Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249541	2.1	注意	NVIDIA	-	NVIDIA CUDA Toolkit の cudaHostAlloc 関数における重要なメモリを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-0636	2012-03-27 18:42	2011-01-22	Show	GitHub Exploit DB Packet Storm

249542	6	警告	simploo	-	Simploo CMS における任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0635	2012-03-27 18:42	2011-01-22	Show	GitHub Exploit DB Packet Storm

249543	4.3	警告	Gisle Aas	-	WWW::Mechanize などの製品で使用される LWP の Net::HTTPS モジュールにおけるサーバをなりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2011-0633	2012-03-27 18:42	2011-03-27	Show	GitHub Exploit DB Packet Storm

249544	6.8	警告	シマンテック	-	SEP の Web インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-0551	2012-03-27 18:42	2011-08-10	Show	GitHub Exploit DB Packet Storm

249545	4.3	警告	シマンテック	-	Symantec SEP の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0550	2012-03-27 18:42	2011-08-10	Show	GitHub Exploit DB Packet Storm

249546	7.5	危険	シマンテック	-	Symantec Web Gateway の forget.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-0549	2012-03-27 18:42	2011-07-7	Show	GitHub Exploit DB Packet Storm

249547	10	危険	シマンテック	-	Symantec Veritas Enterprise Administrator サービスの vxsvc.exe における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0547	2012-03-27 18:42	2011-07-26	Show	GitHub Exploit DB Packet Storm

249548	6.8	警告	シマンテック	-	Symantec LUA の adduser.do におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-0545	2012-03-27 18:42	2011-03-21	Show	GitHub Exploit DB Packet Storm

249549	3.3	注意	FUSE	-	fuse の fusermount の特定の legacy 機能におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0543	2012-03-27 18:42	2011-09-2	Show	GitHub Exploit DB Packet Storm

249550	3.3	注意	FUSE	-	fuse の fusermount における任意のディレクトリをアンマウントされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0542	2012-03-27 18:42	2011-09-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1961	5.3	MEDIUM Network	-	-	Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could result i…	-	CVE-2026-34654	2026-05-13 23:49	2026-05-13	Show	GitHub Exploit DB Packet Storm

1962	4.8	MEDIUM Network	-	-	Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high-p…	CWE-79 Cross-site Scripting	CVE-2026-34655	2026-05-13 23:49	2026-05-13	Show	GitHub Exploit DB Packet Storm

1963	4.3	MEDIUM Network	-	-	Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature by…	CWE-285 Improper Authorization	CVE-2026-34656	2026-05-13 23:49	2026-05-13	Show	GitHub Exploit DB Packet Storm

1964	4.8	MEDIUM Network	-	-	Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high-p…	CWE-79 Cross-site Scripting	CVE-2026-34658	2026-05-13 23:49	2026-05-13	Show	GitHub Exploit DB Packet Storm

1965	3.4	LOW Network	-	-	Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier [NEEDS REVIEW: impact mismatch — ticket says 'Arbitrary file system write', CIA triad derives 'Sec…	CWE-20 Improper Input Validation	CVE-2026-34685	2026-05-13 23:49	2026-05-13	Show	GitHub Exploit DB Packet Storm

1966	-		-	-	Improper enforcement of the LFENCE serialization property may allow an attacker to bypass speculation barriers and potentially disclose sensitive information, potentially resulting in loss of confide…	CWE-693 Protection Mechanism Failure	CVE-2024-36315	2026-05-13 23:49	2026-05-13	Show	GitHub Exploit DB Packet Storm

1967	-		-	-	Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to modify MMIO routing configurations, potentially resulting in loss of SEV-SNP guest integrity.	CWE-1233 Security-Sensitive Hardware Controls with Missing Lock Bit Protection	CVE-2025-61971	2026-05-13 23:49	2026-05-13	Show	GitHub Exploit DB Packet Storm

1968	-		-	-	Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to gain arbitrary System Management Network (SMN) access, potentially resulting in arbitrary code executio…	CWE-1233 Security-Sensitive Hardware Controls with Missing Lock Bit Protection	CVE-2025-61972	2026-05-13 23:49	2026-05-13	Show	GitHub Exploit DB Packet Storm

1969	-		-	-	A heap-based buffer overflow in the ionic cloud driver for VMware ESXi could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2025-62623	2026-05-13 23:49	2026-05-13	Show	GitHub Exploit DB Packet Storm

1970	-		-	-	A heap-based buffer overflow in the ionic cloud driver for VMware ESXi could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.	CWE-122 Heap-based Buffer Overflow	CVE-2025-62624	2026-05-13 23:49	2026-05-13	Show	GitHub Exploit DB Packet Storm