Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200451 7.8 重要
Local 		アドビシステムズ - Adobe Reader および Acrobat の XML Forms Architecture における任意のコードを実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2017-3014 2017-04-19 16:55 2017-04-6 Show GitHub Exploit DB Packet Storm
200452 7.8 重要
Local 		アドビシステムズ - Adobe Reader および Acrobat の DLL における安全でないライブラリを読み込まれる脆弱性 CWE-254
セキュリティ機能 		CVE-2017-3013 2017-04-19 16:55 2017-04-6 Show GitHub Exploit DB Packet Storm
200453 7.8 重要
Local 		アドビシステムズ - Adobe Reader および Acrobat の OCR プラグインにおける安全でないライブラリを読み込まれる脆弱性 CWE-254
セキュリティ機能 		CVE-2017-3012 2017-04-19 16:55 2017-04-6 Show GitHub Exploit DB Packet Storm
200454 7.8 重要
Local 		アドビシステムズ - Adobe Reader および Acrobat の CCITT fax PDF フィルタにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2017-3011 2017-04-19 16:55 2017-04-6 Show GitHub Exploit DB Packet Storm
200455 9.8 緊急
Network 		アドビシステムズ - Adobe Reader および Acrobat のレンダリングエンジンにおけるメモリを破損される脆弱性 CWE-119
バッファエラー 		CVE-2017-3010 2017-04-19 16:39 2017-03-30 Show GitHub Exploit DB Packet Storm
200456 7.5 重要
Network 		アドビシステムズ - Adobe Reader および Acrobat の JPEG2000 パーサにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2017-3009 2017-04-19 16:39 2017-03-30 Show GitHub Exploit DB Packet Storm
200457 7.3 重要
Local 		Amazon.com, Inc. - Amazon Kindle for PC における任意のコードを実行される脆弱性 CWE-426
信頼性のない検索パス 		CVE-2017-6189 2017-04-19 15:42 2017-02-28 Show GitHub Exploit DB Packet Storm
200458 5.5 警告
Local 		JasPer Project - JasPer の libjasper/bmp/bmp_dec.c の bmp_getdata 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2016-8885 2017-04-19 14:47 2016-10-22 Show GitHub Exploit DB Packet Storm
200459 7.8 重要
Local 		Linux - Linux Kernel の drivers/scsi/sg.c の sg_ioctl 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2017-7187 2017-04-19 14:09 2017-03-16 Show GitHub Exploit DB Packet Storm
200460 7.8 重要
Local 		アドビシステムズ - Adobe Flash Player におけるメモリを破損される脆弱性 CWE-119
バッファエラー 		CVE-2017-3064 2017-04-19 12:24 2017-04-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291681 - pearson esis_enterprise_student_information_system Cross-site scripting (XSS) vulnerability in aal/loginverification.aspx in Pearson eSIS Enterprise Student Information System allows remote attackers to inject arbitrary web script or HTML via unspeci… CWE-79
Cross-site Scripting 		CVE-2014-1942 2024-11-21 11:05 2014-04-2 Show GitHub Exploit DB Packet Storm
291682 - posh_project posh The remember me feature in portal/scr_authentif.php in POSH (aka Posh portal or Portaneo) 3.0, 3.2.1, 3.3.0, and earlier stores the username and MD5 digest of the password in cleartext in a cookie, w… CWE-255
Credentials Management 		CVE-2014-2212 2024-11-21 11:05 2014-04-2 Show GitHub Exploit DB Packet Storm
291683 - openstack keystone The memcache token backend in OpenStack Identity (Keystone) 2013.1 through 2.013.1.4, 2013.2 through 2013.2.2, and icehouse before icehouse-3, when issuing a trust token with impersonation enabled, d… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-2237 2024-11-21 11:05 2014-04-1 Show GitHub Exploit DB Packet Storm
291684 - xen xen The (1) do_send and (2) do_recv functions in io.c in libvchan in Xen 4.2.x, 4.3.x, and 4.4-RC series allows local guests to cause a denial of service or possibly gain privileges via crafted xenstore … CWE-20
 Improper Input Validation  		CVE-2014-1896 2024-11-21 11:05 2014-04-1 Show GitHub Exploit DB Packet Storm
291685 - xen xen Off-by-one error in the flask_security_avc_cachestats function in xsm/flask/flask_op.c in Xen 4.2.x and 4.3.x, when the maximum number of physical CPUs are in use, allows local users to cause a denia… CWE-189
Numeric Errors 		CVE-2014-1895 2024-11-21 11:05 2014-04-1 Show GitHub Exploit DB Packet Storm
291686 - xen xen Multiple integer overflows in unspecified suboperations in the flask hypercall in Xen 3.2.x and earlier, when XSM is enabled, allow local users to cause a denial of service (processor fault) via unsp… CWE-189
Numeric Errors 		CVE-2014-1894 2024-11-21 11:05 2014-04-1 Show GitHub Exploit DB Packet Storm
291687 - xen xen Multiple integer overflows in the (1) FLASK_GETBOOL and (2) FLASK_SETBOOL suboperations in the flask hypercall in Xen 4.1.x, 3.3.x, 3.2.x, and earlier, when XSM is enabled, allow local users to cause… CWE-189
Numeric Errors 		CVE-2014-1893 2024-11-21 11:05 2014-04-1 Show GitHub Exploit DB Packet Storm
291688 - xen xen Xen 3.3 through 4.1, when XSM is enabled, allows local users to cause a denial of service via vectors related to a "large memory allocation," a different vulnerability than CVE-2014-1891, CVE-2014-18… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1892 2024-11-21 11:05 2014-04-1 Show GitHub Exploit DB Packet Storm
291689 - xen xen Multiple integer overflows in the (1) FLASK_GETBOOL, (2) FLASK_SETBOOL, (3) FLASK_USER, and (4) FLASK_CONTEXT_TO_SID suboperations in the flask hypercall in Xen 4.3.x, 4.2.x, 4.1.x, 3.2.x, and earlie… CWE-189
Numeric Errors 		CVE-2014-1891 2024-11-21 11:05 2014-04-1 Show GitHub Exploit DB Packet Storm
291690 - sonatype nexus Unspecified vulnerability in Sonatype Nexus OSS and Pro 2.4.0 through 2.7.1 allows attackers to create arbitrary user accounts via unknown vectors related to "an unauthenticated execution path." NVD-CWE-noinfo
CVE-2014-2034 2024-11-21 11:05 2014-04-1 Show GitHub Exploit DB Packet Storm