Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255491	6.2	警告	サイバートラスト株式会社 VMware Todd C. Miller レッドハット	-	sudo における権限昇格の脆弱性	CWE-DesignError	CVE-2010-2956	2011-01-14 14:44	2010-09-7	Show	GitHub Exploit DB Packet Storm

255492	-	-	GNU Project VMware サイバートラスト株式会社レッドハット	-	glibc に権限昇格の脆弱性	-	CVE-2010-3847	2011-01-14 14:42	2010-10-26	Show	GitHub Exploit DB Packet Storm

255493	7.8	危険	マイクロソフトアドビシステムズ日本電気	-	Microsoft Visual Studio の ATL における終端文字列の処理に関する重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-2495	2011-01-14 14:33	2009-07-28	Show	GitHub Exploit DB Packet Storm

255494	9.3	危険	サン・マイクロシステムズアドビシステムズ日本電気マイクロソフト OpenOffice.org Project	-	Microsoft Visual Studio の ATL におけるオブジェクトのインスタンス化処理に関する任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2493	2011-01-14 14:32	2009-07-28	Show	GitHub Exploit DB Packet Storm

255495	9.3	危険	マイクロソフトアドビシステムズ日本電気	-	Microsoft Visual Studio の ATL における未初期化オブジェクト処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-0901	2011-01-14 14:31	2009-07-28	Show	GitHub Exploit DB Packet Storm

255496	6.9	警告	マイクロソフト	-	Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2010-3957	2011-01-13 16:22	2010-12-14	Show	GitHub Exploit DB Packet Storm

255497	9.3	危険	マイクロソフト	-	Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性	CWE-94 コード・インジェクション	CVE-2010-3956	2011-01-13 16:19	2010-12-14	Show	GitHub Exploit DB Packet Storm

255498	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3346	2011-01-13 16:15	2010-12-14	Show	GitHub Exploit DB Packet Storm

255499	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3345	2011-01-13 16:11	2010-12-14	Show	GitHub Exploit DB Packet Storm

255500	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3343	2011-01-13 15:48	2010-12-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
215851	6.1	MEDIUM Network	broadcom	ca_api_developer_portal	CA API Developer Portal 4.3.1 and earlier handles homeRedirect page redirects in an insecure manner, which allows attackers to perform open redirect attacks.	CWE-601 Open Redirect	CVE-2020-11664	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

215852	6.1	MEDIUM Network	broadcom	ca_api_developer_portal	CA API Developer Portal 4.3.1 and earlier handles 404 requests in an insecure manner, which allows attackers to perform open redirect attacks.	CWE-601 Open Redirect	CVE-2020-11663	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

215853	7.5	HIGH Network	broadcom	ca_api_developer_portal	CA API Developer Portal 4.3.1 and earlier handles requests insecurely, which allows remote attackers to exploit a Cross-Origin Resource Sharing flaw and access sensitive information.	NVD-CWE-noinfo	CVE-2020-11662	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

215854	8.1	HIGH Network	broadcom	ca_api_developer_portal	CA API Developer Portal 4.3.1 and earlier contains an access control flaw that allows privileged users to view and edit user data.	NVD-CWE-noinfo	CVE-2020-11661	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

215855	9.8	CRITICAL Network	z-cron	z-cron	Z-Cron 5.6 Build 04 allows an unprivileged attacker to elevate privileges by modifying a privileged user's task. This can also affect all users who are signed in on the system if a shell is placed in…	CWE-269 Improper Privilege Management	CVE-2020-11799	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

215856	7.5	HIGH Network	netgear	r8900_firmware r9000_firmware rax120_firmware xr700_firmware	NETGEAR R8900, R9000, RAX120, and XR700 devices before 2020-01-20 are affected by Transport Layer Security (TLS) certificate private key disclosure.	CWE-295 Improper Certificate Validation	CVE-2020-11792	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

215857	6.1	MEDIUM Network	netgear	jgs516pe_firmware	NETGEAR JGS516PE devices before 2.6.0.43 are affected by reflected XSS.	CWE-79 Cross-site Scripting	CVE-2020-11791	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

215858	9.8	CRITICAL Network	netgear	r7800_firmware	NETGEAR R7800 devices before 1.0.2.68 are affected by remote code execution by unauthenticated attackers.	NVD-CWE-noinfo	CVE-2020-11790	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

215859	9.8	CRITICAL Network	netgear	r6400_firmware r6700_firmware r6900_firmware r7900_firmware	Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects R6400v2 before 1.0.4.84, R6700 before 1.0.2.8, R6700v3 before 1.0.4.84, R6900 before 1.0.2.8, an…	CWE-77 Command Injection	CVE-2020-11789	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm

215860	8.8	HIGH Adjacent	netgear	d6200_firmware d7000_firmware pr2000_firmware r6050_firmware jr6150_firmware r6120_firmware r6220_firmware r6230_firmware r6260_firmware r6700_firmware r6800_firmware	Certain NETGEAR devices are affected by authentication bypass. This affects D6200 before 1.1.00.34, D7000 before 1.0.1.68, PR2000 before 1.0.0.28, R6050 before 1.0.1.18, JR6150 before 1.0.1.18, R6120…	NVD-CWE-noinfo	CVE-2020-11788	2024-11-21 13:58	2020-04-16	Show	GitHub Exploit DB Packet Storm