy_composer_2
synergy_composer 		There is a remote escalation of privilege possible for a malicious user that has a OneView account in OneView and Synergy Composer. HPE has provided updates to Oneview and Synergy Composer: Update to… NVD-CWE-noinfo
CVE-2020-7198 2024-11-21 14:36 2020-11-7 Show GitHub Exploit DB Packet Storm
196464 8.8 HIGH
Network 		zte zxa10_eodn_firmware A ZTE product is impacted by an information leak vulnerability. An attacker could use this vulnerability to obtain the authentication password of the handheld terminal and access the device illegally… NVD-CWE-noinfo
CVE-2020-6877 2024-11-21 14:36 2020-11-6 Show GitHub Exploit DB Packet Storm
196465 6.8 MEDIUM
Physics 		hp apollo_2000_firmware
apollo_4200_gen10_firmware
apollo_4500_firmware
proliant_xl230k_gen10_firmware
proliant_xl270d_gen10_firmware
proliant_bl460c_gen10_firmware
proliant_dl120_gen1… 		A local elevation of privilege using physical access security vulnerability was found in HPE Proliant Gen10 Servers using Intel Innovation Engine (IE). This attack requires a physical attack to the s… NVD-CWE-noinfo
CVE-2020-7207 2024-11-21 14:36 2020-11-6 Show GitHub Exploit DB Packet Storm
196466 7.2 HIGH
Network 		arubanetworks airwave_glass A remote execution of arbitrary commands vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. NVD-CWE-noinfo
CVE-2020-7129 2024-11-21 14:36 2020-11-5 Show GitHub Exploit DB Packet Storm
196467 9.8 CRITICAL
Network 		arubanetworks airwave_glass A remote unauthenticated arbitrary code execution vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. CWE-306
Missing Authentication for Critical Function 		CVE-2020-7128 2024-11-21 14:36 2020-11-5 Show GitHub Exploit DB Packet Storm
196468 5.3 MEDIUM
Network 		mozilla firefox When performing EC scalar point multiplication, the wNAF point multiplication algorithm was used; which leaked partial information about the nonce used during signature generation. Given an electro-m… NVD-CWE-noinfo
CVE-2020-6829 2024-11-21 14:36 2020-10-28 Show GitHub Exploit DB Packet Storm
196469 9.8 CRITICAL
Network 		hp storeserv_management_console SSMC3.7.0.0 is vulnerable to remote authentication bypass. HPE StoreServ Management Console (SSMC) 3.7.0.0 is an off node multiarray manager web application and remains isolated from data on the mana… CWE-287
Improper Authentication 		CVE-2020-7197 2024-11-21 14:36 2020-10-27 Show GitHub Exploit DB Packet Storm
196470 6.5 MEDIUM
Network 		hp ezmeral_container_platform
bluedata_epic 		The HPE BlueData EPIC Software Platform version 4.0 and HPE Ezmeral Container Platform 5.0 use an insecure method of handling sensitive Kerberos passwords that is susceptible to unauthorized intercep… CWE-200
CWE-522
Information Exposure
 Insufficiently Protected Credentials 		CVE-2020-7196 2024-11-21 14:36 2020-10-27 Show GitHub Exploit DB Packet Storm