Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254301	7.5	危険	VMware	-	複数の VMware 製品の WebAccess におけるリクエストの発信元を偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0686	2010-04-21 17:53	2010-03-29	Show	GitHub Exploit DB Packet Storm

254302	4.3	警告	VMware	-	複数の VMware 製品の WebAccess におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1137	2010-04-21 17:51	2010-03-29	Show	GitHub Exploit DB Packet Storm

254303	4.6	警告	GNU Project サイバートラスト株式会社レッドハット	-	GNU Automake の dist または distcheck ルールにおけるコンテンツを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4029	2010-04-21 17:51	2009-12-20	Show	GitHub Exploit DB Packet Storm

254304	5	警告	Linux レッドハット	-	Linux kernel の virtio-net ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0741	2010-04-21 17:48	2010-03-30	Show	GitHub Exploit DB Packet Storm

254305	6.9	警告	mielke レッドハット	-	brltty の libbrlttybba.so における権限昇格の脆弱性	CWE-264 CWE-Other	CVE-2008-3279	2010-04-21 17:47	2010-03-30	Show	GitHub Exploit DB Packet Storm

254306	4.3	警告	Mozilla Foundation	-	Mozilla Firefox/SeaMonkey におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0181	2010-04-20 16:42	2010-03-30	Show	GitHub Exploit DB Packet Storm

254307	5.8	警告	サイボウズ	-	複数のサイボウズ製品におけるアクセス制限に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2029	2010-04-20 12:01	2010-04-20	Show	GitHub Exploit DB Packet Storm

254308	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer の Tabular Data Control ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0805	2010-04-19 19:20	2010-03-30	Show	GitHub Exploit DB Packet Storm

254309	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0491	2010-04-19 19:19	2010-03-30	Show	GitHub Exploit DB Packet Storm

254310	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer における同一生成元ポリシーを回避される脆弱性	CWE-200 情報漏えい	CVE-2010-0494	2010-04-19 19:19	2010-03-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210081	5.5	MEDIUM Local	oppo	reno3_pro_firmware find_x2_pro_firmware	In /SM8250_Q_Master/android/vendor/oppo_charger/oppo/oppo_vooc.c, the function proc_fastchg_fw_update_write in proc_fastchg_fw_update_write does not check the parameter len, resulting in a vulnerabil…	CWE-787 Out-of-bounds Write	CVE-2020-11834	2024-11-21 13:58	2021-01-1	Show	GitHub Exploit DB Packet Storm

210082	5.5	MEDIUM Local	oppo	reno3_pro_firmware find_x2_pro_firmware	In /SM8250_Q_Master/android/vendor/oppo_charger/oppo/charger_ic/oppo_mp2650.c, the function mp2650_data_log_write in mp2650_data_log_write does not check the parameter len which causes a vulnerabilit…	CWE-787 Out-of-bounds Write	CVE-2020-11833	2024-11-21 13:58	2021-01-1	Show	GitHub Exploit DB Packet Storm

210083	5.5	MEDIUM Local	oppo	reno3_pro_firmware find_x2_pro_firmware	In functions charging_limit_current_write and charging_limit_time_write in /SM8250_Q_Master/android/vendor/oppo_charger/oppo/oppo_charger.c have not checked the parameters, which causes a vulnerabili…	CWE-787 Out-of-bounds Write	CVE-2020-11832	2024-11-21 13:58	2021-01-1	Show	GitHub Exploit DB Packet Storm

210084	3.8	LOW Local	qemu	qemu	iscsi_aio_ioctl_cb in block/iscsi.c in QEMU 4.1.0 has a heap-based buffer over-read that may disclose unrelated information from process memory to an attacker.	CWE-125 Out-of-bounds Read	CVE-2020-11947	2024-11-21 13:58	2020-12-31	Show	GitHub Exploit DB Packet Storm

210085	7.5	HIGH Network	bilanc	bilanc	An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and possibly below. It relies on broken encryption with a weak and guessable static encryption key.	CWE-798 Use of Hard-coded Credentials	CVE-2020-11719	2024-11-21 13:58	2020-12-24	Show	GitHub Exploit DB Packet Storm

210086	9.8	CRITICAL Network	bilanc	bilanc	An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and possibly below. During the installation, it sets up administrative access by default with the account admin and passwor…	CWE-798 Use of Hard-coded Credentials	CVE-2020-11720	2024-11-21 13:58	2020-12-24	Show	GitHub Exploit DB Packet Storm

210087	7.4	HIGH Network	bilanc	bilanc	An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and below. Its software-update packages are downloaded via cleartext HTTP.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-11718	2024-11-21 13:58	2020-12-24	Show	GitHub Exploit DB Packet Storm

210088	9.8	CRITICAL Network	bilanc	bilanc	An issue was discovered in Programi 014 31.01.2020. It has multiple SQL injection vulnerabilities.	CWE-89 SQL Injection	CVE-2020-11717	2024-11-21 13:58	2020-12-22	Show	GitHub Exploit DB Packet Storm

210089	3.3	LOW Local	audacityteam fedoraproject	audacity fedora	Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After Audacity creates the temporary directory, it sets its permissions to 755. Any user on the system can read and…	CWE-276 Incorrect Default Permissions	CVE-2020-11867	2024-11-21 13:58	2020-12-1	Show	GitHub Exploit DB Packet Storm

210090	9.8	CRITICAL Network	oppo	ovoicemanager	OvoiceManager has system permission to write vulnerability reports for arbitrary files, affected product is com.oppo.ovoicemanager V2.0.1.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-11831	2024-11-21 13:58	2020-11-20	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed