Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253971 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるメモリ破損の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3671 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
253972 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性 CWE-255
CWE-94
CVE-2009-3677 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
253973 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性 CWE-287
不適切な認証 		CVE-2009-2505 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
253974 6.9 警告 acpid - acpid の umask におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4235 2010-01-21 11:44 2009-12-7 Show GitHub Exploit DB Packet Storm
253975 6.9 警告 サイバートラスト株式会社
レッドハット
acpid		 - acpid のレッドハットパッチにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4033 2010-01-21 11:43 2009-12-7 Show GitHub Exploit DB Packet Storm
253976 10 危険 アドビシステムズ - Adobe Illustrator における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-3952 2010-01-21 11:43 2010-01-7 Show GitHub Exploit DB Packet Storm
253977 9.3 危険 アドビシステムズ - Adobe Illustrator における Encapsulated PostScript ファイルの処理に関する任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-4195 2010-01-21 11:43 2009-12-4 Show GitHub Exploit DB Packet Storm
253978 4.4 警告 サイバートラスト株式会社
Linux
レッドハット		 - Linux Kernel の exit_notify 関数における任意のシグナルをプロセスに送信可能な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1337 2010-01-21 11:23 2009-04-22 Show GitHub Exploit DB Packet Storm
253979 4.9 警告 サイバートラスト株式会社
Linux
レッドハット		 - Linux Kernel における sendmsg 関数の呼び出しに関するサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5300 2010-01-21 11:22 2008-12-1 Show GitHub Exploit DB Packet Storm
253980 6.8 警告 シスコシステムズ - 複数の SSL VPN (Web VPN) 製品においてウェブブラウザのセキュリティが迂回される問題 CWE-264
認可・権限・アクセス制御 		CVE-2009-2631 2010-01-20 14:15 2009-12-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199461 9.8 CRITICAL
Network 		zyxel usg20-vpn_firmware
usg20w-vpn_firmware
usg40_firmware
usg40w_firmware
usg60_firmware
usg60w_firmware
usg110_firmware
usg210_firmware
usg310_firmware
usg1100_firmware
usg… 		Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found in cleartext in the firmware. This accoun… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-29583 2024-11-21 14:24 2020-12-23 Show GitHub Exploit DB Packet Storm
199462 7.5 HIGH
Network 		miniweb_http_server_project miniweb_http_server MiniWeb HTTP server 0.8.19 allows remote attackers to cause a denial of service (daemon crash) via a long name for the first parameter in a POST request. CWE-120
Classic Buffer Overflow 		CVE-2020-29596 2024-11-21 14:24 2020-12-22 Show GitHub Exploit DB Packet Storm
199463 4.3 MEDIUM
Network 		atlassian crucible Affected versions of Atlassian Crucible allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the file upload request feature of code reviews.… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-29447 2024-11-21 14:24 2020-12-21 Show GitHub Exploit DB Packet Storm
199464 7.5 HIGH
Network 		golang ssh A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers. CWE-476
 NULL Pointer Dereference 		CVE-2020-29652 2024-11-21 14:24 2020-12-17 Show GitHub Exploit DB Packet Storm
199465 7.2 HIGH
Network 		pluck-cms pluck A file upload restriction bypass vulnerability in Pluck CMS before 4.7.13 allows an admin privileged user to gain access in the host through the "manage files" functionality, which may result in remo… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-29607 2024-11-21 14:24 2020-12-17 Show GitHub Exploit DB Packet Storm
199466 9.1 CRITICAL
Network 		icinga icinga Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal will automatically be renewed, ignoring the CRL. This issue is fixed in Icinga 2 v2.11.8 and v2.12.… CWE-295
Improper Certificate Validation  		CVE-2020-29663 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm
199467 7.5 HIGH
Network 		xen xapi An issue was discovered in Xen XAPI before 2020-12-15. Certain xenstore keys provide feedback from the guest, and are therefore watched by toolstack. Specifically, keys are watched by xenopsd, and da… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-29487 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm
199468 5.5 MEDIUM
Local 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen 4.6 through 4.14.x. When acting upon a guest XS_RESET_WATCHES request, not all tracking information is freed. A guest can cause unbounded memory usage in oxenstored. Th… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2020-29485 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm
199469 6.2 MEDIUM
Local 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen through 4.14.x. Recording of the per-vCPU control block mapping maintained by Xen and that of pointers into the control block is reversed. The consumer assumes, seeing … CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-29570 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm
199470 6.0 MEDIUM
Local 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen through 4.14.x. Nodes in xenstore have an ownership. In oxenstored, a owner could give a node away. However, node ownership has quota implications. Any guest can run an… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-29486 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm