Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257281	7.8	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の e1000_clean_rx_irq 関数における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-1385	2010-02-15 11:03	2009-06-4	Show	GitHub Exploit DB Packet Storm

257282	4.6	警告	サイバートラスト株式会社 Todd C. Miller	-	sudo の Perl スクリプト実行時における権限昇格の脆弱性	-	CVE-2005-4158	2010-02-15 11:03	2005-11-8	Show	GitHub Exploit DB Packet Storm

257283	1	注意	オラクル	-	Oracle Database および Oracle Application Server の Unzip コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3412	2010-02-12 12:22	2010-01-12	Show	GitHub Exploit DB Packet Storm

257284	3.2	注意	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3413	2010-02-12 12:22	2010-01-12	Show	GitHub Exploit DB Packet Storm

257285	3.6	注意	オラクル	-	Oracle Database の RDBMS コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3410	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

257286	4	警告	オラクル	-	Oracle Database の Logical Standby コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-1996	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

257287	4.9	警告	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3414	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

257288	4.9	警告	オラクル	-	Oracle Database の Oracle Data Pump コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3411	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

257289	6	警告	オラクル	-	Oracle Database の Application Express Application Builder コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0076	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

257290	9	危険	オラクル	-	Oracle Database の Oracle OLAP コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3415	2010-02-12 12:20	2010-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200531	6.7	MEDIUM Local	lenovo	notebook_firmware	A potential vulnerability in the SMI callback function used in the VariableServiceSmm driver in some Lenovo Notebook models may allow arbitrary code execution.	NVD-CWE-noinfo	CVE-2020-8354	2024-11-21 14:38	2020-11-12	Show	GitHub Exploit DB Packet Storm

200532	6.7	MEDIUM Local	lenovo	thinkcentre_m80t_firmware thinkcentre_m80s_firmware thinkcentre_m90t_firmware thinkcentre_m90s_firmware thinkcentre_m910z_firmware thinkcentre_m920s_firmware thinkcentre_m920t_firmw…	Prior to August 10, 2020, some Lenovo Desktop and Workstation systems were shipped with the Embedded Host Based Configuration (EHBC) feature of Intel AMT enabled. This could allow an administrative u…	NVD-CWE-noinfo	CVE-2020-8353	2024-11-21 14:38	2020-11-12	Show	GitHub Exploit DB Packet Storm

200533	2.4	LOW Physics	lenovo	thinkcentre_e73_firmware thinkcentre_m73_firmware qitian_4500_firmware qitian_b4550_firmware qitian_m4550_firmware thinkcentre_m4500k_firmware thinkcentre_m4500t_firmware thinkce…	In some Lenovo Desktop models, the Configuration Change Detection BIOS setting failed to detect SATA configuration changes.	NVD-CWE-noinfo	CVE-2020-8352	2024-11-21 14:38	2020-11-12	Show	GitHub Exploit DB Packet Storm

200534	7.5	HIGH Network	json8-merge-patch_project	json8-merge-patch	Prototype pollution vulnerability in json8-merge-patch npm package < 1.0.3 may allow attackers to inject or modify methods and properties of the global object constructor.	CWE-20 Improper Input Validation	CVE-2020-8268	2024-11-21 14:38	2020-11-10	Show	GitHub Exploit DB Packet Storm

200535	4.1	MEDIUM Local	nextcloud	nextcloud_server	A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker to downgrade the encryption scheme and break the integrity of encrypted files.	CWE-311 Missing Encryption of Sensitive Data	CVE-2020-8150	2024-11-21 14:38	2020-11-10	Show	GitHub Exploit DB Packet Storm

200536	5.3	MEDIUM Network	nextcloud	nextcloud_server	A wrong generation of the passphrase for the encrypted block in Nextcloud Server 19.0.1 allowed an attacker to overwrite blocks in a file.	CWE-347 Improper Verification of Cryptographic Signature	CVE-2020-8133	2024-11-21 14:38	2020-11-10	Show	GitHub Exploit DB Packet Storm

200537	5.5	MEDIUM Local	brave	brave	The implementation of Brave Desktop's privacy-preserving analytics system (P3A) between 1.1 and 1.18.35 logged the timestamp of when the user last opened an incognito window, including Tor windows. T…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-8276	2024-11-21 14:38	2020-11-10	Show	GitHub Exploit DB Packet Storm

200538	5.3	MEDIUM Network	ui	unifi_protect_firmware	A security issue was found in UniFi Protect controller v1.14.10 and earlier.The authentication in the UniFi Protect controller API was using “x-token” improperly, allowing attackers to use the API to…	CWE-287 Improper Authentication	CVE-2020-8267	2024-11-21 14:38	2020-11-6	Show	GitHub Exploit DB Packet Storm

200539	7.5	HIGH Network	tcpdump debian fedoraproject apple	tcpdump debian_linux fedora mac_os_x macos	The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-8037	2024-11-21 14:38	2020-11-5	Show	GitHub Exploit DB Packet Storm

200540	7.5	HIGH Network	tcpdump	tcpdump	The tok2strbuf() function in tcpdump 4.10.0-PRE-GIT was used by the SOME/IP dissector in an unsafe way.	CWE-125 Out-of-bounds Read	CVE-2020-8036	2024-11-21 14:38	2020-11-5	Show	GitHub Exploit DB Packet Storm