Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 4:05 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190401 6.5 警告
Network 		Pivotal Software, Inc. - Single Sign-On for Pivotal Cloud Foundry における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2017-8040 2017-10-5 17:09 2017-08-31 Show GitHub Exploit DB Packet Storm
190402 8.8 重要
Network 		Cloud Foundry Foundation
Pivotal Software, Inc.		 - Pivotal Cloud Foundry などの製品における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-0732 2017-10-5 17:09 2016-02-2 Show GitHub Exploit DB Packet Storm
190403 7.1 重要
Local 		AzeoTech, Inc. - AzeoTech DAQFactory におけるパーミッションに関する脆弱性 CWE-275
パーミッションの問題 		CVE-2017-12699 2017-10-5 17:01 2017-08-29 Show GitHub Exploit DB Packet Storm
190404 7.5 重要
Network 		Kubik-Rubik - Easy Joomla Backup における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2017-2550 2017-10-5 15:23 2017-09-7 Show GitHub Exploit DB Packet Storm
190405 8.8 重要
Local 		Fabrice Bellard - QEMU における整数オーバーフローの脆弱性 CWE-190
CWE-787
CVE-2017-14167 2017-10-5 15:23 2017-09-5 Show GitHub Exploit DB Packet Storm
190406 7 重要
Local 		Linux - Linux Kernel における認可・権限・アクセス制御に関する脆弱性 CWE-264
CWE-362
CVE-2017-12146 2017-10-5 15:23 2017-07-12 Show GitHub Exploit DB Packet Storm
190407 7.8 重要
Local 		SUSE - YaST2 における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2011-3177 2017-10-5 15:23 2011-08-23 Show GitHub Exploit DB Packet Storm
190408 6.7 警告
Local 		シスコシステムズ - Cisco ASR 920 シリーズアグリゲーションサービスルータ上で稼動する Cisco IOS XE における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2017-6796 2017-10-5 15:21 2017-09-6 Show GitHub Exploit DB Packet Storm
190409 7.5 重要
Network 		シスコシステムズ - Cisco Unified Communications Manager におけるデータ処理に関する脆弱性 CWE-19
データ処理 		CVE-2017-6791 2017-10-5 15:21 2017-09-6 Show GitHub Exploit DB Packet Storm
190410 7.5 重要
Network 		シスコシステムズ - Cisco IoT Field Network Director におけるリソース管理に関する脆弱性 CWE-399
リソース管理の問題 		CVE-2017-6780 2017-10-5 15:21 2017-09-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349521 - nullsoft winamp Multiple buffer overflows in Winamp 3.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .b4s file containing (1) a long playlist name or (2) a lo… NVD-CWE-Other
CVE-2003-1272 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
349522 - nullsoft winamp Winamp 3.0 allows remote attackers to cause a denial of service (crash) via a .b4s file with a playlist name that contains some non-English characters, e.g. Cyrillic characters. NVD-CWE-Other
CVE-2003-1273 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
349523 - nullsoft winamp Winamp 3.0 allows remote attackers to cause a denial of service (crash) via .b4s file with a file: argument to the Playstring parameter that contains MS-DOS device names such as aux. NVD-CWE-Other
CVE-2003-1274 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
349524 - - - Sambar Server before 6.0 beta 6 allows remote attackers to obtain sensitive information via direct requests to the default scripts (1) environ.pl and (2) testcgi.exe. NVD-CWE-Other
CVE-2003-1284 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
349525 - sambar sambar_server Multiple cross-site scripting (XSS) vulnerabilities in Sambar Server before 6.0 beta 6 allow remote attackers to inject arbitrary web script or HTML via the query string to (1) isapi/testisa.dll, (2)… NVD-CWE-Other
CVE-2003-1285 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
349526 - sambar sambar_server HTTP Proxy in Sambar Server before 6.0 beta 6, when security.ini lacks a 127.0.0.1 proxydeny entry, allows remote attackers to send proxy HTTP requests to the Sambar Server's administrative interface… NVD-CWE-Other
CVE-2003-1286 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
349527 - sambar sambar_server Sambar Server before 6.0 beta 3 allows attackers with physical access to execute arbitrary code via a request with an MS-DOS device name such as com1.pl, con.pl, or aux.pl, which causes Perl to read … NVD-CWE-Other
CVE-2003-1287 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
349528 - microsoft windows_nt The default setting for the Winlogon key entry ShutdownWithoutLogon in Windows NT allows users with physical access to shut down a Windows NT system without logging in. NVD-CWE-Other
CVE-1999-0593 2017-07-11 10:29 1999-01-1 Show GitHub Exploit DB Packet Storm
349529 - - - The netstat service is running, which provides sensitive information to remote attackers. NVD-CWE-Other
CVE-1999-0650 2017-07-11 10:29 1999-01-1 Show GitHub Exploit DB Packet Storm
349530 - linux linux_kernel The ugidd RPC interface, by design, allows remote attackers to enumerate valid usernames by specifying arbitrary UIDs that ugidd maps to local user and group names. CWE-16
Configuration 		CVE-1999-0656 2017-07-11 10:29 1999-01-1 Show GitHub Exploit DB Packet Storm