Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256491 1.2 注意 日本電気
サイバートラスト株式会社
サン・マイクロシステムズ
ターボリナックス
OpenSSL Project
レッドハット		 - RSA key reconstruction vulnerability - CVE-2007-3108 2010-05-14 18:37 2007-08-16 Show GitHub Exploit DB Packet Storm
256492 5 警告 ヒューレット・パッカード
サイバートラスト株式会社
OpenSSL Project
ターボリナックス
レッドハット		 - OpenSSL の zlib_stateful_finish 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-4355 2010-05-13 17:21 2010-01-13 Show GitHub Exploit DB Packet Storm
256493 9.3 危険 日立 - XMAP3 における任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		- 2010-05-13 15:14 2010-04-12 Show GitHub Exploit DB Packet Storm
256494 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Plan In-Season コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0863 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
256495 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Place In-Season コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0864 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
256496 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Markdown Optimization コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0862 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
256497 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Thesaurus Management System コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0875 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
256498 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Clinical Remote Data Capture Option コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0876 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
256499 4.3 警告 オラクル - Oracle Industry Product Suite の Communications - Oracle Communications Unified Inventory Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0874 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
256500 4 警告 オラクル - 複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0879 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212961 5.5 MEDIUM
Local 		intel jhl6240_thunderbolt_3_firmware
jhl6340_thunderbolt_3_firmware
jhl6540_thunderbolt_3_firmware
jhl7040_thunderbolt_3_retimer_firmware
jhl7340_thunderbolt_3_firmware
jhl7440_thunderbolt_3… 		Protection mechanism failure in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access. NVD-CWE-Other
CVE-2020-12288 2024-11-21 13:59 2021-06-10 Show GitHub Exploit DB Packet Storm
212962 9.1 CRITICAL
Network 		mozilla nss A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS in versions before 3.55. When using multi-part Chacha20, it could cause out-of-bounds reads. This issue was fixed by explicitly di… CWE-125
Out-of-bounds Read 		CVE-2020-12403 2024-11-21 13:59 2021-05-28 Show GitHub Exploit DB Packet Storm
212963 9.8 CRITICAL
Network 		nitrokey fido_u2f_firmware An issue was discovered in Nitrokey FIDO U2F firmware through 1.1. Communication between the microcontroller and the secure element transmits credentials in plain. This allows an adversary to eavesdr… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-12061 2024-11-21 13:59 2021-05-21 Show GitHub Exploit DB Packet Storm
212964 5.3 MEDIUM
Network 		beckhoff ipc_diagnostics_ua_server
tf6100
twincat_opc_ua_server 		TwinCAT OPC UA Server in versions up to 2.3.0.12 and IPC Diagnostics UA Server in versions up to 3.1.0.1 from Beckhoff Automation GmbH & Co. KG are vulnerable to denial of service attacks. The attack… CWE-20
 Improper Input Validation  		CVE-2020-12526 2024-11-21 13:59 2021-05-13 Show GitHub Exploit DB Packet Storm
212965 6.1 MEDIUM
Network 		vivo appstore The appstore before 8.12.0.0 exposes some of its components, and the attacker can cause remote download and install apps through carefully constructed parameters. CWE-601
Open Redirect 		CVE-2020-12483 2024-11-21 13:59 2021-03-24 Show GitHub Exploit DB Packet Storm
212966 6.1 MEDIUM
Network 		mbconnectline mbconnect24
mymbconnect24 		An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2. There is an XSS issue in the redirect.php allowing an attacker to inject code via a g… CWE-79
Cross-site Scripting 		CVE-2020-12530 2024-11-21 13:59 2021-03-3 Show GitHub Exploit DB Packet Storm
212967 5.3 MEDIUM
Network 		mbconnectline mbconnect24
mymbconnect24 		An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2 There is a SSRF in the LDAP access check, allowing an attacker to scan for open ports. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-12529 2024-11-21 13:59 2021-03-3 Show GitHub Exploit DB Packet Storm
212968 7.7 HIGH
Network 		mbconnectline mbconnect24
mymbconnect24 		An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2. Improper use of access validation allows a logged in user to kill web2go sessions in … CWE-269
 Improper Privilege Management 		CVE-2020-12528 2024-11-21 13:59 2021-03-3 Show GitHub Exploit DB Packet Storm
212969 6.5 MEDIUM
Network 		mbconnectline
helmholz 		mbconnect24
mymbconnect24
myrex24.virtual
myrex24 		An issue was discovered in MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual in all versions through v2.11.2. Improper access validation allows a logged in user to s… - CVE-2020-12527 2024-11-21 13:59 2021-03-3 Show GitHub Exploit DB Packet Storm
212970 8.2 HIGH
Network 		apache
fedoraproject 		xmlgraphics_commons
fedora 		Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. By using a specially-crafted argument, an attacker could… CWE-20
CWE-918
 Improper Input Validation 
Server-Side Request Forgery (SSRF)  		CVE-2020-11988 2024-11-21 13:59 2021-02-25 Show GitHub Exploit DB Packet Storm