Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197211 6.5 警告
Network 		Cloudera, Inc.
Apache Software Foundation		 - Cloudera CDH で使用される Apache Hadoop における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0229 2017-04-26 16:47 2014-04-30 Show GitHub Exploit DB Packet Storm
197212 3.1
Network 		Cloudera, Inc. - Cloudera CDH の JobHistory サーバにおける重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6446 2017-04-26 16:47 2013-10-14 Show GitHub Exploit DB Packet Storm
197213 5.3 警告
Network 		MediaWiki - MediaWiki における重要なユーザのログイン情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-8628 2017-04-26 16:45 2015-12-18 Show GitHub Exploit DB Packet Storm
197214 7.5 重要
Network 		GNU Project - GNU Binutils で配布される Binary File Descriptor ライブラリにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2017-7303 2017-04-26 15:20 2017-03-29 Show GitHub Exploit DB Packet Storm
197215 7.5 重要
Network 		GNU Project - GNU Binutils で配布される Binary File Descriptor ライブラリにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2017-7302 2017-04-26 15:20 2017-03-29 Show GitHub Exploit DB Packet Storm
197216 7.5 重要
Network 		GNU Project - GNU Binutils で配布される Binary File Descriptor ライブラリにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-7301 2017-04-26 15:20 2017-03-29 Show GitHub Exploit DB Packet Storm
197217 7.5 重要
Network 		GNU Project - GNU Binutils で配布される Binary File Descriptor ライブラリにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2017-7300 2017-04-26 15:20 2017-03-29 Show GitHub Exploit DB Packet Storm
197218 5.5 警告
Local 		GNU Project - GNU Binutils で配布される Binary File Descriptor ライブラリにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2017-7299 2017-04-26 15:20 2017-03-29 Show GitHub Exploit DB Packet Storm
197219 9.8 緊急
Network 		AlienVault
NfSen		 - 複数の AlienVault 製品および NfSen における認可・権限・アクセス制御に関する脆弱性 CWE-264
CWE-noinfo
CVE-2017-6972 2017-04-26 14:48 2017-01-24 Show GitHub Exploit DB Packet Storm
197220 5.5 警告
Local 		JasPer Project
Fedora Project		 - JasPer の libjasper/bmp/bmp_dec.c の bmp_getdata 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2016-8884 2017-04-26 14:46 2016-10-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347001 - sisco ax-s4_iccp
ax-s4_mms
iccp_toolkit_for_mms-ease
mms-ease 		The SISCO OSI stack for Windows, as used by MMS-EASE 7.10 and earlier, AX-S4 MMS 5.01 and earlier, AX-S4 ICCP 3.0103 and earlier, and the ICCP Toolkit for MMS-EASE 4.10 and earlier, allows remote att… NVD-CWE-Other
CVE-2005-4812 2017-07-20 10:29 2005-12-31 Show GitHub Exploit DB Packet Storm
347002 - businessobjects crystal_enterprise_xi
crystal_reports_server_xi
crystal_reports_xi
report_application_server 		Unspecified vulnerability in Report Application Server (Crystalras.exe) before 11.0.0.1370, as used in Business Objects Crystal Reports XI, Crystal Reports Server XI, and BusinessObjects Enterprise X… NVD-CWE-Other
CVE-2005-4813 2017-07-20 10:29 2005-12-31 Show GitHub Exploit DB Packet Storm
347003 - smartwebby smart_guest_book SmartWebby Smart Guest Book stores SmartGuestBook.mdb (aka the "news database") under the web document root with insufficient access control, which allows remote attackers to obtain sensitive informa… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2004-2608 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347004 - symantec powerquest_deploycenter The stuffit.com executable on Symantec PowerQuest DeployCenter 5.5 boot disks allows local users to obtain sensitive information (an unencrypted password for a Windows domain account) via four "stuff… NVD-CWE-Other
CVE-2004-2609 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347005 - stefan_bambach mntd mntd_mount.c in mntd before 0.4.2 might allow local users to gain privileges via shell metacharacters in a remount option in the configuration file. NOTE: It is not clear whether this is a vulnerabi… NVD-CWE-Other
CVE-2004-2610 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347006 - steven_schaefer sophster The Change Permissions function in the Sophster suite before 0.9.6 28 May 2004 (aka 0.9.6-r5), possibly including Sophster, FreeSophster, and FreeSophsterPAM, removes the (1) setuid, (2) setgid, and … NVD-CWE-Other
CVE-2004-2611 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347007 - bnc bnc BNC 2.9.0 only grants access when an incorrect password is provided, which allows remote attackers to use the functionality intended for authorized users. NVD-CWE-Other
CVE-2004-2612 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347008 - cutephp cutenews The documentation for CuteNews 1.3.6 and possibly other versions specifies that files under cutenews/data must be manually given world-writable permissions, which allows local users to insert false n… NVD-CWE-Other
CVE-2004-2615 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347009 - pegasi_web_server pegasi_web_server Directory traversal vulnerability in Pegasi Web Server (PWS) 0.2.2 allows remote attackers to read files outside of the web root via a .. (dot dot) directly after the initial '/' (slash) in the URI. NVD-CWE-Other
CVE-2004-2617 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347010 - pegasi_web_server pegasi_web_server Cross-site scripting (XSS) vulnerability in Pegasi Web Server (PWS) 0.2.2 allows remote attackers to inject arbitrary web script or HTML via the URI, directly after the initial '/' (slash). NVD-CWE-Other
CVE-2004-2618 2017-07-20 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm