Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256311 9.3 危険 マイクロソフト - 複数の Microsoft 製品におけるセルに含まれる計算式の処理に関する任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3131 2010-01-5 16:17 2009-11-10 Show GitHub Exploit DB Packet Storm
256312 9.3 危険 マイクロソフト - Microsoft Office Excel における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3128 2010-01-5 16:17 2009-11-10 Show GitHub Exploit DB Packet Storm
256313 9.3 危険 マイクロソフト - Microsoft Office および Open XML File Format Converter における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3127 2010-01-5 16:16 2009-11-10 Show GitHub Exploit DB Packet Storm
256314 6.8 警告 アップル
サイバートラスト株式会社
サン・マイクロシステムズ
ターボリナックス
ヒューレット・パッカード
OpenSSL Project
レッドハット		 - OpenSSL の SSL_get_shared_ciphers() 関数における一つずれエラーの脆弱性 CWE-189
数値処理の問題 		CVE-2007-5135 2010-01-5 13:31 2007-10-12 Show GitHub Exploit DB Packet Storm
256315 7.8 危険 マイクロソフト - Microsoft Windows で稼働している Active Directory の LDAP サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1928 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
256316 9.3 危険 マイクロソフト - Microsoft Windows の kernel における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2514 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
256317 6.8 警告 マイクロソフト - Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2513 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
256318 6.8 警告 マイクロソフト - Microsoft Windows の kernel における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1127 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
256319 10 危険 マイクロソフト - Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-2523 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
256320 9.3 危険 マイクロソフト - Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2512 2010-01-4 15:23 2009-11-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198741 4.9 MEDIUM
Network 		arubanetworks analytics_and_location_engine A vulnerability exists in the Aruba Analytics and Location Engine (ALE) web management interface 2.1.0.2 and earlier firmware that allows an already authenticated administrative user to arbitrarily m… NVD-CWE-noinfo
CVE-2020-7119 2024-11-21 14:36 2020-09-4 Show GitHub Exploit DB Packet Storm
198742 9.1 CRITICAL
Network 		zte zxiptv_firmware A ZTE product is impacted by the cryptographic issues vulnerability. The encryption algorithm is not properly used, so remote attackers could use this vulnerability for account credential enumeration… CWE-327
CWE-522
 Use of a Broken or Risky Cryptographic Algorithm
 Insufficiently Protected Credentials 		CVE-2020-6874 2024-11-21 14:36 2020-09-2 Show GitHub Exploit DB Packet Storm
198743 5.3 MEDIUM
Network 		zte zxr10_2800-4_almpufb\(low\)_firmware A ZTE product has a DoS vulnerability. Because the equipment couldn’t distinguish the attack packets and normal packets with valid http links, the remote attackers could use this vulnerability to cau… NVD-CWE-noinfo
CVE-2020-6873 2024-11-21 14:36 2020-09-2 Show GitHub Exploit DB Packet Storm
198744 9.8 CRITICAL
Network 		os4ed opensis openSIS Community Edition version 7.3 is vulnerable to SQL injection via the USERNAME parameter of index.php. CWE-89
SQL Injection 		CVE-2020-6637 2024-11-21 14:36 2020-08-25 Show GitHub Exploit DB Packet Storm
198745 6.5 MEDIUM
Network 		elastic elasticsearch In Elasticsearch before 7.9.0 and 6.8.12 a field disclosure flaw was found when running a scrolling search with Field Level Security. If a user runs the same query another more privileged user recent… CWE-269
 Improper Privilege Management 		CVE-2020-7019 2024-11-21 14:36 2020-08-19 Show GitHub Exploit DB Packet Storm
198746 8.8 HIGH
Network 		elastic enterprise_search Elastic Enterprise Search before 7.9.0 contain a credential exposure flaw in the App Search interface. If a user is given the �developer� role, they will be able to view the administrator API cre… CWE-269
 Improper Privilege Management 		CVE-2020-7018 2024-11-21 14:36 2020-08-19 Show GitHub Exploit DB Packet Storm
198747 3.9 LOW
Physics 		eaton secureconnect Eaton's Secure connect mobile app v1.7.3 & prior stores the user login credentials in logcat file when user create or register the account on the Mobile app. A malicious app or unauthorized user can … CWE-200
CWE-532
Information Exposure
 Inclusion of Sensitive Information in Log Files 		CVE-2020-6653 2024-11-21 14:36 2020-08-13 Show GitHub Exploit DB Packet Storm
198748 9.8 CRITICAL
Network 		blackberry qnx_software_development_platform An information disclosure and remote code execution vulnerability in the slinger web server of the BlackBerry QNX Software Development Platform versions 6.4.0 to 6.6.0 could allow an attacker to pote… NVD-CWE-noinfo
CVE-2020-6932 2024-11-21 14:36 2020-08-12 Show GitHub Exploit DB Packet Storm
198749 8.8 HIGH
Network 		avaya aura_messaging
aura_communication_manager 		A Cross-Site Request Forgery (CSRF) vulnerability was discovered in the System Management Interface Web component of Avaya Aura Communication Manager and Avaya Aura Messaging. This vulnerability coul… CWE-352
 Origin Validation Error 		CVE-2020-7029 2024-11-21 14:36 2020-08-12 Show GitHub Exploit DB Packet Storm
198750 6.7 MEDIUM
Local 		hpe intelligent_provisioning
service_pack_for_proliant
smartstart_scripting_toolkit 		A potential security vulnerability has been identified in HPE Intelligent Provisioning, Service Pack for ProLiant, and HPE Scripting ToolKit. The vulnerability could be locally exploited to allow arb… NVD-CWE-noinfo
CVE-2020-7205 2024-11-21 14:36 2020-07-31 Show GitHub Exploit DB Packet Storm