Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 28, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253141	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253142	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253143	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253144	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253145	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

253146	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

253147	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 28, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213161	7.5	HIGH Network	auto-maskin	rp_210e_firmware dcu_210e_firmware marine_pro_observer	In Auto-Maskin RP210E Versions 3.7 and prior, DCU210E Versions 3.7 and prior and Marine Observer Pro (Android App), the software contains a mechanism for users to recover or change their passwords wi…	CWE-521 Weak Password Requirements	CVE-2019-6558	2024-11-21 13:46	2020-03-24	Show	GitHub Exploit DB Packet Storm

213162	9.1	CRITICAL Network	auto-maskin	rp210e_firmware dcu_210_firmware marine_pro_observer	In Auto-Maskin RP210E Versions 3.7 and prior, DCU210E Versions 3.7 and prior and Marine Observer Pro (Android App), the software contains a mechanism for users to recover or change their passwords wi…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2019-6560	2024-11-21 13:46	2020-03-24	Show	GitHub Exploit DB Packet Storm

213163	6.1	MEDIUM Network	fortinet	fortios	An improper input validation vulnerability in FortiOS 6.2.1, 6.2.0, 6.0.8 and below until 5.4.0 under admin webUI may allow an attacker to perform an URL redirect attack via a specifically crafted re…	CWE-20 CWE-601 Improper Input Validation Open Redirect	CVE-2019-6696	2024-11-21 13:46	2020-03-16	Show	GitHub Exploit DB Packet Storm

213164	5.4	MEDIUM Network	fortinet	fortiadc	An improper neutralization of input vulnerability in Fortinet FortiADC 5.3.3 and earlier may allow an attacker to execute a stored Cross Site Scripting (XSS) via a field in the traffic group interfac…	CWE-79 Cross-site Scripting	CVE-2019-6699	2024-11-21 13:46	2020-03-14	Show	GitHub Exploit DB Packet Storm

213165	6.1	MEDIUM Network	siemens	scalance_s602_firmware scalance_s612_firmware scalance_s623_firmware scalance_s627-2m_firmware	A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627…	-	CVE-2019-6585	2024-11-21 13:46	2020-03-11	Show	GitHub Exploit DB Packet Storm

213166	5.5	MEDIUM Local	lenovo	xclarity_administrator	An XML External Entity (XXE) processing vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.6.6 that could allow information disclosure.	CWE-611 XXE	CVE-2019-6194	2024-11-21 13:46	2020-02-15	Show	GitHub Exploit DB Packet Storm

213167	7.5	HIGH Network	lenovo	xclarity_administrator	An information disclosure vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.6.6 that could allow unauthenticated access to some configuration files which may cont…	CWE-200 Information Exposure	CVE-2019-6193	2024-11-21 13:46	2020-02-15	Show	GitHub Exploit DB Packet Storm

213168	4.8	MEDIUM Network	lenovo	xclarity_controller	An authorization bypass exists in Lenovo XClarity Controller (XCC) versions prior to 3.08 CDI340V, 3.01 TEI392O, 1.71 PSI328N where a valid authenticated user with lesser privileges may be granted re…	CWE-269 Improper Privilege Management	CVE-2019-6195	2024-11-21 13:46	2020-02-15	Show	GitHub Exploit DB Packet Storm

213169	5.5	MEDIUM Local	lenovo	thinkcentre_e93_firmware thinkcentre_m6500s_firmware thinkcentre_m6500t_firmware thinkcentre_m73p_firmware thinkcentre_m83_firmware thinkcentre_m8500s_firmware thinkcentre_m8500t_fi…	Lenovo was notified of a potential denial of service vulnerability, affecting various versions of BIOS for Lenovo Desktop, Desktop - All in One, and ThinkStation, that could cause PCRs to be cleared …	CWE-665 Improper Initialization	CVE-2019-6190	2024-11-21 13:46	2020-02-15	Show	GitHub Exploit DB Packet Storm

213170	6.1	MEDIUM Network	forcepoint	web_security	It has been reported that cross-site scripting (XSS) is possible in Forcepoint Web Security, version 8.x, via host header injection. CVSSv3.0: 5.3 (Medium) (/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)	CWE-79 Cross-site Scripting	CVE-2019-6146	2024-11-21 13:46	2020-01-23	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed