Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254341	7.2	危険	シマンテック	-	Windows のヘルプ機能を使用するアプリケーションにおける権限昇格が可能になる問題	CWE-264 認可・権限・アクセス制御	CVE-2002-1540 CVE-2005-2017	2011-05-11 12:01	2011-05-11	Show	GitHub Exploit DB Packet Storm

254342	5	警告	オラクル	-	Oracle Database Server の Network Foundation コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0806	2011-05-11 11:00	2011-04-19	Show	GitHub Exploit DB Packet Storm

254343	4.3	警告	オラクル	-	Oracle Database Server の UIX コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0805	2011-05-11 10:58	2011-04-19	Show	GitHub Exploit DB Packet Storm

254344	3.6	注意	オラクル	-	Oracle Database Server の Database Vault コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0804	2011-05-11 10:58	2011-04-19	Show	GitHub Exploit DB Packet Storm

254345	6.5	警告	オラクル	-	Oracle Database Server の Oracle Warehouse Builder コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0799	2011-05-11 10:57	2011-04-19	Show	GitHub Exploit DB Packet Storm

254346	3.6	注意	オラクル	-	Oracle Database Server の Database Vault コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0793	2011-05-11 10:55	2011-04-19	Show	GitHub Exploit DB Packet Storm

254347	6.5	警告	オラクル	-	Oracle Database Server の Oracle Warehouse Builder コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0792	2011-05-11 10:54	2011-04-19	Show	GitHub Exploit DB Packet Storm

254348	5.5	警告	オラクル	-	複数の Oracle 製品の Application Service Level Management コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0787	2011-05-11 10:53	2011-04-19	Show	GitHub Exploit DB Packet Storm

254349	4.3	警告	オラクル	-	複数の Oracle 製品の Oracle Help コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0785	2011-05-11 10:52	2011-04-19	Show	GitHub Exploit DB Packet Storm

254350	-	-	Wireshark	-	Wireshark に脆弱性	-	-	2011-05-11 10:51	2011-04-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208371	5.9	MEDIUM Network	gnome fedoraproject	geary fedora	GNOME Geary before 3.36.3 mishandles pinned TLS certificate verification for IMAP and SMTP services using invalid TLS certificates (e.g., self-signed certificates) when the client system is not confi…	CWE-295 Improper Certificate Validation	CVE-2020-24661	2024-11-21 14:15	2020-08-27	Show	GitHub Exploit DB Packet Storm

208372	6.5	MEDIUM Network	maltego	maltego	Maltego before 4.2.12 allows XXE attacks.	CWE-611 XXE	CVE-2020-24656	2024-11-21 14:15	2020-08-26	Show	GitHub Exploit DB Packet Storm

208373	9.8	CRITICAL Network	expo	expo	secure-store in Expo through 2.16.1 on iOS provides the insecure kSecAttrAccessibleAlwaysThisDeviceOnly policy when WHEN_UNLOCKED_THIS_DEVICE_ONLY is used.	NVD-CWE-noinfo	CVE-2020-24653	2024-11-21 14:15	2020-08-26	Show	GitHub Exploit DB Packet Storm

208374	4.9	MEDIUM Network	sonatype	nexus	In Sonatype Nexus Repository 3.26.1, an S3 secret key can be exposed by an admin user.	CWE-522 Insufficiently Protected Credentials	CVE-2020-24622	2024-11-21 14:15	2020-08-26	Show	GitHub Exploit DB Packet Storm

208375	6.1	MEDIUM Network	techkshetrainfo	savsoft_quiz	TechKshetra Info Solutions Pvt. Ltd Savsoft Quiz 5.5 and earlier has XSS which can result in an attacker injecting the XSS payload in the User Registration section and each time the admin visits the …	CWE-79 Cross-site Scripting	CVE-2020-24609	2024-11-21 14:15	2020-08-26	Show	GitHub Exploit DB Packet Storm

208376	8.8	HIGH Network	fossil-scm fedoraproject opensuse	fossil fedora leap backports_sle	Fossil before 2.10.2, 2.11.x before 2.11.2, and 2.12.x before 2.12.1 allows remote authenticated users to execute arbitrary code. An attacker must have check-in privileges on the repository.	CWE-862 Missing Authorization	CVE-2020-24614	2024-11-21 14:15	2020-08-25	Show	GitHub Exploit DB Packet Storm

208377	8.1	HIGH Network	fasterxml netapp oracle debian	jackson-databind active_iq_unified_manager application_testing_suite agile_plm communications_policy_management communications_diameter_signaling_router communications_services_gate…	FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource (aka Anteros-DBCP).	CWE-502 Deserialization of Untrusted Data	CVE-2020-24616	2024-11-21 14:15	2020-08-26	Show	GitHub Exploit DB Packet Storm

208378	6.8	MEDIUM Network	wolfssl	wolfssl	wolfSSL before 4.5.0 mishandles TLS 1.3 server data in the WAIT_CERT_CR state, within SanityCheckTls13MsgReceived() in tls13.c. This is an incorrect implementation of the TLS 1.3 client state machine…	CWE-295 Improper Certificate Validation	CVE-2020-24613	2024-11-21 14:15	2020-08-25	Show	GitHub Exploit DB Packet Storm

208379	8.8	HIGH Network	raspap	raspap	An issue was discovered in includes/webconsole.php in RaspAP 2.5. With authenticated access, an attacker can use a misconfigured (and virtually unrestricted) web console to attack the underlying OS (…	CWE-78 OS Command	CVE-2020-24572	2024-11-21 14:15	2020-08-25	Show	GitHub Exploit DB Packet Storm

208380	4.7	MEDIUM Local	fedoraproject	selinux-policy	An issue was discovered in the selinux-policy (aka Reference Policy) package 3.14 through 2020-08-24 because the .config/Yubico directory is mishandled. Consequently, when SELinux is in enforced mode…	CWE-287 Improper Authentication	CVE-2020-24612	2024-11-21 14:15	2020-08-25	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed