Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258751 9.3 危険 マイクロソフト - 複数の Microsoft 製品における計算式を含むスプレッドシートの処理に関する任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3132 2010-01-5 16:18 2009-11-10 Show GitHub Exploit DB Packet Storm
258752 9.3 危険 マイクロソフト - 複数の Microsoft 製品におけるセルに含まれる計算式の処理に関する任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3131 2010-01-5 16:17 2009-11-10 Show GitHub Exploit DB Packet Storm
258753 9.3 危険 マイクロソフト - Microsoft Office Excel における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3128 2010-01-5 16:17 2009-11-10 Show GitHub Exploit DB Packet Storm
258754 9.3 危険 マイクロソフト - Microsoft Office および Open XML File Format Converter における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3127 2010-01-5 16:16 2009-11-10 Show GitHub Exploit DB Packet Storm
258755 6.8 警告 アップル
サイバートラスト株式会社
サン・マイクロシステムズ
ターボリナックス
ヒューレット・パッカード
OpenSSL Project
レッドハット		 - OpenSSL の SSL_get_shared_ciphers() 関数における一つずれエラーの脆弱性 CWE-189
数値処理の問題 		CVE-2007-5135 2010-01-5 13:31 2007-10-12 Show GitHub Exploit DB Packet Storm
258756 7.8 危険 マイクロソフト - Microsoft Windows で稼働している Active Directory の LDAP サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1928 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
258757 9.3 危険 マイクロソフト - Microsoft Windows の kernel における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2514 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
258758 6.8 警告 マイクロソフト - Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2513 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
258759 6.8 警告 マイクロソフト - Microsoft Windows の kernel における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1127 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
258760 10 危険 マイクロソフト - Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-2523 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210221 9.8 CRITICAL
Network 		citadel webcit A Weak Session Management vulnerability in Citadel WebCit through 926 allows unauthenticated remote attackers to hijack recently logged-in users' sessions. NOTE: this was reported to the vendor in a … CWE-613
 Insufficient Session Expiration 		CVE-2020-27739 2024-11-21 14:21 2020-10-29 Show GitHub Exploit DB Packet Storm
210222 7.5 HIGH
Network 		ti z-stack The Zigbee protocol implementation on Texas Instruments CC2538 devices with Z-Stack 3.0.1 does not properly process a ZCL Discover Commands Received Response message or a ZCL Discover Commands Genera… NVD-CWE-noinfo
CVE-2020-27892 2024-11-21 14:21 2020-10-28 Show GitHub Exploit DB Packet Storm
210223 7.5 HIGH
Network 		ti z-stack The Zigbee protocol implementation on Texas Instruments CC2538 devices with Z-Stack 3.0.1 does not properly process a ZCL Read Reporting Configuration Response message. It crashes in zclHandleExterna… NVD-CWE-noinfo
CVE-2020-27891 2024-11-21 14:21 2020-10-28 Show GitHub Exploit DB Packet Storm
210224 8.2 HIGH
Network 		ti z-stack The Zigbee protocol implementation on Texas Instruments CC2538 devices with Z-Stack 3.0.1 does not properly process a ZCL Write Attributes No Response message. It crashes in zclParseInWriteCmd() and … NVD-CWE-noinfo
CVE-2020-27890 2024-11-21 14:21 2020-10-28 Show GitHub Exploit DB Packet Storm
210225 7.5 HIGH
Network 		ui unifi_meshing_access_point_firmware
unifi_controller_firmware 		An issue was discovered on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi Controller 6.0.28 devices. Cached credentials are not erased from an access point returning wirelessly f… CWE-459
CWE-522
 Incomplete Cleanup
 Insufficiently Protected Credentials 		CVE-2020-27888 2024-11-21 14:21 2020-10-28 Show GitHub Exploit DB Packet Storm
210226 9.8 CRITICAL
Network 		wire wire_secure_messenger
wire_-_audio\
_video\
_and_signaling
wire 		Wire before 2020-10-16 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a format string. This affects Wire AVS (Audio, Video, and Signal… CWE-134
Use of Externally-Controlled Format String 		CVE-2020-27853 2024-11-21 14:21 2020-10-28 Show GitHub Exploit DB Packet Storm
210227 9.8 CRITICAL
Network 		pam_tacplus_project pam_tacplus libtac in pam_tacplus through 1.5.1 lacks a check for a failure of RAND_bytes()/RAND_pseudo_bytes(). This could lead to use of a non-random/predictable session_id. CWE-330
 Use of Insufficiently Random Values 		CVE-2020-27743 2024-11-21 14:21 2020-10-27 Show GitHub Exploit DB Packet Storm
210228 9.8 CRITICAL
Network 		joyent
omniosce
illumos 		smartos
omnios
illumos 		An issue was discovered in illumos before 2020-10-22, as used in OmniOS before r151030by, r151032ay, and r151034y and SmartOS before 20201022. There is a buffer overflow in parse_user_name in lib/lib… CWE-120
Classic Buffer Overflow 		CVE-2020-27678 2024-11-21 14:21 2020-10-26 Show GitHub Exploit DB Packet Storm
210229 5.4 MEDIUM
Network 		yourls yourls Multiple Stored Cross Site Scripting (XSS) vulnerabilities exist in the YOURLS Admin Panel, Versions 1.5 - 1.7.10. An authenticated user must modify a PHP plugin with a malicious payload and upload i… CWE-79
Cross-site Scripting 		CVE-2020-27388 2024-11-21 14:21 2020-10-24 Show GitHub Exploit DB Packet Storm
210230 4.7 MEDIUM
Local 		linux
fedoraproject
debian 		linux_kernel
fedora
debian_linux 		An issue was discovered in the Linux kernel through 5.9.1, as used with Xen through 4.14.x. drivers/xen/events/events_base.c allows event-channel removal during the event-handling loop (a race condit… CWE-362
CWE-476
CWE-416
Race Condition
 NULL Pointer Dereference
 Use After Free 		CVE-2020-27675 2024-11-21 14:21 2020-10-23 Show GitHub Exploit DB Packet Storm