Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258561	9.3	危険	アップル	-	Apple Mac OS X のアカウント環境設定の実装におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0512	2010-04-15 18:38	2010-03-29	Show	GitHub Exploit DB Packet Storm

258562	5	警告	アップル	-	Apple Mac OS X の Podcast プロデューサーにおけるワークフローにアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0511	2010-04-15 18:38	2010-03-29	Show	GitHub Exploit DB Packet Storm

258563	9	危険	アップル	-	Apple Mac OS X のパスワードサーバにおけるログインアクセスを取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-0510	2010-04-15 18:37	2010-03-29	Show	GitHub Exploit DB Packet Storm

258564	7.2	危険	アップル	-	Apple Mac OS X の SFLServer における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0509	2010-04-15 18:37	2010-03-29	Show	GitHub Exploit DB Packet Storm

258565	7.8	危険	アップル	-	Apple Mac OS X の Mail における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2010-0525	2010-04-15 18:36	2010-03-29	Show	GitHub Exploit DB Packet Storm

258566	4	警告	アップルサイバートラスト株式会社 MySQL AB レッドハット	-	MySQL の mysqld におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2009-4019	2010-04-15 18:16	2009-11-30	Show	GitHub Exploit DB Packet Storm

258567	6.8	警告	The PHP Group アップル	-	PHP の posix_mkfifo 関数における open_basedir の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3558	2010-04-15 18:16	2009-11-23	Show	GitHub Exploit DB Packet Storm

258568	4.4	警告	アップルサイバートラスト株式会社 MySQL AB レッドハット	-	MySQL における権限チェックを回避される脆弱性	CWE-59 リンク解釈の問題	CVE-2009-4030	2010-04-15 18:16	2009-11-5	Show	GitHub Exploit DB Packet Storm

258569	2.6	注意	アップルサイバートラスト株式会社 MySQL AB レッドハット	-	MySQL のコマンドラインクライアントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4456	2010-04-15 18:15	2008-10-6	Show	GitHub Exploit DB Packet Storm

258570	10	危険	アップル	-	Apple Mac OS X の Mail における脆弱性	CWE-noinfo 情報不足	CVE-2010-0508	2010-04-14 17:11	2010-03-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211531	9.8	CRITICAL Network	enphase	envoy_firmware	An issue was discovered on Enphase Envoy R3.x and D4.x devices with v3 software. The default admin password is set to the last 6 digits of the serial number. The serial number can be retrieved by an …	NVD-CWE-noinfo	CVE-2020-25753	2024-11-21 14:18	2021-06-17	Show	GitHub Exploit DB Packet Storm

211532	5.3	MEDIUM Network	enphase	envoy_firmware	An issue was discovered on Enphase Envoy R3.x and D4.x devices. There are hardcoded web-panel login passwords for the installer and Enphase accounts. The passwords for these accounts are hardcoded va…	CWE-798 Use of Hard-coded Credentials	CVE-2020-25752	2024-11-21 14:18	2021-06-17	Show	GitHub Exploit DB Packet Storm

211533	5.5	MEDIUM Local	long_range_zip_project debian	long_range_zip debian_linux	A null pointer dereference was discovered lzo_decompress_buf in stream.c in Irzip 0.621 which allows an attacker to cause a denial of service (DOS) via a crafted compressed file.	CWE-476 NULL Pointer Dereference	CVE-2020-25467	2024-11-21 14:18	2021-06-11	Show	GitHub Exploit DB Packet Storm

211534	4.8	MEDIUM Network	silverstripe	silverstripe	SilverStripe through 4.6.0-rc1 has an XXE Vulnerability in CSSContentParser. A developer utility meant for parsing HTML within unit tests can be vulnerable to XML External Entity (XXE) attacks. When …	CWE-611 XXE	CVE-2020-25817	2024-11-21 14:18	2021-06-9	Show	GitHub Exploit DB Packet Storm

211535	8.1	HIGH Network	redhat	cloudforms	A flaw was found in Cloudforms. A role-based privileges escalation flaw where export or import of administrator files is possible. An attacker with a specific group can perform actions restricted onl…	NVD-CWE-Other	CVE-2020-25716	2024-11-21 14:18	2021-06-8	Show	GitHub Exploit DB Packet Storm

211536	6.1	MEDIUM Network	dogtagpki	dogtagpki	A flaw was found in pki-core 10.9.0. A specially crafted POST request can be used to reflect a DOM-based cross-site scripting (XSS) attack to inject code into the search query form which can get auto…	CWE-79 Cross-site Scripting	CVE-2020-25715	2024-11-21 14:18	2021-05-28	Show	GitHub Exploit DB Packet Storm

211537	7.5	HIGH Network	openldap redhat debian fedoraproject	openldap enterprise_linux jboss_enterprise_web_server jboss_enterprise_application_platform jboss_core_services debian_linux fedora	A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion in csnNormalize23(). The highest th…	-	CVE-2020-25710	2024-11-21 14:18	2021-05-28	Show	GitHub Exploit DB Packet Storm

211538	4.3	MEDIUM Network	redhat quarkus	resteasy quarkus	A flaw was found in RESTEasy, where an incorrect response to an HTTP request is provided. This flaw allows an attacker to gain access to privileged information. The highest threat from this vulnerabi…	-	CVE-2020-25724	2024-11-21 14:18	2021-05-27	Show	GitHub Exploit DB Packet Storm

211539	5.4	MEDIUM Network	redhat	3scale_api_management 3scale	A flaw was found in Red Hat 3scale’s API docs URL, where it is accessible without credentials. This flaw allows an attacker to view sensitive information or modify service APIs. Versions before 3scal…	CWE-306 Missing Authentication for Critical Function	CVE-2020-25634	2024-11-21 14:18	2021-05-27	Show	GitHub Exploit DB Packet Storm

211540	7.0	HIGH Local	x.org	x_server	A privilege escalation flaw was found in the Xorg-x11-server due to a lack of authentication for X11 clients. This flaw allows an attacker to take control of an X application by impersonating the ser…	-	CVE-2020-25697	2024-11-21 14:18	2021-05-26	Show	GitHub Exploit DB Packet Storm