Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254771	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

254772	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

254773	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

254774	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

254775	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196281	5.4	MEDIUM Network	fortinet	fortiisolator	An improper neutralization of input vulnerability in the URL Description in Fortinet FortiIsolator version 1.2.2 allows a remote authenticated attacker to perform a cross site scripting attack (XSS).	CWE-79 Cross-site Scripting	CVE-2020-6643	2024-11-21 14:36	2020-03-13	Show	GitHub Exploit DB Packet Storm

196282	6.5	MEDIUM Network	hotels	styx	Hotels Styx through 1.0.0.beta8 allows HTTP response splitting due to CRLF Injection. This is exploitable if untrusted user input can appear in a response header.	CWE-74 Injection	CVE-2020-6858	2024-11-21 14:36	2020-03-12	Show	GitHub Exploit DB Packet Storm

196283	7.8	HIGH Local	mcafee	advanced_threat_defense	Privilege Escalation vulnerability in the command line interface in McAfee Advanced Threat Defense (ATD) 4.x prior to 4.8.2 allows local users to execute arbitrary code via improper access controls o…	CWE-269 Improper Privilege Management	CVE-2020-7254	2024-11-21 14:36	2020-03-12	Show	GitHub Exploit DB Packet Storm

196284	4.4	MEDIUM Local	mcafee	agent	Improper access control vulnerability in masvc.exe in McAfee Agent (MA) prior to 5.6.4 allows local users with administrator privileges to disable self-protection via a McAfee supplied command-line u…	CWE-20 Improper Input Validation	CVE-2020-7253	2024-11-21 14:36	2020-03-12	Show	GitHub Exploit DB Packet Storm

196285	7.5	HIGH Network	python	urllib3	The _encode_invalid_chars function in util/url.py in the urllib3 library 1.25.2 through 1.25.7 for Python allows a denial of service (CPU consumption) because of an inefficient algorithm. The percent…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-7212	2024-11-21 14:36	2020-03-7	Show	GitHub Exploit DB Packet Storm

196286	7.5	HIGH Network	omron	plc_cj1_firmware plc_cj2_firmware	In all versions of Omron PLC CJ Series, an attacker can send a series of specific data packets within a short period, causing a service error on the PLC Ethernet module, which in turn causes a PLC se…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-6986	2024-11-21 14:36	2020-03-6	Show	GitHub Exploit DB Packet Storm

196287	7.8	HIGH Local	emerson	valvelink	In Emerson ValveLink v12.0.264 to v13.4.118, a vulnerability in the ValveLink software may allow a local, unprivileged, trusted insider to escalate privileges due to insecure configuration parameters.	CWE-269 Improper Privilege Management	CVE-2020-6971	2024-11-21 14:36	2020-03-6	Show	GitHub Exploit DB Packet Storm

196288	7.5	HIGH Network	hp	oneview_global_dashboard	HPE OneView Global Dashboard (OVGD) 1.9 has a remote information disclosure vulnerability. HPE OneView Global Dashboard - After Upgrade or Install of OVGD Version 1.9, Appliance Firewall May Leave Po…	CWE-200 Information Exposure	CVE-2020-7130	2024-11-21 14:36	2020-03-5	Show	GitHub Exploit DB Packet Storm

196289	8.8	HIGH Network	mozilla canonical	firefox ubuntu_linux	Mozilla developers reported memory safety bugs present in Firefox 72. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been expl…	CWE-787 Out-of-bounds Write	CVE-2020-6801	2024-11-21 14:36	2020-03-2	Show	GitHub Exploit DB Packet Storm

196290	8.8	HIGH Network	mozilla	firefox firefox_esr	A content process could have modified shared memory relating to crash reporting information, crash itself, and cause an out-of-bound write. This could have caused memory corruption and a potentially …	CWE-787 Out-of-bounds Write	CVE-2020-6796	2024-11-21 14:36	2020-03-2	Show	GitHub Exploit DB Packet Storm