Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201001 6.3 警告
Network 		NetApp - NetApp Snap Creator Framework におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-5372 2017-02-21 11:40 2016-06-22 Show GitHub Exploit DB Packet Storm
201002 7.5 重要
Network 		TalariaX Pte Ltd - SendQuick Entera および Avera デバイスのアプリケーションにおけるシステムをシャットダウンされる脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-5136 2017-02-21 11:09 2017-02-5 Show GitHub Exploit DB Packet Storm
201003 5.4 警告
Network 		シスコシステムズ - Cisco Prime Service Catalog の Web フレームワークにおけるシステムにログインしているユーザに対して URL リダイレクト攻撃を実行される脆弱性 CWE-601
オープンリダイレクト 		CVE-2017-3810 2017-02-21 11:07 2017-02-1 Show GitHub Exploit DB Packet Storm
201004 6.1 警告
Network 		Plone Foundation - Plone の Zope ZMI の検索機能の manage_findResult コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-7147 2017-02-21 11:05 2016-09-5 Show GitHub Exploit DB Packet Storm
201005 9.1 緊急
Network 		SaltStack - Salt における同一の ID を持つ minion を読まれる脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-9639 2017-02-20 18:16 2016-11-28 Show GitHub Exploit DB Packet Storm
201006 5.2 警告
Adjacent 		Tenable, Inc. - Nessus におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-9260 2017-02-20 17:43 2017-01-24 Show GitHub Exploit DB Packet Storm
201007 7.5 重要
Network 		日本電気
Apache Software Foundation		 - Apache HTTP Web Server の HTTP/2 プロトコルの処理にサービス運用妨害 (DoS) の脆弱性 CWE-20
CWE-399
CVE-2016-8740 2017-02-20 17:39 2016-12-4 Show GitHub Exploit DB Packet Storm
201008 7.2 重要
Network 		iRZ Company - iRZ RUH2 におけるデータを変更される脆弱性 CWE-345
データの信頼性についての不十分な検証 		CVE-2016-2309 2017-02-20 17:10 2016-05-17 Show GitHub Exploit DB Packet Storm
201009 7.8 重要
Local 		Google - メディアサーバの libopus の silk/NLSF_stabilize.c における情報を公開される脆弱性 CWE-119
バッファエラー 		CVE-2017-0381 2017-02-20 16:38 2017-01-3 Show GitHub Exploit DB Packet Storm
201010 5.9 警告
Network 		DELL EMC (旧 EMC Corporation)
日立		 - 複数の EMC RSA BSAFE 製品における秘密鍵の prime を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-0887 2017-02-20 16:14 2016-04-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289901 - google
redhat 		chrome_os
chrome
enterprise_linux_desktop_supplementary
enterprise_linux_server_supplementary
enterprise_linux_workstation_supplementary
enterprise_linux_server_supplementary_eus 		Google Chrome before 38.0.2125.101 and Chrome OS before 38.0.2125.101 do not properly handle the interaction of IPC and Google V8, which allows remote attackers to execute arbitrary code via vectors … CWE-94
Code Injection 		CVE-2014-3188 2024-11-21 11:07 2014-10-8 Show GitHub Exploit DB Packet Storm
289902 - google
apple 		chrome
iphone_os 		Google Chrome before 37.0.2062.60 and 38.x before 38.0.2125.59 on iOS does not properly restrict processing of (1) facetime:// and (2) facetime-audio:// URLs, which allows remote attackers to obtain … CWE-79
Cross-site Scripting 		CVE-2014-3187 2024-11-21 11:07 2014-10-8 Show GitHub Exploit DB Packet Storm
289903 - ibm tivoli_federated_identity_manager Open redirect vulnerability in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0-TIV-TFIM-IF0015, 6.2.1 before 6.2.1-TIV-TFIM-IF0007, and 6.2.2 before 6.2.2-TIV-TFIM-IF0011 allows remot… NVD-CWE-Other
CVE-2014-3097 2024-11-21 11:07 2014-10-2 Show GitHub Exploit DB Packet Storm
289904 - ibm websphere_datapower_xc10_appliance_firmware
websphere_datapower_xc10_appliance 		Unspecified vulnerability on the IBM WebSphere DataPower XC10 appliance 2.5 allows remote attackers to obtain administrative privileges by leveraging access to an eXtreme Scale distributed ObjectGrid… NVD-CWE-noinfo
CVE-2014-3060 2024-11-21 11:07 2014-10-2 Show GitHub Exploit DB Packet Storm
289905 - ibm websphere_datapower_xc10_appliance_firmware
websphere_datapower_xc10_appliance 		Unspecified vulnerability in the Administrative Console on the IBM WebSphere DataPower XC10 appliance 2.5 allows remote attackers to obtain administrative privileges by leveraging access to an eXtrem… NVD-CWE-noinfo
CVE-2014-3059 2024-11-21 11:07 2014-10-2 Show GitHub Exploit DB Packet Storm
289906 - linux
canonical 		linux_kernel
ubuntu_linux 		Buffer overflow in the picolcd_raw_event function in devices/hid/hid-picolcd_core.c in the PicoLCD HID device driver in the Linux kernel through 3.16.3, as used in Android on Nexus 7 devices, allows … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-3186 2024-11-21 11:07 2014-09-28 Show GitHub Exploit DB Packet Storm
289907 - linux linux_kernel Multiple buffer overflows in the command_port_read_callback function in drivers/usb/serial/whiteheat.c in the Whiteheat USB Serial Driver in the Linux kernel before 3.16.2 allow physically proximate … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-3185 2024-11-21 11:07 2014-09-28 Show GitHub Exploit DB Packet Storm
289908 - linux linux_kernel The report_fixup functions in the HID subsystem in the Linux kernel before 3.16.2 might allow physically proximate attackers to cause a denial of service (out-of-bounds write) via a crafted device th… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-3184 2024-11-21 11:07 2014-09-28 Show GitHub Exploit DB Packet Storm
289909 - linux linux_kernel Heap-based buffer overflow in the logi_dj_ll_raw_request function in drivers/hid/hid-logitech-dj.c in the Linux kernel before 3.16.2 allows physically proximate attackers to cause a denial of service… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-3183 2024-11-21 11:07 2014-09-28 Show GitHub Exploit DB Packet Storm
289910 - linux linux_kernel Array index error in the logi_dj_raw_event function in drivers/hid/hid-logitech-dj.c in the Linux kernel before 3.16.2 allows physically proximate attackers to execute arbitrary code or cause a denia… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-3182 2024-11-21 11:07 2014-09-28 Show GitHub Exploit DB Packet Storm