Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257701	10	危険	サイバートラスト株式会社 XEmacs	-	XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-2688	2010-01-12 14:48	2009-08-5	Show	GitHub Exploit DB Packet Storm

257702	6.8	警告	IBM	-	IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-2746	2010-01-12 14:48	2009-11-13	Show	GitHub Exploit DB Packet Storm

257703	5	警告	アップル	-	Apple Safari におけるローカル HTML ファイルを読まれる脆弱性	CWE-Other その他	CVE-2009-2842	2010-01-7 12:09	2009-11-11	Show	GitHub Exploit DB Packet Storm

257704	5.5	警告	シックス・アパート株式会社	-	Movable Type におけるアクセス制限回避の脆弱性	CWE-264 認可・権限・アクセス制御	-	2010-01-6 15:01	2010-01-6	Show	GitHub Exploit DB Packet Storm

257705	9.3	危険	マイクロソフト	-	Microsoft Office Word および Open XML File Format Converter における、任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3135	2010-01-6 14:44	2009-11-10	Show	GitHub Exploit DB Packet Storm

257706	5	警告	トレンドマイクロ日本電気 Apache Software Foundation 富士通サイバートラスト株式会社サン・マイクロシステムズヒューレット・パッカードレッドハット	-	Apache Tomcat の Apache HTTP Server との組合せによるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-0450	2010-01-6 14:43	2007-03-16	Show	GitHub Exploit DB Packet Storm

257707	9.3	危険	マイクロソフト	-	Microsoft Office Excel および Open XML File Format Converter におけるオブジェクトを含むスプレッドシートの処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3133	2010-01-5 16:18	2009-11-10	Show	GitHub Exploit DB Packet Storm

257708	9.3	危険	マイクロソフト	-	Microsoft Office Excel および Open XML File Format Converter における BIFF レコードの処理に関する任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-3130	2010-01-5 16:18	2009-11-10	Show	GitHub Exploit DB Packet Storm

257709	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるエクセルファイルのフォーマットの処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3134	2010-01-5 16:18	2009-11-10	Show	GitHub Exploit DB Packet Storm

257710	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における計算式を含むスプレッドシートの処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3132	2010-01-5 16:18	2009-11-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209471	7.5	HIGH Network	wireshark fedoraproject opensuse oracle	wireshark fedora leap zfs_storage_appliance_kit	In Wireshark 3.2.0 to 3.2.6 and 3.0.0 to 3.0.13, the BLIP protocol dissector has a NULL pointer dereference because a buffer was sized for compressed (not uncompressed) messages. This was addressed i…	CWE-476 NULL Pointer Dereference	CVE-2020-25866	2024-11-21 14:18	2020-10-7	Show	GitHub Exploit DB Packet Storm

209472	7.5	HIGH Network	wireshark fedoraproject opensuse debian oracle	wireshark fedora leap debian_linux zfs_storage_appliance_firmware	In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the MIME Multipart dissector could crash. This was addressed in epan/dissectors/packet-multipart.c by correcting the deallocation of…	NVD-CWE-noinfo	CVE-2020-25863	2024-11-21 14:18	2020-10-7	Show	GitHub Exploit DB Packet Storm

209473	7.5	HIGH Network	wireshark fedoraproject opensuse debian oracle	wireshark fedora leap debian_linux zfs_storage_appliance_firmware	In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the TCP dissector could crash. This was addressed in epan/dissectors/packet-tcp.c by changing the handling of the invalid 0xFFFF che…	CWE-354 Improper Validation of Integrity Check Value	CVE-2020-25862	2024-11-21 14:18	2020-10-7	Show	GitHub Exploit DB Packet Storm

209474	7.2	HIGH Network	craftercms	studio	Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via FreeMarker template exposed objects. T…	CWE-913 Improper Control of Dynamically-Managed Code Resources	CVE-2020-25803	2024-11-21 14:18	2020-10-7	Show	GitHub Exploit DB Packet Storm

209475	3.2	LOW Local	qemu redhat	qemu enterprise_linux openstack_platform	hw/ide/pci.c in QEMU before 5.1.1 can trigger a NULL pointer dereference because it lacks a pointer check before an ide_cancel_dma_sync call.	CWE-476 NULL Pointer Dereference	CVE-2020-25743	2024-11-21 14:18	2020-10-7	Show	GitHub Exploit DB Packet Storm

209476	3.2	LOW Local	qemu	qemu	pci_change_irq_level in hw/pci/pci.c in QEMU before 5.1.1 has a NULL pointer dereference because pci_get_bus() might not return a valid pointer.	CWE-476 NULL Pointer Dereference	CVE-2020-25742	2024-11-21 14:18	2020-10-7	Show	GitHub Exploit DB Packet Storm

209477	7.2	HIGH Network	craftercms	studio	Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via Groovy scripting. This issue affects: …	CWE-913 Improper Control of Dynamically-Managed Code Resources	CVE-2020-25802	2024-11-21 14:18	2020-10-6	Show	GitHub Exploit DB Packet Storm

209478	7.5	HIGH Network	redhat netapp	wildfly_openssl jboss_enterprise_application_platform single_sign-on jboss_fuse jboss_data_grid openshift_application_runtimes data_grid oncommand_workflow_automation oncomman…	A memory leak flaw was found in WildFly OpenSSL in versions prior to 1.1.3.Final, where it removes an HTTP session. It may allow the attacker to cause OOM leading to a denial of service. The highest …	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2020-25644	2024-11-21 14:18	2020-10-6	Show	GitHub Exploit DB Packet Storm

209479	7.2	HIGH Network	linux redhat opensuse debian netapp starwindsoftware	linux_kernel enterprise_linux leap debian_linux h410c_firmware starwind_virtual_san	A flaw was found in the HDLC_PPP module of the Linux kernel in versions before 5.9-rc7. Memory corruption and a read overflow is caused by improper input validation in the ppp_cp_parse_cr function wh…	-	CVE-2020-25643	2024-11-21 14:18	2020-10-6	Show	GitHub Exploit DB Packet Storm

209480	5.5	MEDIUM Local	linux redhat opensuse debian canonical	linux_kernel enterprise_linux leap debian_linux ubuntu_linux	A flaw was found in the Linux kernel's implementation of biovecs in versions before 5.9-rc7. A zero-length biovec request issued by the block subsystem could cause the kernel to enter an infinite loo…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2020-25641	2024-11-21 14:18	2020-10-6	Show	GitHub Exploit DB Packet Storm