Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255451 9.3 危険 Google
レッドハット		 - Google Chrome の WebM libvpx におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-4203 2011-01-20 13:41 2010-11-4 Show GitHub Exploit DB Packet Storm
255452 10 危険 Ecava - Ecava IntegraXor にバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4597 2011-01-20 13:33 2010-12-20 Show GitHub Exploit DB Packet Storm
255453 9.3 危険 アドビシステムズ - Adobe PhotoShop における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2010-3127 2011-01-20 13:29 2010-08-26 Show GitHub Exploit DB Packet Storm
255454 6.1 警告 アップル - 複数の Apple 製品上で稼働する ICMPv6 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-2189 2011-01-20 11:14 2010-12-22 Show GitHub Exploit DB Packet Storm
255455 7.1 危険 アップル - 複数の Apple 製品上で稼働するネットワークブリッジ機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-1804 2011-01-19 16:36 2010-12-22 Show GitHub Exploit DB Packet Storm
255456 2.6 注意 アップル - 複数の Apple 製品上で稼働する Application-Level Gateway におけるデバイスの IP アドレスを使用される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0039 2011-01-19 16:34 2010-12-22 Show GitHub Exploit DB Packet Storm
255457 - - Invensys - Wonderware InBatch と I/A Series Batch の database lock manager service (lm_tcp) にバッファオーバーフローの脆弱性 - - 2011-01-19 15:54 2010-12-16 Show GitHub Exploit DB Packet Storm
255458 6.9 警告 Exim Development
レッドハット		 - Exim における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4345 2011-01-19 15:41 2010-12-14 Show GitHub Exploit DB Packet Storm
255459 4 警告 マイクロソフト - x64 プラットフォーム上で稼働している Microsoft Exchange Server 2007 におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3937 2011-01-19 15:31 2010-12-14 Show GitHub Exploit DB Packet Storm
255460 9.3 危険 マイクロソフト - Microsoft Office XP および Office Converter Pack における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3952 2011-01-19 15:28 2010-12-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
202731 6.1 MEDIUM
Network 		mediawiki mediawiki The WikibaseMediaInfo extension 1.35 for MediaWiki allows XSS because of improper template syntax within the PropertySuggestionsWidget template (in the templates/search/PropertySuggestionsWidget.must… CWE-79
Cross-site Scripting 		CVE-2020-6163 2024-11-21 14:35 2020-01-8 Show GitHub Exploit DB Packet Storm
202732 7.5 HIGH
Local 		insyde
siemens 		insydeh2o
ruggedcom_ape1808_firmware
simatic_field_pg_m6_firmware
simatic_ipc127e_firmware
simatic_ipc227g_firmware
simatic_ipc277g_firmware
simatic_itp1000_firmware
simatic_ipc4… 		A vulnerability exists in System Management Interrupt (SWSMI) handler of InsydeH2O UEFI Firmware code located in SWSMI handler that dereferences gRT (EFI_RUNTIME_SERVICES) pointer to call a GetVariab… NVD-CWE-noinfo
CVE-2020-5953 2024-11-21 14:34 2022-02-3 Show GitHub Exploit DB Packet Storm
202733 7.5 HIGH
Network 		insyde insydeh2o An issue was discovered in SdLegacySmm in Insyde InsydeH2O with kernel 5.1 before 05.15.11, 5.2 before 05.25.11, 5.3 before 05.34.11, and 5.4 before 05.42.11. The software SMI handler allows untruste… CWE-20
 Improper Input Validation  		CVE-2020-5956 2024-11-21 14:34 2022-01-6 Show GitHub Exploit DB Packet Storm
202734 9.8 CRITICAL
Network 		insyde insydeh2o_uefi_bios An issue was discovered in Int15MicrocodeSmm in Insyde InsydeH2O before 2021-10-14 on Intel client chipsets. A caller may be able to escalate privileges. NVD-CWE-noinfo
CVE-2020-5955 2024-11-21 14:34 2021-11-3 Show GitHub Exploit DB Packet Storm
202735 5.4 MEDIUM
Network 		sixapart movable_type Cross-site scripting vulnerability in Movable Type Movable Type Premium 1.37 and earlier and Movable Type Premium Advanced 1.37 and earlier allows a remote authenticated attacker to inject an arbitra… CWE-79
Cross-site Scripting 		CVE-2020-5669 2024-11-21 14:34 2021-10-26 Show GitHub Exploit DB Packet Storm
202736 6.8 MEDIUM
Network 		dell emc_openmanage_enterprise Dell EMC OpenManage Enterprise (OME) versions prior to 3.4 contain an arbitrary file overwrite vulnerability. A remote authenticated malicious user with high privileges could potentially exploit this… CWE-22
Path Traversal 		CVE-2020-5370 2024-11-21 14:34 2021-07-23 Show GitHub Exploit DB Packet Storm
202737 5.9 MEDIUM
Network 		tenable nessus_amazon_machine_image Nessus AMI versions 8.12.0 and earlier were found to either not validate, or incorrectly validate, a certificate which could allow an attacker to spoof a trusted entity by using a man-in-the-middle (… CWE-295
Improper Certificate Validation  		CVE-2020-5812 2024-11-21 14:34 2021-02-6 Show GitHub Exploit DB Packet Storm
202738 8.8 HIGH
Network 		infoscience elc_analytics
logstorage 		Logstorage version 8.0.0 and earlier, and ELC Analytics version 3.0.0 and earlier allow remote attackers to execute arbitrary OS commands via a specially crafted log file. CWE-78
OS Command  		CVE-2020-5626 2024-11-21 14:34 2021-01-28 Show GitHub Exploit DB Packet Storm
202739 6.0 MEDIUM
Network 		vmware spring_cloud_task In applications using Spring Cloud Task 2.2.4.RELEASE and below, may be vulnerable to SQL injection when exercising certain lookup queries in the TaskExplorer. CWE-89
SQL Injection 		CVE-2020-5428 2024-11-21 14:34 2021-01-28 Show GitHub Exploit DB Packet Storm
202740 7.2 HIGH
Network 		vmware spring_cloud_data_flow In Spring Cloud Data Flow, versions 2.6.x prior to 2.6.5, versions 2.5.x prior 2.5.4, an application is vulnerable to SQL injection when requesting task execution. CWE-89
SQL Injection 		CVE-2020-5427 2024-11-21 14:34 2021-01-28 Show GitHub Exploit DB Packet Storm