Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198221 7.5 重要
Local 		シトリックス・システムズ - Xen の ioport_read および ioport_write 関数における qemu プロセスの権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-9637 2017-03-10 15:47 2016-12-6 Show GitHub Exploit DB Packet Storm
198222 7.5 重要
Network 		SAP - SAP KERNEL の SAP メッセージサーバ HTTP デーモンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-5997 2017-03-10 15:40 2017-02-15 Show GitHub Exploit DB Packet Storm
198223 7.8 重要
Local 		JasPer Project - JasPer の jpc_tsfb.c の jpc_tsfb_getbands2 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-9560 2017-03-10 15:39 2016-11-20 Show GitHub Exploit DB Packet Storm
198224 5.5 警告
Local 		JasPer Project
Fedora Project		 - JasPer の libjasper/bmp/bmp_dec.c の bmp_getdata 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2016-8690 2017-03-10 15:39 2016-10-16 Show GitHub Exploit DB Packet Storm
198225 9.8 緊急
Network 		MetalGenix - GeniXCMS における CSRF トークンを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-5959 2017-03-10 15:38 2017-02-13 Show GitHub Exploit DB Packet Storm
198226 9.8 緊急
Network 		modified - modified eCommerce Shopsoftware における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-3694 2017-03-10 15:38 2016-04-16 Show GitHub Exploit DB Packet Storm
198227 7.5 重要
Network 		Fidelix Ltd - Fidelix FX-20 シリーズコントローラにおけるサーバ上の任意のファイルおよびディレクトリにアクセスされる脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-9364 2017-03-10 15:37 2016-12-22 Show GitHub Exploit DB Packet Storm
198228 7.5 重要
Network 		Debian
OFFIS		 - DICOM dcmtk の storescp の parsePresentationContext 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-8979 2017-03-10 15:36 2015-12-15 Show GitHub Exploit DB Packet Storm
198229 9.8 緊急
Network 		Dwayne C. Litzenberger
Fedora Project		 - Python Cryptography Toolkit の block_templace.c の ALGnew 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-7459 2017-03-10 15:35 2013-12-23 Show GitHub Exploit DB Packet Storm
198230 5.3 警告
Network 		CMS Made Simple - CMS Made Simple Form Builder における情報を公開される脆弱性 CWE-200
情報漏えい 		CVE-2017-6072 2017-03-10 15:25 2017-02-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
354551 - lotus domino_r4 Lotus Domino R4 allows remote attackers to bypass access restrictions for files in the web root via an HTTP request appended with a "?" character, which is treated as a wildcard character and bypasse… NVD-CWE-Other
CVE-2002-1010 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
354552 - ibm tivoli_management_framework Buffer overflow in web server for Tivoli Management Framework (TMF) Endpoint 3.6.x through 3.7.1, before Fixpack 2, allows remote attackers to cause a denial of service or execute arbitrary code via … NVD-CWE-Other
CVE-2002-1011 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
354553 - ibm tivoli_management_framework Buffer overflow in web server for Tivoli Management Framework (TMF) ManagedNode 3.6.x through 3.7.1 allows remote attackers to cause a denial of service or execute arbitrary code via a long HTTP GET … NVD-CWE-Other
CVE-2002-1012 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
354554 - inktomi media-ixt
traffic_edge
traffic_server 		Buffer overflow in traffic_manager for Inktomi Traffic Server 4.0.18 through 5.2.2, Traffic Edge 1.1.2 and 1.5.0, and Media-IXT 3.0.4 allows local users to gain root privileges via a long -path argum… NVD-CWE-Other
CVE-2002-1013 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
354555 - realnetworks realjukebox_2
realjukebox_2_plus
realone_player 		Buffer overflow in RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary code via an RFS skin file whose skin.ini contains a long val… NVD-CWE-Other
CVE-2002-1014 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
354556 - realnetworks realjukebox_2
realjukebox_2_plus
realone_player 		RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary script in the Local computer zone by inserting the script into the skin.ini fil… NVD-CWE-Other
CVE-2002-1015 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
354557 - adobe digital_editions Adobe eBook Reader allows a user to bypass restrictions for copy, print, lend, and give operations by backing up key data files, performing the operations, and restoring the original data files. NVD-CWE-Other
CVE-2002-1016 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
354558 - adobe digital_editions Adobe eBook Reader 2.1 and 2.2 allows a user to copy eBooks to other systems by using the backup feature, capturing the encryption Challenge, and using the appropriate hash function to generate the a… NVD-CWE-Other
CVE-2002-1017 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
354559 - working_resources_inc. badblue BadBlue server allows remote attackers to read restricted files, such as EXT.INI, via an HTTP request that contains a hex-encoded null byte. NVD-CWE-Other
CVE-2002-1021 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
354560 - working_resources_inc. badblue BadBlue server stores passwords in plaintext in the ext.ini file, which could allow local and possibly remote attackers to gain privileges. NVD-CWE-Other
CVE-2002-1022 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm