Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254181	5	警告	サン・マイクロシステムズ Pidgin レッドハット	-	Pidgin の gtkimhtml.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-0423	2010-05-14 18:39	2010-02-18	Show	GitHub Exploit DB Packet Storm

254182	4.3	警告	サン・マイクロシステムズ Pidgin レッドハット	-	Pidgin の libpurple におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0420	2010-05-14 18:38	2010-02-18	Show	GitHub Exploit DB Packet Storm

254183	7.5	危険	Carnegie Mellon University (Project Cyrus) アップルサイバートラスト株式会社サン・マイクロシステムズオラクルレッドハット	-	Cyrus SASL ライブラリにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0688	2010-05-14 18:37	2009-05-15	Show	GitHub Exploit DB Packet Storm

254184	7.5	危険	サン・マイクロシステムズ GNOME Project レッドハット	-	Evolution Data Server (別名 evolution-data-server) における複数の整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0587	2010-05-14 18:37	2009-03-14	Show	GitHub Exploit DB Packet Storm

254185	5.8	警告	サン・マイクロシステムズ GNOME Project レッドハット	-	Evolution Data Server (別名 evolution-data-server) の ntlm_challenge 関数におけるプロセスメモリ情報の漏洩またはサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-0582	2010-05-14 18:37	2009-03-14	Show	GitHub Exploit DB Packet Storm

254186	1.2	注意	日本電気サイバートラスト株式会社サン・マイクロシステムズターボリナックス OpenSSL Project レッドハット	-	RSA key reconstruction vulnerability	-	CVE-2007-3108	2010-05-14 18:37	2007-08-16	Show	GitHub Exploit DB Packet Storm

254187	5	警告	ヒューレット・パッカードサイバートラスト株式会社 OpenSSL Project ターボリナックスレッドハット	-	OpenSSL の zlib_stateful_finish 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-4355	2010-05-13 17:21	2010-01-13	Show	GitHub Exploit DB Packet Storm

254188	9.3	危険	日立	-	XMAP3 における任意のコードが実行される脆弱性	CWE-noinfo 情報不足	-	2010-05-13 15:14	2010-04-12	Show	GitHub Exploit DB Packet Storm

254189	4.3	警告	オラクル	-	Oracle Industry Product Suite の Retail - Oracle Retail Plan In-Season コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0863	2010-05-13 15:13	2010-04-13	Show	GitHub Exploit DB Packet Storm

254190	4.3	警告	オラクル	-	Oracle Industry Product Suite の Retail - Oracle Retail Place In-Season コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0864	2010-05-13 15:13	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197821	7.8	HIGH Local	nvidia	quadro_firmware geforce_experience tesla_firmware	NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the NVIDIA Control Panel component in which an attacker with local system access can corrupt a system file, which may lead…	NVD-CWE-noinfo	CVE-2020-5957	2024-11-21 14:34	2020-03-6	Show	GitHub Exploit DB Packet Storm

197822	6.5	MEDIUM Network	vmware	spring_cloud_config	Spring Cloud Config, versions 2.2.x prior to 2.2.2, versions 2.1.x prior to 2.1.7, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-co…	CWE-22 Path Traversal	CVE-2020-5405	2024-11-21 14:34	2020-03-6	Show	GitHub Exploit DB Packet Storm

197823	8.8	HIGH Adjacent	plathome	openblocks_iot_vx2_firmware	OpenBlocks IoT VX2 prior to Ver.4.0.0 (Ver.3 Series) allows an attacker on the same network segment to bypass authentication and to initialize the device via unspecified vectors.	CWE-287 Improper Authentication	CVE-2020-5536	2024-11-21 14:34	2020-03-4	Show	GitHub Exploit DB Packet Storm

197824	8.8	HIGH Adjacent	plathome	openblocks_iot_vx2_firmware	OpenBlocks IoT VX2 prior to Ver.4.0.0 (Ver.3 Series) allows an attacker on the same network segment to execute arbitrary OS commands with root privileges via unspecified vectors.	CWE-78 OS Command	CVE-2020-5535	2024-11-21 14:34	2020-03-4	Show	GitHub Exploit DB Packet Storm

197825	7.5	HIGH Network	pivotal	reactor_netty	Reactor Netty HttpServer, versions 0.9.3 and 0.9.4, is exposed to a URISyntaxException that causes the connection to be closed prematurely instead of producing a 400 response.	CWE-755 Improper Handling of Exceptional Conditions	CVE-2020-5403	2024-11-21 14:34	2020-03-4	Show	GitHub Exploit DB Packet Storm

197826	5.9	MEDIUM Network	pivotal	reactor_netty	The HttpClient from Reactor Netty, versions 0.9.x prior to 0.9.5, and versions 0.8.x prior to 0.8.16, may be used incorrectly, leading to a credentials leak during a redirect to a different domain. I…	CWE-522 Insufficiently Protected Credentials	CVE-2020-5404	2024-11-21 14:34	2020-03-4	Show	GitHub Exploit DB Packet Storm

197827	6.5	MEDIUM Network	grandit	grandit	GRANDIT Ver.1.6, Ver.2.0, Ver.2.1, Ver.2.2, Ver.2.3, and Ver.3.0 do not properly manage sessions, which allows remote attackers to impersonate an arbitrary user and then alter or disclose the informa…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2020-5539	2024-11-21 14:34	2020-03-2	Show	GitHub Exploit DB Packet Storm

197828	8.8	HIGH Network	cloudfoundry	cf-deployment user_account_and_authentication	In Cloud Foundry UAA, versions prior to 74.14.0, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function when authenticating with external identity pr…	CWE-352 Origin Validation Error	CVE-2020-5402	2024-11-21 14:34	2020-02-28	Show	GitHub Exploit DB Packet Storm

197829	5.3	MEDIUM Network	cloudfoundry	routing_release	Cloud Foundry Routing Release, versions prior to 0.197.0, contains GoRouter, which allows malicious clients to send invalid headers, causing caching layers to reject subsequent legitimate clients try…	CWE-444 HTTP Request Smuggling	CVE-2020-5401	2024-11-21 14:34	2020-02-28	Show	GitHub Exploit DB Packet Storm

197830	6.5	MEDIUM Network	cloudfoundry	cf-deployment capi-release	Cloud Foundry Cloud Controller (CAPI), versions prior to 1.91.0, logs properties of background jobs when they are run, which may include sensitive information such as credentials if provided to the j…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2020-5400	2024-11-21 14:34	2020-02-28	Show	GitHub Exploit DB Packet Storm