Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 12:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255271	7.2	危険	IBM	-	IBM AIX および VIOS の qoslist におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0961	2010-03-18 12:09	2010-03-5	Show	GitHub Exploit DB Packet Storm

255272	9	危険	マイクロソフト	-	Microsoft Virtual PC の VMM におけるゲスト OS 内で任意のカーネルモードコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1542	2010-03-17 12:18	2009-07-14	Show	GitHub Exploit DB Packet Storm

255273	6.8	警告	IBM	-	IBM Lotus Domino Web Access におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-0921	2010-03-16 11:15	2010-03-3	Show	GitHub Exploit DB Packet Storm

255274	4.3	警告	IBM	-	IBM Lotus Domino Web Access におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0920	2010-03-16 11:14	2010-03-3	Show	GitHub Exploit DB Packet Storm

255275	10	危険	IBM	-	IBM Lotus Domino Web Access の UltraLite 機能における脆弱性	CWE-noinfo 情報不足	CVE-2010-0918	2010-03-16 11:14	2010-03-3	Show	GitHub Exploit DB Packet Storm

255276	4.9	警告	サイバートラスト株式会社レッドハット SystemTap	-	SystemTap の _get_argv および _get_compat_argv 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-0411	2010-03-16 11:14	2010-02-8	Show	GitHub Exploit DB Packet Storm

255277	10	危険	サイバートラスト株式会社レッドハット SystemTap	-	SystemTap の stap-server における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4273	2010-03-16 11:14	2010-01-26	Show	GitHub Exploit DB Packet Storm

255278	6.5	警告	サイバートラスト株式会社 Linux レッドハット	-	KVM の x86 エミュレータにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0298	2010-03-16 11:13	2010-02-9	Show	GitHub Exploit DB Packet Storm

255279	4.4	警告	サイバートラスト株式会社 Fabrice Bellard レッドハット	-	QEMU の usb_host_handle_control 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0297	2010-03-16 11:13	2010-02-9	Show	GitHub Exploit DB Packet Storm

255280	6.8	警告	サン・マイクロシステムズ freedesktop.org	-	Poppler における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-3605	2010-03-15 16:40	2009-11-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211431	7.5	HIGH Network	openldap debian opensuse canonical netapp broadcom apple oracle	openldap debian_linux leap ubuntu_linux cloud_backup steelstore_cloud_integrated_storage h410c_firmware h300s_firmware h500s_firmware h700s_firmware h300e_firmware h5…	In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of service (daemon crash).	CWE-674 Uncontrolled Recursion	CVE-2020-12243	2024-11-21 13:59	2020-04-29	Show	GitHub Exploit DB Packet Storm

211432	4.3	MEDIUM Network	octopus	octopus_deploy	In Octopus Deploy before 2019.12.9 and 2020 before 2020.1.12, the TaskView permission is not scoped to any dimension. For example, a scoped user who is scoped to only one tenant can view server tasks…	NVD-CWE-noinfo	CVE-2020-12286	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm

211433	9.8	CRITICAL Network	ffmpeg canonical debian	ffmpeg ubuntu_linux debian_linux	cbs_jpeg_split_fragment in libavcodec/cbs_jpeg.c in FFmpeg 4.1 and 4.2.2 has a heap-based buffer overflow during JPEG_MARKER_SOS handling because of a missing length check.	CWE-787 Out-of-bounds Write	CVE-2020-12284	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm

211434	8.8	HIGH Network	opmantek	open-audit	An issue was discovered in Open-AudIT 3.3.1. There is shell metacharacter injection via attributes to an open-audit/configuration/ URI. An attacker can exploit this by adding an excluded IP address t…	CWE-78 OS Command	CVE-2020-12078	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm

211435	9.8	CRITICAL Network	libgit2 debian	libgit2 debian_linux	An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. checkout.c mishandles equivalent filenames that exist because of NTFS short names. This may allow remote code execution when c…	CWE-706 Use of Incorrectly-Resolved Name or Reference	CVE-2020-12279	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm

211436	9.8	CRITICAL Network	libgit2 debian	libgit2 debian_linux	An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. path.c mishandles equivalent filenames that exist because of NTFS Alternate Data Streams. This may allow remote code execution…	CWE-706 Use of Incorrectly-Resolved Name or Reference	CVE-2020-12278	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm

211437	7.5	HIGH Network	wavlink	wl-wn579g3_firmware wl-wn575a3_firmware wl-wn530hg4_firmware wn531g3_firmware wn533a8_firmware wn531a6_firmware wn551k1_firmware wn535g3_firmware wn530h4_firmware wn57x93_f…	An issue was discovered where there are multiple externally accessible pages that do not require any sort of authentication, and store system information for internal usage. The devices automatically…	CWE-306 Missing Authentication for Critical Function	CVE-2020-12266	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm

211438	7.8	HIGH Local	valvesoftware	source	Valve Source allows local users to gain privileges by writing to the /tmp/hl2_relaunch file, which is later executed in the context of a different user account.	CWE-78 OS Command	CVE-2020-12242	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm

211439	8.8	HIGH Network	amd	atillk64	AMD ATI atillk64.sys 5.11.9.0 allows low-privileged users to interact directly with physical memory by calling one of several driver routines that map physical memory into the virtual address space o…	CWE-862 Missing Authorization	CVE-2020-12138	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm

211440	9.8	CRITICAL Network	farukawa	electric_consciousmap	The Apros Evolution, ConsciusMap, and Furukawa provisioning systems through 2.8.1 allow remote code execution because of javax.faces.ViewState Java deserialization.	CWE-502 Deserialization of Untrusted Data	CVE-2020-12133	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm