Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199971 8.6 重要
Network 		シトリックス・システムズ
Xen プロジェクト		 - Xen における他のドメインから重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-8555 2016-04-20 11:46 2015-12-17 Show GitHub Exploit DB Packet Storm
199972 6.5 警告
Local 		Xen プロジェクト
レッドハット		 - Xen におけるホスト OS のカーネルメモリの初期化されていない領域から重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-8553 2016-04-20 11:46 2015-03-10 Show GitHub Exploit DB Packet Storm
199973 4.4 警告
Local 		Linux
Debian
Xen プロジェクト
Canonical		 - Xen の PCI バックエンドドライバにおける WARN メッセージの連続ストリームを生成される脆弱性 CWE-20
不適切な入力確認 		CVE-2015-8552 2016-04-20 11:46 2015-12-17 Show GitHub Exploit DB Packet Storm
199974 5.3 警告
Local 		Linux
Debian
Xen プロジェクト
Canonical		 - Xen の PCI バックエンドドライバにおける BUG 条件にヒットされる脆弱性 CWE-Other
その他 		CVE-2015-8551 2016-04-20 11:46 2015-12-17 Show GitHub Exploit DB Packet Storm
199975 4.3 警告
Network 		OpenStack - OpenStack Image Service におけるイメージのステータスを変更される脆弱性 CWE-Other
その他 		CVE-2016-0757 2016-04-20 11:42 2016-02-3 Show GitHub Exploit DB Packet Storm
199976 6.3 警告
Network 		シャープ株式会社 - EVAアニメータ用 ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-1176 2016-04-20 09:38 2016-04-4 Show GitHub Exploit DB Packet Storm
199977 7.8 重要
Local 		NVIDIA - Windows 上で稼動する NVIDIA GPU グラフィックドライバのカーネルモードドライバレイヤの Escape インターフェースにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-2556 2016-04-19 18:11 2016-03-14 Show GitHub Exploit DB Packet Storm
199978 7.5 重要
Network 		ジュニパーネットワークス - Juniper ScreenOS の 管理 Web サービスインターフェースにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-1268 2016-04-19 18:04 2016-04-13 Show GitHub Exploit DB Packet Storm
199979 5.9 警告
Network 		F5 Networks - F5 BIG-IP APM および BIG-IP Edge Gateway の Single Sign-On 機能における重要な SessionId 情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-3686 2016-04-19 17:52 2016-04-9 Show GitHub Exploit DB Packet Storm
199980 7.5 重要
Network 		xmlsoft.org - libxml2 の dict.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2015-8806 2016-04-19 17:51 2015-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
391 6.1 MEDIUM
Network 		- - Due to a Cross-Site Scripting (XSS) vulnerability in the SAP Supplier Relationship Management (SICF Handler in SRM Catalog), an unauthenticated attacker could craft a malicious URL, that if accessed … New CWE-79
Cross-site Scripting 		CVE-2026-0512 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
392 4.2 MEDIUM
Network 		- - Due to an Insecure session management vulnerability in SAP Business Objects Business Intelligence Platform, an unauthenticated attacker could obtain valid session tokens and reuse them to gain unauth… New CWE-539
 Use of Persistent Cookies Containing Sensitive Information 		CVE-2026-24318 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
393 4.3 MEDIUM
Network 		- - The Material Master application does not enforce authorization checks for authenticated users when executing reports, resulting in the disclosure of sensitive information. This vulnerability has a lo… New CWE-862
 Missing Authorization 		CVE-2026-27672 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
394 4.9 MEDIUM
Network 		- - Due to a missing authorization check, SAP S/4HANA (Private Cloud and On-Premise) allows an authenticated user to delete files on the operating system and gain unauthorized control over file operation… New CWE-862
 Missing Authorization 		CVE-2026-27673 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
395 6.1 MEDIUM
Network 		- - Due to a Code Injection vulnerability in SAP NetWeaver Application Server Java (Web Dynpro Java), an unauthenticated attacker could supply crafted input that is interpreted by the application and cau… New CWE-94
Code Injection 		CVE-2026-27674 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
396 2.0 LOW
Network 		- - SAP Landscape Transformation contains a vulnerability in an RFC-exposed function module that could allow a high privileged adversary to inject arbitrary ABAP code and operating system commands. Due t… New CWE-94
Code Injection 		CVE-2026-27675 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
397 4.3 MEDIUM
Network 		- - Due to missing authorization checks in the SAP S/4HANA OData Service (Manage Technical Object Structures), an attacker could update and delete child entities via exposed OData services without proper… New CWE-862
 Missing Authorization 		CVE-2026-27676 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
398 6.5 MEDIUM
Network 		- - Due to missing authorization checks in the SAP S/4HANA OData Service (Manage Reference Equipment), an attacker could update and delete child entities via OData services without proper authorization. … New CWE-862
 Missing Authorization 		CVE-2026-27677 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
399 6.5 MEDIUM
Network 		- - Due to missing authorization checks in the SAP S/4HANA backend OData Service (Manage Reference Structures), an attacker could update and delete child entities via exposed OData services without prope… New CWE-862
 Missing Authorization 		CVE-2026-27678 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
400 6.5 MEDIUM
Network 		- - Due to missing authorization checks in the SAP S/4HANA frontend OData Service (Manage Reference Structures), an attacker could update and delete child entities via exposed OData services without prop… New CWE-862
 Missing Authorization 		CVE-2026-27679 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm