Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254041	2.7	注意	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0091	2012-01-20 11:36	2012-01-17	Show	GitHub Exploit DB Packet Storm

254042	4	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise HCM コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0089	2012-01-20 11:35	2012-01-17	Show	GitHub Exploit DB Packet Storm

254043	4	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise HCM コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0076	2012-01-20 11:35	2012-01-17	Show	GitHub Exploit DB Packet Storm

254044	4	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise HCM コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0088	2012-01-20 11:35	2012-01-17	Show	GitHub Exploit DB Packet Storm

254045	4	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise CRM コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0074	2012-01-20 11:34	2012-01-17	Show	GitHub Exploit DB Packet Storm

254046	5.5	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise HCM コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0080	2012-01-20 11:33	2012-01-17	Show	GitHub Exploit DB Packet Storm

254047	3.6	注意	オラクル	-	Oracle Virtualization の Virtual Desktop Infrastructure コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-3571	2012-01-20 11:09	2012-01-17	Show	GitHub Exploit DB Packet Storm

254048	5	警告	オラクル	-	Oracle Database Server の Listener コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0072	2012-01-20 10:32	2012-01-17	Show	GitHub Exploit DB Packet Storm

254049	5.5	警告	オラクル	-	Oracle Database Server の Core RDBMS コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0082	2012-01-20 10:31	2012-01-17	Show	GitHub Exploit DB Packet Storm

254050	4.9	警告	OpenStack	-	OpenStack Compute の Nova および Essex におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0030	2012-01-19 16:08	2012-01-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194751	4.9	MEDIUM Network	asus	z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware	The LDAP configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privilege…	CWE-120 Classic Buffer Overflow	CVE-2021-28177	2024-11-21 14:59	2021-04-6	Show	GitHub Exploit DB Packet Storm

194752	4.9	MEDIUM Network	asus	z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware	The DNS configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged…	CWE-120 Classic Buffer Overflow	CVE-2021-28176	2024-11-21 14:59	2021-04-6	Show	GitHub Exploit DB Packet Storm

194753	4.9	MEDIUM Network	asus	z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware	The Radius configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privile…	CWE-120 Classic Buffer Overflow	CVE-2021-28175	2024-11-21 14:59	2021-04-6	Show	GitHub Exploit DB Packet Storm

194754	4.9	MEDIUM Network	asus	asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmwa…	The specific function in ASUS BMC’s firmware Web management page (Remote video storage function) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As o…	CWE-120 Classic Buffer Overflow	CVE-2021-28192	2024-11-21 14:59	2021-04-6	Show	GitHub Exploit DB Packet Storm

194755	4.9	MEDIUM Network	asus	asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmwa…	The Firmware update function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged p…	CWE-120 Classic Buffer Overflow	CVE-2021-28191	2024-11-21 14:59	2021-04-6	Show	GitHub Exploit DB Packet Storm

194756	4.9	MEDIUM Network	asus	asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmwa…	The specific function in ASUS BMC’s firmware Web management page (Generate new certificate function) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. …	CWE-120 Classic Buffer Overflow	CVE-2021-28190	2024-11-21 14:59	2021-04-6	Show	GitHub Exploit DB Packet Storm

194757	5.9	MEDIUM Network	cohesity	cohesity_dataplatform	A man-in-the-middle vulnerability in Cohesity DataPlatform support channel in version 6.3 up to 6.3.1g, 6.4 up to 6.4.1c and 6.5.1 through 6.5.1b. Missing server authentication in impacted versions c…	CWE-306 Missing Authentication for Critical Function	CVE-2021-28124	2024-11-21 14:59	2021-04-3	Show	GitHub Exploit DB Packet Storm

194758	9.8	CRITICAL Network	cohesity	cohesity_dataplatform	Undocumented Default Cryptographic Key Vulnerability in Cohesity DataPlatform version 6.3 prior 6.3.1g, 6.4 up to 6.4.1c and 6.5.1 through 6.5.1b. The ssh key can provide an attacker access to the li…	CWE-1188 Insecure Default Initialization of Resource	CVE-2021-28123	2024-11-21 14:59	2021-04-3	Show	GitHub Exploit DB Packet Storm

194759	6.7	MEDIUM Network	okta	access_gateway	A command injection vulnerability in the cookieDomain and relayDomain parameters of Okta Access Gateway before 2020.9.3 allows attackers (with admin access to the Okta Access Gateway UI) to execute O…	CWE-78 OS Command	CVE-2021-28113	2024-11-21 14:59	2021-04-3	Show	GitHub Exploit DB Packet Storm

194760	5.4	MEDIUM Network	devolutions	remote_desktop_manager	Cross-Site Scripting (XSS) in Administrative Reports in Devolutions Remote Desktop Manager before 2021.1 allows remote authenticated users to inject arbitrary web script or HTML via multiple input fi…	CWE-79 Cross-site Scripting	CVE-2021-28047	2024-11-21 14:59	2021-04-2	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed