Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255031	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格またはサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-1985	2011-10-21 15:24	2011-10-11	Show	GitHub Exploit DB Packet Storm

255032	9.3	危険	マイクロソフト	-	Microsoft Windows Vista および Windows 7 の Windows Media Center における権限昇格の脆弱性	CWE-Other その他	CVE-2011-2009	2011-10-21 15:24	2011-10-11	Show	GitHub Exploit DB Packet Storm

255033	9.3	危険	マイクロソフト	-	Microsoft Windows の Microsoft Active Accessibility コンポーネントにおける権限昇格の脆弱性	CWE-Other その他	CVE-2011-1247	2011-10-21 15:23	2011-10-11	Show	GitHub Exploit DB Packet Storm

255034	4	警告	マイクロソフト	-	複数の Microsoft 製品における任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-1892	2011-10-21 15:18	2011-09-13	Show	GitHub Exploit DB Packet Storm

255035	4.3	警告	マイクロソフト	-	Microsoft Windows SharePoint Services および SharePoint Foundation におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1891	2011-10-21 15:18	2011-09-13	Show	GitHub Exploit DB Packet Storm

255036	4.3	警告	マイクロソフト	-	複数の Microsoft SharePoint 製品の EditForm.aspx におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1890	2011-10-21 15:17	2011-09-13	Show	GitHub Exploit DB Packet Storm

255037	4.3	警告	マイクロソフト	-	複数の Microsoft SharePoint 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0653	2011-10-21 15:17	2011-09-13	Show	GitHub Exploit DB Packet Storm

255038	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2001	2011-10-21 11:55	2011-10-11	Show	GitHub Exploit DB Packet Storm

255039	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2000	2011-10-21 11:50	2011-10-11	Show	GitHub Exploit DB Packet Storm

255040	5	警告	マイクロソフト	-	Microsoft Host Integration Server におけるサービス運用妨害 (SNA サーバサービスの休止) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-2008	2011-10-21 11:49	2011-10-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
202801	8.8	HIGH Network	tibco oracle	jasperreports_library jasperreports_server retail_order_broker	The report generator component of TIBCO Software Inc.'s TIBCO JasperReports Library, TIBCO JasperReports Library for ActiveMatrix BPM, TIBCO JasperReports Server, TIBCO JasperReports Server for AWS M…	CWE-79 Cross-site Scripting	CVE-2020-9410	2024-11-21 14:40	2020-05-20	Show	GitHub Exploit DB Packet Storm

202802	9.8	CRITICAL Network	tibco oracle	jasperreports_server retail_order_broker	The administrative UI component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server for AWS Marketplace, and TIBCO JasperReports Server for ActiveMatrix BPM contains a vul…	CWE-276 Incorrect Default Permissions	CVE-2020-9409	2024-11-21 14:40	2020-05-20	Show	GitHub Exploit DB Packet Storm

202803	5.4	MEDIUM Network	microfocus	enterprise_developer enterprise_server	Cross Site scripting vulnerability on Micro Focus Enterprise Server and Enterprise developer, affecting all versions prior to version 5.0 Patch Update 8. The vulnerability could allow an attacker to …	CWE-79 Cross-site Scripting	CVE-2020-9524	2024-11-21 14:40	2020-05-18	Show	GitHub Exploit DB Packet Storm

202804	9.8	CRITICAL Network	dahuasecurity	sd6al_firmware sd5a_firmware sd1a_firmware ptz1a_firmware sd50_firmware sd52c_firmware ipc-hx5842h_firmware ipc-hx7842h_firmware ipc-hx2xxx_firmware ipc-hxxx5x4x_firmware	Some Dahua products with Build time before December 2019 have Session ID predictable vulnerabilities. During normal user access, an attacker can use the predicted Session ID to construct a data packe…	CWE-330 Use of Insufficiently Random Values	CVE-2020-9502	2024-11-21 14:40	2020-05-14	Show	GitHub Exploit DB Packet Storm

202805	5.5	MEDIUM Local	dahuasecurity	web_p2p	Attackers can obtain Cloud Key information from the Dahua Web P2P control in specific ways. Cloud Key is used to authenticate the connection between the client tool and the platform. An attacker may …	NVD-CWE-noinfo	CVE-2020-9501	2024-11-21 14:40	2020-05-14	Show	GitHub Exploit DB Packet Storm

202806	7.5	HIGH Network	oracle	iplanet_web_server	PRODUCT NOT SUPPORTED WHEN ASSIGNED Oracle iPlanet Web Server 7.0.x has Incorrect Access Control for admingui/version URIs in the Administration console, as demonstrated by unauthenticated read…	CWE-306 Missing Authentication for Critical Function	CVE-2020-9315	2024-11-21 14:40	2020-05-11	Show	GitHub Exploit DB Packet Storm

202807	4.8	MEDIUM Network	oracle	iplanet_web_server	PRODUCT NOT SUPPORTED WHEN ASSIGNED Oracle iPlanet Web Server 7.0.x allows image injection in the Administration console via the productNameSrc parameter to an admingui URI. This issue exists b…	CWE-79 Cross-site Scripting	CVE-2020-9314	2024-11-21 14:40	2020-05-11	Show	GitHub Exploit DB Packet Storm

202808	7.0	HIGH Local	siedle	sg_150-0_firmware	The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows local privilege escalation via a race condition in logrotate. By using an exploit chain, an attacker with access to the network can g…	CWE-362 Race Condition	CVE-2020-9475	2024-11-21 14:40	2020-05-8	Show	GitHub Exploit DB Packet Storm

202809	8.8	HIGH Network	siedle	sg_150-0_firmware	The S. Siedle & Soehne SG 150-0 Smart Gateway before 1.2.4 allows remote code execution via the backup functionality in the web frontend. By using an exploit chain, an attacker with access to the net…	CWE-494 Download of Code Without Integrity Check	CVE-2020-9474	2024-11-21 14:40	2020-05-8	Show	GitHub Exploit DB Packet Storm

202810	7.5	HIGH Network	huawei	oceanstor_5310_firmware	Huawei OceanStor 5310 product with version of V500R007C60SPC100 has an invalid pointer access vulnerability. The software system access an invalid pointer when attacker malformed packet. Due to the i…	CWE-763 Release of Invalid Pointer or Reference	CVE-2020-9098	2024-11-21 14:40	2020-05-1	Show	GitHub Exploit DB Packet Storm