Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256841	9.3	危険	マイクロソフト	-	Microsoft Windows の Indeo コーデックにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4311	2010-01-25 11:52	2009-12-8	Show	GitHub Exploit DB Packet Storm

256842	9.3	危険	マイクロソフト	-	Indeo コーデックに複数の脆弱性	CWE-119 バッファエラー	CVE-2009-4310	2010-01-25 11:52	2009-12-15	Show	GitHub Exploit DB Packet Storm

256843	9.3	危険	マイクロソフト	-	Microsoft Windows の Windows Media Player 用の Intel Indeo41 コーデックにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4309	2010-01-25 11:51	2009-12-8	Show	GitHub Exploit DB Packet Storm

256844	9.3	危険	マイクロソフト	-	Microsoft Windows の Indeo コーデックにおけるサービス運用妨害 (DoS) の脆弱性	CWE-94 コード・インジェクション	CVE-2009-4210	2010-01-25 11:51	2009-12-8	Show	GitHub Exploit DB Packet Storm

256845	5	警告	アップルサイバートラスト株式会社 IPsec-Tools レッドハット	-	Ipsec-tools の証明書検証および NAT-Traversal におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-1632	2010-01-25 11:48	2009-05-14	Show	GitHub Exploit DB Packet Storm

256846	4	警告	PostgreSQL.org サイバートラスト株式会社ターボリナックスサン・マイクロシステムズレッドハット	-	PostgreSQL のエラーメッセージの変換処理に関するサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0922	2010-01-25 11:48	2009-03-17	Show	GitHub Exploit DB Packet Storm

256847	5.7	警告	日本電気インターネットイニシアティブヤマハ古河電気工業	-	IPv6 を実装した複数の製品にサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	-	2010-01-25 11:47	2009-10-26	Show	GitHub Exploit DB Packet Storm

256848	9.3	危険	マイクロソフト	-	複数の Microsoft 製品のテキストコンバーターにおける整数オーバーフローの脆弱性	CWE-94 コード・インジェクション	CVE-2009-2506	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

256849	9	危険	マイクロソフト	-	Microsoft Windows の Active Directory フェデレーションサービスにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2509	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

256850	6.9	警告	マイクロソフト	-	Microsoft Windows の Active Directory フェデレーションサービスのシングルサインオン実装における認証情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-2508	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211951	4.3	MEDIUM Network	atlassian	jira_service_desk	Affected versions of Atlassian Jira Service Desk Server and Data Center allow remote attackers authenticated as a non-administrator user to view Project Request-Types and Descriptions, via an Informa…	NVD-CWE-noinfo	CVE-2020-14180	2024-11-21 14:02	2020-09-21	Show	GitHub Exploit DB Packet Storm

211952	5.3	MEDIUM Network	atlassian	jira_server jira_data_center	Affected versions of Atlassian Jira Server and Data Center allow remote, unauthenticated attackers to view custom field names and custom SLA names via an Information Disclosure vulnerability in the /…	NVD-CWE-noinfo	CVE-2020-14179	2024-11-21 14:02	2020-09-21	Show	GitHub Exploit DB Packet Storm

211953	6.5	MEDIUM Network	atlassian	jira_server	Affected versions of Atlassian Jira Server and Data Center allow remote attackers to impact the application's availability via a Regex-based Denial of Service (DoS) vulnerability in JQL version searc…	NVD-CWE-noinfo	CVE-2020-14177	2024-11-21 14:02	2020-09-21	Show	GitHub Exploit DB Packet Storm

211954	7.5	HIGH Network	ozeki	ozeki_ng_sms_gateway	An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The RSS To SMS module processes XML files in an unsafe manner. This opens the application to an XML External Entity attack that can be …	CWE-611 XXE	CVE-2020-14029	2024-11-21 14:02	2020-09-19	Show	GitHub Exploit DB Packet Storm

211955	4.9	MEDIUM Network	ozeki	ozeki_ng_sms_gateway	An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The ASP.net SMS module can be used to read and validate the source code of ASP files. By altering the path, it can be made to read any …	NVD-CWE-noinfo	CVE-2020-14021	2024-11-21 14:02	2020-09-19	Show	GitHub Exploit DB Packet Storm

211956	6.1	MEDIUM Network	apache	airflow	In Apache Airflow < 1.10.12, the "origin" parameter passed to some of the endpoints like '/trigger' was vulnerable to XSS exploit.	CWE-79 Cross-site Scripting	CVE-2020-13944	2024-11-21 14:02	2020-09-17	Show	GitHub Exploit DB Packet Storm

211957	5.3	MEDIUM Network	atlassian	jira data_center jira_server	Affected versions of Atlassian Jira Server and Data Center allow an unauthenticated user to enumerate users via an Information Disclosure vulnerability in the /ViewUserHover.jspa endpoint. The affect…	CWE-200 Information Exposure	CVE-2020-14181	2024-11-21 14:02	2020-09-17	Show	GitHub Exploit DB Packet Storm

211958	8.8	HIGH Network	apache	superset	While investigating a bug report on Apache Superset, it was determined that an authenticated user could craft requests via a number of templated text fields in the product that would allow arbitrary …	NVD-CWE-noinfo	CVE-2020-13948	2024-11-21 14:02	2020-09-17	Show	GitHub Exploit DB Packet Storm

211959	8.8	HIGH Network	istio-operator_project	istio-operator	An incorrect access control flaw was found in the operator, openshift-service-mesh/istio-rhel8-operator all versions through 1.1.3. This flaw allows an attacker with a basic level of access to the cl…	CWE-862 Missing Authorization	CVE-2020-14306	2024-11-21 14:02	2020-09-17	Show	GitHub Exploit DB Packet Storm

211960	6.1	MEDIUM Network	apache	atlas	Apache Atlas before 2.1.0 contain a XSS vulnerability. While saving search or rendering elements values are not sanitized correctly and because of that it triggers the XSS vulnerability.	CWE-79 Cross-site Scripting	CVE-2020-13928	2024-11-21 14:02	2020-09-17	Show	GitHub Exploit DB Packet Storm