Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257311	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257312	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

257313	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

257314	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209951	8.8	HIGH Network	apache	kylin	Kylin has some restful apis which will concatenate SQLs with the user input string, a user is likely to be able to run malicious database queries.	CWE-89 SQL Injection	CVE-2020-1937	2024-11-21 14:11	2020-02-25	Show	GitHub Exploit DB Packet Storm

209952	9.8	CRITICAL Network	apache fedoraproject oracle debian opensuse blackberry netapp	tomcat geode fedora transportation_management hospitality_guest_access agile_plm instantis_enterprisetrack mysql_enterprise_monitor health_sciences_empirica_signal communic…	When using the Apache JServ Protocol (AJP), care must be taken when trusting incoming connections to Apache Tomcat. Tomcat treats AJP connections as having higher trust than, for example, a similar H…	NVD-CWE-Other	CVE-2020-1938	2024-11-21 14:11	2020-02-25	Show	GitHub Exploit DB Packet Storm

209953	4.8	MEDIUM Network	apache debian canonical opensuse netapp oracle	tomcat debian_linux ubuntu_linux leap oncommand_system_manager data_availability_services transportation_management hospitality_guest_access retail_order_broker agile_produ…	In Apache Tomcat 9.0.0.M1 to 9.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99 the HTTP header parsing code used an approach to end-of-line parsing that allowed some invalid HTTP headers to be parsed as va…	CWE-444 HTTP Request Smuggling	CVE-2020-1935	2024-11-21 14:11	2020-02-25	Show	GitHub Exploit DB Packet Storm

209954	6.8	MEDIUM Physics	huawei	hege-560_firmware osca-550_firmware osca-550a_firmware osca-550ax_firmware osca-550x_firmware	Huawei HEGE-560 version 1.0.1.20(SP2); OSCA-550 and OSCA-550A version 1.0.0.71(SP1); and OSCA-550AX and OSCA-550X version 1.0.0.71(SP2) have an insufficient authentication vulnerability. An attacker …	CWE-287 Improper Authentication	CVE-2020-1842	2024-11-21 14:11	2020-02-18	Show	GitHub Exploit DB Packet Storm

209955	6.1	MEDIUM Physics	huawei	hege-560_firmware osca-550_firmware osca-550a_firmware osca-550ax_firmware osca-550x_firmware hege-570_firmware	Huawei HEGE-570 version 1.0.1.22(SP3); and HEGE-560, OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X version 1.0.1.21(SP3) have an insufficient verification vulnerability. An attacker can access the d…	NVD-CWE-noinfo	CVE-2020-1855	2024-11-21 14:11	2020-02-18	Show	GitHub Exploit DB Packet Storm

209956	7.8	HIGH Local	huawei	p30_firmware	HUAWEI P30 smartphones with versions earlier than 10.0.0.173(C00E73R1P11) have an improper authentication vulnerability. Due to improperly validation of certain application, an attacker should trick …	CWE-287 Improper Authentication	CVE-2020-1812	2024-11-21 14:11	2020-02-18	Show	GitHub Exploit DB Packet Storm

209957	2.4	LOW Physics	huawei	mate_20_firmware	HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have an improper authorization vulnerability. The system has a logic judging error under certain scenario, successful expl…	NVD-CWE-noinfo	CVE-2020-1791	2024-11-21 14:11	2020-02-18	Show	GitHub Exploit DB Packet Storm

209958	6.8	MEDIUM Physics	huawei	hege-560_firmware osca-550_firmware osca-550a_firmware osca-550ax_firmware osca-550x_firmware	Huawei HEGE-560 version 1.0.1.20(SP2), OSCA-550 version 1.0.0.71(SP1), OSCA-550A version 1.0.0.71(SP1), OSCA-550AX version 1.0.0.71(SP2), and OSCA-550X version 1.0.0.71(SP2) have an insufficient veri…	NVD-CWE-noinfo	CVE-2020-1843	2024-11-21 14:11	2020-02-18	Show	GitHub Exploit DB Packet Storm

209959	8.8	HIGH Network	huawei	gaussdb_200	GaussDB 200 with version of 6.5.1 have a command injection vulnerability. The software constructs part of a command using external input from users, but the software does not sufficiently validate th…	CWE-77 Command Injection	CVE-2020-1790	2024-11-21 14:11	2020-02-18	Show	GitHub Exploit DB Packet Storm

209960	6.8	MEDIUM Physics	huawei	osca-550_firmware osca-550a_firmware osca-550ax_firmware osca-550x_firmware	Huawei OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X products with version 1.0.1.21(SP3) have an insufficient authentication vulnerability. The software does not require a strong credential when the…	CWE-287 Improper Authentication	CVE-2020-1789	2024-11-21 14:11	2020-02-18	Show	GitHub Exploit DB Packet Storm