Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254551	7.5	危険	アップル	-	Apple iOS の WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0157	2011-04-6 17:29	2011-03-11	Show	GitHub Exploit DB Packet Storm

254552	5	警告	OpenSLP	-	OpenSLP にサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-3609	2011-04-6 17:27	2011-03-22	Show	GitHub Exploit DB Packet Storm

254553	5.8	警告	Apache Software Foundation	-	Apache Tomcat におけるアクセス制限を回避される脆弱性	CWE-DesignError	CVE-2011-1088	2011-04-6 17:23	2011-03-11	Show	GitHub Exploit DB Packet Storm

254554	9.3	危険	マイクロソフト	-	Microsoft Groove 2007 における権限昇格の脆弱性	CWE-Other その他	CVE-2010-3146	2011-04-6 17:09	2011-03-8	Show	GitHub Exploit DB Packet Storm

254555	9.3	危険	マイクロソフト	-	Microsoft Remote Desktop Connection のクライアントにおける権限昇格の脆弱性	CWE-Other その他	CVE-2011-0029	2011-04-6 16:57	2011-03-8	Show	GitHub Exploit DB Packet Storm

254556	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の SBE.dll における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0042	2011-04-6 16:53	2011-03-8	Show	GitHub Exploit DB Packet Storm

254557	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の DirectShow における権限昇格の脆弱性	CWE-Other その他	CVE-2011-0032	2011-04-6 16:17	2011-03-8	Show	GitHub Exploit DB Packet Storm

254558	7.5	危険	IBM	-	IBM WAS の Plug-in コンポーネントにおける Trace リクエストの処理に関する脆弱性	CWE-20 不適切な入力確認	CVE-2011-1309	2011-04-5 15:52	2011-02-28	Show	GitHub Exploit DB Packet Storm

254559	4.3	警告	IBM	-	IBM WAS の Installation Verification Test アプリケーションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1308	2011-04-5 15:47	2011-02-28	Show	GitHub Exploit DB Packet Storm

254560	10	危険	サイバートラスト株式会社レッドハット	-	Logwatch の logwatch.pl における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1018	2011-04-5 15:20	2011-02-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208651	7.5	HIGH Network	yubico fedoraproject	yubihsm-shell fedora	An issue was discovered in the yh_create_session() function of yubihsm-shell through 2.0.2. The function does not explicitly check the returned session id from the device. An invalid session id would…	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2020-24387	2024-11-21 14:14	2020-10-20	Show	GitHub Exploit DB Packet Storm

208652	6.5	MEDIUM Network	free	freebox_server freebox_v5_firmware	A DNS rebinding vulnerability in the UPnP MediaServer implementation in Freebox Server before 4.2.3.	CWE-290 Authentication Bypass by Spoofing	CVE-2020-24375	2024-11-21 14:14	2020-10-20	Show	GitHub Exploit DB Packet Storm

208653	7.5	HIGH Network	broadcom fedoraproject	tcpreplay fedora	An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability in get_l2len() that can make tcpprep crash and cause a denial of service.	CWE-787 Out-of-bounds Write	CVE-2020-24266	2024-11-21 14:14	2020-10-20	Show	GitHub Exploit DB Packet Storm

208654	7.5	HIGH Network	broadcom fedoraproject	tcpreplay fedora	An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability in MemcmpInterceptorCommon() that can make tcpprep crash and cause a denial of service.	CWE-787 Out-of-bounds Write	CVE-2020-24265	2024-11-21 14:14	2020-10-20	Show	GitHub Exploit DB Packet Storm

208655	6.1	MEDIUM Network	magento	magento	Magento versions 2.4.0 and 2.3.5p1 (and earlier) are affected by a persistent XSS vulnerability that allows users to upload malicious JavaScript via the file upload component. This vulnerability coul…	-	CVE-2020-24408	2024-11-21 14:14	2020-10-17	Show	GitHub Exploit DB Packet Storm

208656	5.5	MEDIUM Local	qemu	qemu	An issue was discovered in QEMU through 5.1.0. An out-of-bounds memory access was found in the ATI VGA device implementation. This flaw occurs in the ati_2d_blt() routine in hw/display/ati_2d.c while…	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2020-24352	2024-11-21 14:14	2020-10-16	Show	GitHub Exploit DB Packet Storm

208657	6.1	MEDIUM Network	unitedplanet	intrexx	Cross-site scripting (XSS) vulnerability in the search functionality in Intrexx before 9.4.0 allows remote attackers to inject arbitrary web script or HTML via the request parameter.	CWE-79 Cross-site Scripting	CVE-2020-24188	2024-11-21 14:14	2020-10-15	Show	GitHub Exploit DB Packet Storm

208658	6.1	MEDIUM Network	iproom	mmc\+	IProom MMC+ Server login page does not validate specific parameters properly. Attackers can use the vulnerability to redirect to any malicious site and steal the victim's login credentials.	CWE-601 Open Redirect	CVE-2020-24551	2024-11-21 14:14	2020-10-14	Show	GitHub Exploit DB Packet Storm

208659	6.1	MEDIUM Network	hapifhir	testpage_overlay	Users of the HAPI FHIR Testpage Overlay 5.0.0 and below can use a specially crafted URL to exploit an XSS vulnerability in this module, allowing arbitrary JavaScript to be executed in the user's brow…	CWE-79 Cross-site Scripting	CVE-2020-24301	2024-11-21 14:14	2020-10-8	Show	GitHub Exploit DB Packet Storm

208660	7.5	HIGH Network	peplink	balance_20x_firmware balance_310x_firmware mbx_firmware epx_firmware sdx_firmware balance_30_lte_firmware balance_20_firmware balance_30_firmware balance_30_pro_firmware ba…	Peplink Balance before 8.1.0rc1 allows an unauthenticated attacker to download PHP configuration files (/filemanager/php/connector.php) from Web Admin.	NVD-CWE-noinfo	CVE-2020-24246	2024-11-21 14:14	2020-10-8	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed