Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
200971	7.8	重要 Local	IBM	-	IBM Security Identity Manager 仮想アプライアンスにおけるユーザの認証情報を読まれる脆弱性	CWE-255 証明書・パスワード管理	CVE-2016-9739	2017-02-22 11:09	2016-12-1	Show	GitHub Exploit DB Packet Storm

200972	6.1	警告 Network	IBM	-	IBM Security Identity Manager 仮想アプライアンスにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-9704	2017-02-22 11:09	2016-12-1	Show	GitHub Exploit DB Packet Storm

200973	2.4	低 Physics	IBM	-	IBM Security Identity Manager 仮想アプライアンスにおける重要な情報を取得される脆弱性	CWE-384 セッションの固定化	CVE-2016-9703	2017-02-22 11:09	2016-12-1	Show	GitHub Exploit DB Packet Storm

200974	3.7	低 Network	IBM	-	IBM Security Access Manager における情報を公開される脆弱性	CWE-200 情報漏えい	CVE-2016-3045	2017-02-22 11:07	2016-12-8	Show	GitHub Exploit DB Packet Storm

200975	4	警告 Local	IBM	-	IBM Security Key Lifecycle Manager におけるローカルに保存された Web ページを読まれる脆弱性	CWE-200 情報漏えい	CVE-2016-6097	2017-02-21 16:55	2016-06-29	Show	GitHub Exploit DB Packet Storm

200976	6.1	警告 Network	IBM	-	IBM Security Key Lifecycle Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-6096	2017-02-21 16:55	2016-06-29	Show	GitHub Exploit DB Packet Storm

200977	4.3	警告 Network	IBM	-	IBM Security Key Lifecycle Manager における環境などに関する重要な情報を含むエラーメッセージを出力される脆弱性	CWE-200 情報漏えい	CVE-2016-6094	2017-02-21 16:55	2016-06-29	Show	GitHub Exploit DB Packet Storm

200978	6.2	警告 Local	IBM	-	IBM Security Key Lifecycle Manager における平文で保存されたユーザの認証情報を読まれる脆弱性	CWE-200 情報漏えい	CVE-2016-6092	2017-02-21 16:55	2016-06-29	Show	GitHub Exploit DB Packet Storm

200979	5.4	警告 Network	IBM	-	IBM Connections におけるホストヘッダを挿入される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-0310	2017-02-21 16:43	2016-08-9	Show	GitHub Exploit DB Packet Storm

200980	4.3	警告 Network	IBM	-	IBM Connections におけるリンクを改ざんされる脆弱性	CWE-284 不適切なアクセス制御	CVE-2016-0308	2017-02-21 16:43	2016-08-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291421	-	apple	mac_os_x	iBooks Commerce in Apple OS X before 10.9.4 places Apple ID credentials in the iBooks log, which allows local users to obtain sensitive information by reading this file.	CWE-200 Information Exposure	CVE-2014-1317	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

291422	-	linux canonical suse	linux_kernel ubuntu_linux suse_linux_enterprise_desktop suse_linux_enterprise_server linux_enterprise_high_availability_extension	The media_device_enum_entities function in drivers/media/media-device.c in the Linux kernel before 3.14.6 does not initialize a certain data structure, which allows local users to obtain sensitive in…	CWE-200 Information Exposure	CVE-2014-1739	2024-11-21 11:04	2014-06-23	Show	GitHub Exploit DB Packet Storm

291423	-	symantec	web_gateway	Multiple cross-site scripting (XSS) vulnerabilities in the management console in Symantec Web Gateway (SWG) before 5.2 allow remote authenticated users to inject arbitrary web script or HTML via unsp…	CWE-79 Cross-site Scripting	CVE-2014-1652	2024-11-21 11:04	2014-06-19	Show	GitHub Exploit DB Packet Storm

291424	-	symantec	web_gateway	SQL injection vulnerability in clientreport.php in the management console in Symantec Web Gateway (SWG) before 5.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2014-1651	2024-11-21 11:04	2014-06-19	Show	GitHub Exploit DB Packet Storm

291425	-	symantec	web_gateway	SQL injection vulnerability in user.php in the management console in Symantec Web Gateway (SWG) before 5.2.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vector…	CWE-89 SQL Injection	CVE-2014-1650	2024-11-21 11:04	2014-06-19	Show	GitHub Exploit DB Packet Storm

291426	-	mozilla	netscape_portable_runtime	Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via vectors involving the sprintf and conso…	NVD-CWE-Other	CVE-2014-1545	2024-11-21 11:04	2014-06-11	Show	GitHub Exploit DB Packet Storm

291427	-	mozilla	firefox	Multiple heap-based buffer overflows in the navigator.getGamepads function in the Gamepad API in Mozilla Firefox before 30.0 allow remote attackers to execute arbitrary code by using non-contiguous a…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-1543	2024-11-21 11:04	2014-06-11	Show	GitHub Exploit DB Packet Storm

291428	-	opensuse_project opensuse mozilla oracle	opensuse firefox solaris	Buffer overflow in the Speex resampler in the Web Audio subsystem in Mozilla Firefox before 30.0 allows remote attackers to execute arbitrary code via vectors related to a crafted AudioBuffer channel…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-1542	2024-11-21 11:04	2014-06-11	Show	GitHub Exploit DB Packet Storm

291429	-	mozilla	thunderbird firefox firefox_esr	Use-after-free vulnerability in the RefreshDriverTimer::TickDriver function in the SMIL Animation Controller in Mozilla Firefox before 30.0, Firefox ESR 24.x before 24.6, and Thunderbird before 24.6 …	NVD-CWE-Other	CVE-2014-1541	2024-11-21 11:04	2014-06-11	Show	GitHub Exploit DB Packet Storm

291430	-	mozilla	firefox	Use-after-free vulnerability in the nsEventListenerManager::CompileEventHandlerInternal function in the Event Listener Manager in Mozilla Firefox before 30.0 allows remote attackers to execute arbitr…	NVD-CWE-Other	CVE-2014-1540	2024-11-21 11:04	2014-06-11	Show	GitHub Exploit DB Packet Storm