Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253141 2.6 注意 アップル
アドビシステムズ
レッドハット
オラクル		 - Flash Player におけるアクセス制限回避の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3636 2011-02-1 16:20 2010-11-9 Show GitHub Exploit DB Packet Storm
253142 8.5 危険 アップル
サイバートラスト株式会社
MySQL AB
レッドハット		 - MySQL の dispatch_command 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-134
書式文字列の問題 		CVE-2009-2446 2011-02-1 16:19 2009-07-7 Show GitHub Exploit DB Packet Storm
253143 9.3 危険 サン・マイクロシステムズ
OpenOffice.org Project
レッドハット		 - Windows 上で稼働する OpenOffice.org の Impress モジュールにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2936 2011-02-1 16:13 2010-08-25 Show GitHub Exploit DB Packet Storm
253144 9.3 危険 サン・マイクロシステムズ
OpenOffice.org Project
レッドハット		 - Windows 上で稼働する OpenOffice.org の Impress モジュールにおける任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2010-2935 2011-02-1 16:11 2010-08-25 Show GitHub Exploit DB Packet Storm
253145 1.9 注意 Linux
レッドハット		 - Linux kernel における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4525 2011-02-1 14:08 2011-01-11 Show GitHub Exploit DB Packet Storm
253146 1.9 注意 Linux
レッドハット		 - Linux kernel の ntty_ioctl_tiocgicount 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4077 2011-02-1 13:33 2010-11-29 Show GitHub Exploit DB Packet Storm
253147 4 警告 Linux
レッドハット		 - Linux kernel の bcm_connect 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3874 2011-01-31 15:49 2010-12-8 Show GitHub Exploit DB Packet Storm
253148 1.9 注意 Linux
レッドハット		 - Linux kernel の viafb_ioctl_get_viafb_info 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4082 2011-01-31 15:40 2010-11-30 Show GitHub Exploit DB Packet Storm
253149 1.9 注意 Linux
レッドハット		 - Linux kernel の ivtvfb_ioctl 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4079 2011-01-31 15:03 2010-11-29 Show GitHub Exploit DB Packet Storm
253150 1.9 注意 Linux
レッドハット		 - Linux kernel の USB サブシステムにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4074 2011-01-31 15:01 2010-11-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196001 7.2 HIGH
Network 		artica pandora_fms In Artica Pandora FMS 7.42, Web Admin users can execute arbitrary code by uploading a .php file via the Updater or Extension component. NOTE: The vendor reports that this is intended functionality CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-8500 2024-11-21 14:38 2020-03-3 Show GitHub Exploit DB Packet Storm
196002 9.8 CRITICAL
Network 		pdf-image_project pdf-image Lack of input validation in pdf-image npm package version <= 2.0.0 may allow an attacker to run arbitrary code if PDF file path is constructed based on untrusted user input. CWE-20
 Improper Input Validation  		CVE-2020-8132 2024-11-21 14:38 2020-02-29 Show GitHub Exploit DB Packet Storm
196003 6.1 MEDIUM
Network 		revealjs reveal.js Insufficient validation in cross-origin communication (postMessage) in reveal.js version 3.9.1 and earlier allow attackers to perform cross-site scripting attacks. CWE-79
Cross-site Scripting 		CVE-2020-8127 2024-11-21 14:38 2020-02-29 Show GitHub Exploit DB Packet Storm
196004 7.5 HIGH
Network 		yarnpkg yarn Arbitrary filesystem write vulnerability in Yarn before 1.22.0 allows attackers to write to any path on the filesystem and potentially lead to arbitrary code execution by forcing the user to install … CWE-22
Path Traversal 		CVE-2020-8131 2024-11-21 14:38 2020-02-25 Show GitHub Exploit DB Packet Storm
196005 6.4 MEDIUM
Local 		ruby-lang
debian
canonical
fedoraproject
opensuse 		rake
debian_linux
ubuntu_linux
fedora
leap 		There is an OS command injection vulnerability in Ruby Rake < 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character `|`. CWE-78
OS Command  		CVE-2020-8130 2024-11-21 14:38 2020-02-25 Show GitHub Exploit DB Packet Storm
196006 6.5 MEDIUM
Network 		puppet puppet_agent
puppet 		Previously, Puppet operated on a model that a node with a valid certificate was entitled to all information in the system and that a compromised certificate allowed access to everything in the infras… CWE-295
Improper Certificate Validation  		CVE-2020-7942 2024-11-21 14:38 2020-02-20 Show GitHub Exploit DB Packet Storm
196007 9.8 CRITICAL
Network 		jyaml_project jyaml JYaml through 1.3 allows remote code execution during deserialization of a malicious payload through the load() function. NOTE: this is a discontinued product. CWE-502
 Deserialization of Untrusted Data 		CVE-2020-8441 2024-11-21 14:38 2020-02-20 Show GitHub Exploit DB Packet Storm
196008 9.8 CRITICAL
Network 		broadcom unified_infrastructure_management CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains a buffer overflow vulnerability in the robot (controller) component. A remote attacker can execute arbitra… CWE-120
Classic Buffer Overflow 		CVE-2020-8012 2024-11-21 14:38 2020-02-18 Show GitHub Exploit DB Packet Storm
196009 7.5 HIGH
Network 		broadcom unified_infrastructure_management CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains a null pointer dereference vulnerability in the robot (controller) component. A remote attacker can crash … CWE-476
 NULL Pointer Dereference 		CVE-2020-8011 2024-11-21 14:38 2020-02-18 Show GitHub Exploit DB Packet Storm
196010 9.8 CRITICAL
Network 		broadcom unified_infrastructure_management CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains an improper ACL handling vulnerability in the robot (controller) component. A remote attacker can execute … NVD-CWE-Other
CVE-2020-8010 2024-11-21 14:38 2020-02-18 Show GitHub Exploit DB Packet Storm