Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256021	9.3	危険	VMware	-	VMnc メディアコーデックおよびムービーデコーダにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-1565	2010-05-7 17:26	2010-04-9	Show	GitHub Exploit DB Packet Storm

256022	9.3	危険	VMware	-	VMnc メディアコーデックおよびムービーデコーダにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1564	2010-05-7 17:25	2010-04-9	Show	GitHub Exploit DB Packet Storm

256023	10	危険	VMware	-	VMware Remote Console の vmware-vmrc.exe build 158248 における任意のコードを実行される脆弱性	CWE-134 書式文字列の問題	CVE-2009-3732	2010-05-7 17:25	2010-04-9	Show	GitHub Exploit DB Packet Storm

256024	7.2	危険	VMware	-	複数の VMware 製品の vmrun における権限昇格の脆弱性	CWE-134 書式文字列の問題	CVE-2010-1139	2010-05-7 17:25	2010-04-9	Show	GitHub Exploit DB Packet Storm

256025	5	警告	VMware	-	複数の VMware 製品の仮想ネットワークスタックにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1138	2010-05-7 17:25	2010-04-9	Show	GitHub Exploit DB Packet Storm

256026	8.5	危険	VMware	-	複数の VMware 製品の VMware Tools における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1142	2010-05-7 17:24	2010-04-9	Show	GitHub Exploit DB Packet Storm

256027	8.5	危険	VMware	-	複数の VMware 製品の VMware Tools における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1141	2010-05-7 17:24	2010-04-9	Show	GitHub Exploit DB Packet Storm

256028	5	警告	アップルサイバートラスト株式会社レッドハットターボリナックス CUPS	-	CUPS の ippReadIO 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0949	2010-05-7 16:55	2009-06-3	Show	GitHub Exploit DB Packet Storm

256029	6.8	警告	レッドハットサイバートラスト株式会社ターボリナックス CUPS	-	CUPS の TIFF イメージデコーディングルーチンにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0163	2010-05-7 16:51	2009-04-16	Show	GitHub Exploit DB Packet Storm

256030	4.6	警告	GNU Project サイバートラスト株式会社レッドハット	-	GNU cpio における大きなサイズのファイル処理によるバッファーオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2005-4268	2010-05-7 16:51	2005-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212521	5.5	MEDIUM Local	phoenixcontact	plcnext_firmware	On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use the knowledge gained by reading the insufficiently protected sensitive information to plan further attacks.	CWE-200 Information Exposure	CVE-2020-12518	2024-11-21 13:59	2020-12-18	Show	GitHub Exploit DB Packet Storm

212522	9.0	CRITICAL Network	phoenixcontact	plcnext_firmware	On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an authenticated low privileged user could embed malicious Javascript code to gain admin rights when the admin user visits the vu…	CWE-79 Cross-site Scripting	CVE-2020-12517	2024-11-21 13:59	2020-12-18	Show	GitHub Exploit DB Packet Storm

212523	9.1	CRITICAL Network	phoenixcontact	tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware fl_mguard_rs4004_tx\/dtx_firmware fl_mguard_rs4004_tx\/dtx_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mg…	On Phoenix Contact mGuard Devices versions before 8.8.3 LAN ports get functional after reboot even if they are disabled in the device configuration. For mGuard devices with integrated switch on the L…	CWE-909 Missing Initialization of Resource	CVE-2020-12523	2024-11-21 13:59	2020-12-18	Show	GitHub Exploit DB Packet Storm

212524	9.8	CRITICAL Network	wago	pfc_100_firmware pfc_200_firmware touch_panel_600_standard_firmware touch_panel_600_advanced_firmware touch_panel_600_marine_firmware	The reported vulnerability allows an attacker who has network access to the device to execute code with specially crafted packets in WAGO Series PFC 100 (750-81xx/xxx-xxx), Series PFC 200 (750-82xx/x…	CWE-78 OS Command	CVE-2020-12522	2024-11-21 13:59	2020-12-18	Show	GitHub Exploit DB Packet Storm

212525	6.8	MEDIUM Network	arubanetworks	edgeconnect_enterprise	The configuration backup/restore function in Silver Peak Unity ECOSTM (ECOS) appliance software was found to directly incorporate the user-controlled config filename in a subsequent shell command, al…	CWE-78 OS Command	CVE-2020-12149	2024-11-21 13:59	2020-12-12	Show	GitHub Exploit DB Packet Storm

212526	6.8	MEDIUM Network	arubanetworks	edgeconnect_enterprise	A command injection flaw identified in the nslookup API in Silver Peak Unity ECOSTM (ECOS) appliance software could allow an attacker to execute arbitrary commands with the privileges of the web serv…	CWE-78 OS Command	CVE-2020-12148	2024-11-21 13:59	2020-12-12	Show	GitHub Exploit DB Packet Storm

212527	4.9	MEDIUM Network	broadcom	symantec_messaging_gateway	An information disclosure flaw allows a malicious, authenticated, privileged web UI user to obtain a password for a remote SCP backup server that they might not otherwise be authorized to access. Thi…	NVD-CWE-noinfo	CVE-2020-12595	2024-11-21 13:59	2020-12-10	Show	GitHub Exploit DB Packet Storm

212528	7.2	HIGH Network	broadcom	symantec_messaging_gateway	A privilege escalation flaw allows a malicious, authenticated, privileged CLI user to escalate their privileges on the system and gain full control over the SMG appliance. This affects SMG prior to 1…	NVD-CWE-noinfo	CVE-2020-12594	2024-11-21 13:59	2020-12-10	Show	GitHub Exploit DB Packet Storm

212529	7.5	HIGH Network	wago	750-352_firmware 750-831_firmware 750-852_firmware 750-880_firmware 750-881_firmware 750-889_firmware 750-331_firmware 750-829_firmware 750-882_firmware 750-885_firmware	Older firmware versions (FW1 up to FW10) of the WAGO PLC family 750-88x and 750-352 are vulnerable for a special denial of service attack.	NVD-CWE-noinfo	CVE-2020-12516	2024-11-21 13:59	2020-12-10	Show	GitHub Exploit DB Packet Storm

212530	7.5	HIGH Network	phoenixcontact	btp_2043w_firmware btp_2070w_firmware btp_2102w_firmware	Uncontrolled Resource Consumption can be exploited to cause the Phoenix Contact HMIs BTP 2043W, BTP 2070W and BTP 2102W in all versions to become unresponsive and not accurately update the display co…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-12524	2024-11-21 13:59	2020-12-3	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed