Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 4:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257311	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257312	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

257313	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

257314	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208551	7.8	HIGH Local	intel	epid_software_development_kit	Improper input validation in the Intel(R) EPID SDK before version 8, may allow an authenticated user to potentially enable an escalation of privilege via local access.	CWE-20 Improper Input Validation	CVE-2020-24453	2024-11-21 14:14	2021-02-17	Show	GitHub Exploit DB Packet Storm

208552	5.5	MEDIUM Local	intel	sgx_platform	Improper input validation in the Intel(R) SGX Platform Software for Windows* may allow an authenticated user to potentially enable a denial of service via local access.	CWE-20 Improper Input Validation	CVE-2020-24452	2024-11-21 14:14	2021-02-17	Show	GitHub Exploit DB Packet Storm

208553	7.3	HIGH Local	intel	optane_dc_persistent_memory_module_management	Uncontrolled search path in the Intel(R) Optane(TM) DC Persistent Memory installer for Windows* before version 1.00.00.3506 may allow an authenticated user to potentially enable escalation of privile…	CWE-427 Uncontrolled Search Path Element	CVE-2020-24451	2024-11-21 14:14	2021-02-17	Show	GitHub Exploit DB Packet Storm

208554	7.8	HIGH Local	intel	graphics_drivers	Improper conditions check in some Intel(R) Graphics Drivers before versions 26.20.100.8141, 15.45.32.5145 and 15.40.46.5144 may allow an authenticated user to potentially enable escalation of privile…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2020-24450	2024-11-21 14:14	2021-02-17	Show	GitHub Exploit DB Packet Storm

208555	5.5	MEDIUM Local	intel	graphics_drivers	Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access.	NVD-CWE-Other	CVE-2020-24448	2024-11-21 14:14	2021-02-17	Show	GitHub Exploit DB Packet Storm

208556	6.5	MEDIUM Adjacent	bluez	bluez	Improper buffer restrictions in BlueZ may allow an unauthenticated user to potentially enable denial of service via adjacent access. This affects all Linux kernel versions that support BlueZ.	NVD-CWE-noinfo	CVE-2020-24490	2024-11-21 14:14	2021-02-3	Show	GitHub Exploit DB Packet Storm

208557	7.5	HIGH Network	uip_project	uip	An issue was discovered in uIP through 1.0, as used in Contiki and Contiki-NG. Domain name parsing lacks bounds checks, allowing an attacker to corrupt memory with crafted DNS packets.	CWE-125 Out-of-bounds Read	CVE-2020-24335	2024-11-21 14:14	2021-02-2	Show	GitHub Exploit DB Packet Storm

208558	8.8	HIGH Network	easycms	easycms	A CSRF vulnerability was discovered in EasyCMS v1.6 that can add an admin account through index.php?s=/admin/rbacuser/insert/navTabId/rbacuser/callbackType/closeCurrent, then post username=***&passwo…	CWE-352 Origin Validation Error	CVE-2020-24271	2024-11-21 14:14	2021-02-2	Show	GitHub Exploit DB Packet Storm

208559	7.5	HIGH Network	winmail_project	winmail	A SSRF vulnerability exists in Winmail 6.5 in app.php in the key parameter when HTTPS is on. An attacker can use this vulnerability to cause the server to send a request to a specific URL. An attacke…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-23776	2024-11-21 14:14	2021-01-27	Show	GitHub Exploit DB Packet Storm

208560	6.1	MEDIUM Network	winmail_project	winmail	A reflected XSS vulnerability exists in tohtml/convert.php of Winmail 6.5, which can cause JavaScript code to be executed.	CWE-79 Cross-site Scripting	CVE-2020-23774	2024-11-21 14:14	2021-01-27	Show	GitHub Exploit DB Packet Storm