Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255221	7.8	危険	マイクロソフト	-	Microsoft Windows で稼働している Active Directory の LDAP サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-1928	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255222	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255223	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255224	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255225	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255226	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

255227	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

255228	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210271	7.2	HIGH Network	code42	code42	Code42 environments with on-premises server versions 7.0.4 and earlier allow for possible remote code execution. When an administrator creates a local (non-SSO) user via a Code42-generated email, the…	CWE-74 Injection	CVE-2020-12736	2024-11-21 14:00	2020-07-8	Show	GitHub Exploit DB Packet Storm

210272	8.8	HIGH Network	obdev	little_snitch	Little Snitch version 4.5.1 and older changed ownership of a directory path controlled by the user. This allowed the user to escalate to root by linking the path to a directory containing code execut…	CWE-59 Link Following	CVE-2020-13095	2024-11-21 14:00	2020-07-1	Show	GitHub Exploit DB Packet Storm

210273	7.3	HIGH Local	boolebox	boolebox	BooleBox Secure File Sharing Utility before 4.2.3.0 allows CSV injection via a crafted user name that is mishandled during export from the activity logs in the Audit Area.	CWE-1236 Improper Neutralization of Formula Elements in a CSV File	CVE-2020-13247	2024-11-21 14:00	2020-06-25	Show	GitHub Exploit DB Packet Storm

210274	5.4	MEDIUM Network	boolebox	boolebox	BooleBox Secure File Sharing Utility before 4.2.3.0 allows stored XSS via a crafted avatar field within My Account JSON data to Account.aspx.	CWE-79 Cross-site Scripting	CVE-2020-13248	2024-11-21 14:00	2020-06-25	Show	GitHub Exploit DB Packet Storm

210275	5.7	MEDIUM Adjacent	sane-project canonical opensuse	sane_backends ubuntu_linux leap	A NULL pointer dereference in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to cause a denial of service, GHSL-2020-079.	CWE-476 NULL Pointer Dereference	CVE-2020-12866	2024-11-21 14:00	2020-06-24	Show	GitHub Exploit DB Packet Storm

210276	8.0	HIGH Adjacent	sane-project debian canonical opensuse	sane_backends debian_linux ubuntu_linux leap	A heap buffer overflow in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-084.	CWE-787 Out-of-bounds Write	CVE-2020-12865	2024-11-21 14:00	2020-06-24	Show	GitHub Exploit DB Packet Storm

210277	4.3	MEDIUM Adjacent	sane-project opensuse canonical	sane_backends leap ubuntu_linux	An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the prog…	CWE-125 Out-of-bounds Read	CVE-2020-12864	2024-11-21 14:00	2020-06-24	Show	GitHub Exploit DB Packet Storm

210278	4.3	MEDIUM Adjacent	sane-project debian canonical opensuse	sane_backends debian_linux ubuntu_linux leap	An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the prog…	CWE-125 Out-of-bounds Read	CVE-2020-12863	2024-11-21 14:00	2020-06-24	Show	GitHub Exploit DB Packet Storm

210279	4.3	MEDIUM Adjacent	sane-project debian canonical opensuse	sane_backends debian_linux ubuntu_linux leap	An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the prog…	CWE-125 Out-of-bounds Read	CVE-2020-12862	2024-11-21 14:00	2020-06-24	Show	GitHub Exploit DB Packet Storm

210280	8.8	HIGH Adjacent	sane-project canonical opensuse	sane_backends ubuntu_linux leap	A heap buffer overflow in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-080.	CWE-787 Out-of-bounds Write	CVE-2020-12861	2024-11-21 14:00	2020-06-24	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed