Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253201	4.3	警告	オラクル	-	Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0086	2010-05-12 15:18	2010-04-13	Show	GitHub Exploit DB Packet Storm

253202	5	警告	オラクル	-	Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0856	2010-05-12 15:18	2010-04-13	Show	GitHub Exploit DB Packet Storm

253203	5	警告	オラクル	-	Oracle Fusion Middleware の Oracle Internet Directory コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0872	2010-05-12 15:18	2010-04-13	Show	GitHub Exploit DB Packet Storm

253204	2.1	注意	オラクル	-	Oracle Database の Audit コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0854	2010-05-12 15:18	2010-04-13	Show	GitHub Exploit DB Packet Storm

253205	3.6	注意	オラクル	-	Oracle Database の Change Data Capture コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0870	2010-05-12 15:18	2010-04-13	Show	GitHub Exploit DB Packet Storm

253206	4	警告	オラクル	-	Oracle Database の XML DB コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0851	2010-05-12 15:17	2010-04-13	Show	GitHub Exploit DB Packet Storm

253207	4	警告	オラクル	-	Oracle Database の JavaVM コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0867	2010-05-12 15:17	2010-04-13	Show	GitHub Exploit DB Packet Storm

253208	5.5	警告	オラクル	-	Oracle Database の XML DB コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0852	2010-05-12 15:17	2010-04-13	Show	GitHub Exploit DB Packet Storm

253209	6.5	警告	オラクル	-	Oracle Database の JavaVM コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0866	2010-05-12 15:17	2010-04-13	Show	GitHub Exploit DB Packet Storm

253210	7.1	危険	オラクル	-	Oracle Database の Core RDBMS コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0860	2010-05-12 15:16	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199491	9.8	CRITICAL Network	lanatmservice	m3_atm_monitoring_system	In Lan ATMService M3 ATM Monitoring System 6.1.0, a remote attacker able to use a default cookie value, such as PHPSESSID=LANIT-IMANAGER, can achieve control over the system because of Insufficient S…	CWE-613 Insufficient Session Expiration	CVE-2020-29667	2024-11-21 14:24	2020-12-10	Show	GitHub Exploit DB Packet Storm

199492	5.3	MEDIUM Network	lanatmservice	m3_atm_monitoring_system	In Lan ATMService M3 ATM Monitoring System 6.1.0, due to a directory-listing vulnerability, a remote attacker can view log files, located in /websocket/logs/, that contain a user's cookie values and …	NVD-CWE-Other	CVE-2020-29666	2024-11-21 14:24	2020-12-10	Show	GitHub Exploit DB Packet Storm

199493	3.7	LOW Network	sympa fedoraproject debian	sympa fedora debian_linux	Sympa before 6.2.59b.2 allows remote attackers to obtain full SOAP API access by sending any arbitrary string (except one from an expired cookie) as the cookie value to authenticateAndRun.	CWE-287 CWE-565 Improper Authentication Reliance on Cookies without Validation and Integrity Checking	CVE-2020-29668	2024-11-21 14:24	2020-12-10	Show	GitHub Exploit DB Packet Storm

199494	7.8	HIGH Local	paloaltonetworks	cortex_xdr_agent	A local privilege escalation vulnerability exists in Palo Alto Networks Cortex XDR Agent on the Windows platform that allows an authenticated local Windows user to execute programs with SYSTEM privil…	CWE-427 Uncontrolled Search Path Element	CVE-2020-2049	2024-11-21 14:24	2020-12-10	Show	GitHub Exploit DB Packet Storm

199495	5.5	MEDIUM Local	paloaltonetworks	cortex_xdr_agent	An improper handling of exceptional conditions vulnerability in Cortex XDR Agent allows a local authenticated Windows user to create files in the software's internal program directory that prevents t…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2020-2020	2024-11-21 14:24	2020-12-10	Show	GitHub Exploit DB Packet Storm

199496	9.8	CRITICAL Network	flexense	dupscout	A buffer overflow in the web server of Flexense DupScout Enterprise 10.0.18 allows a remote anonymous attacker to execute code as SYSTEM by overflowing the sid parameter via a GET /settings&sid= atta…	CWE-120 Classic Buffer Overflow	CVE-2020-29659	2024-11-21 14:24	2020-12-10	Show	GitHub Exploit DB Packet Storm

199497	7.8	HIGH Local	linux fedoraproject debian netapp broadcom oracle	linux_kernel fedora debian_linux active_iq_unified_manager fabric_operating_system solidfire_baseboard_management_controller_firmware h410c_firmware a700s_firmware 8300_firmwa…	A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b.	CWE-416 CWE-667 Use After Free Improper Locking	CVE-2020-29661	2024-11-21 14:24	2020-12-10	Show	GitHub Exploit DB Packet Storm

199498	4.4	MEDIUM Local	linux fedoraproject debian netapp broadcom	linux_kernel fedora debian_linux active_iq_unified_manager fabric_operating_system solidfire_baseboard_management_controller_firmware h410c_firmware a700s_firmware 8300_firmwa…	A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIO…	CWE-416 CWE-667 Use After Free Improper Locking	CVE-2020-29660	2024-11-21 14:24	2020-12-10	Show	GitHub Exploit DB Packet Storm

199499	9.1	CRITICAL Network	jerryscript	jerryscript	In JerryScript 2.3.0, there is an out-of-bounds read in main_print_unhandled_exception in the main-utils.c file.	CWE-125 Out-of-bounds Read	CVE-2020-29657	2024-11-21 14:24	2020-12-9	Show	GitHub Exploit DB Packet Storm

199500	7.5	HIGH Network	asus	rt-ac88u_firmware	An information disclosure vulnerability exists in RT-AC88U Download Master before 3.1.0.108. A direct access to /downloadmaster/dm_apply.cgi?action_mode=initial&download_type=General&special_cgi=get_…	CWE-425 Direct Request ('Forced Browsing')	CVE-2020-29656	2024-11-21 14:24	2020-12-9	Show	GitHub Exploit DB Packet Storm