Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201211 9.8 緊急
Network 		The WebM Project
Fedora Project		 - libwebp における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-9085 2017-02-16 14:46 2016-10-10 Show GitHub Exploit DB Packet Storm
201212 5.5 警告
Local 		cairographics.org - cairo の write_png 関数における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-9082 2017-02-16 14:46 2016-10-20 Show GitHub Exploit DB Packet Storm
201213 5.5 警告
Local 		GNOME Project - librsvg2 の rsvg-paint_server.c の rsvg_pattern_fix_fallback 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-6163 2017-02-16 14:46 2016-07-7 Show GitHub Exploit DB Packet Storm
201214 8.8 重要
Network 		トレンドマイクロ - Trend Micro VMI の /vmi/manager/engine/management/commands/apns_worker.py における任意のコマンドを実行される脆弱性 CWE-77
コマンドインジェクション 		CVE-2016-6270 2017-02-16 14:30 2016-09-30 Show GitHub Exploit DB Packet Storm
201215 7.8 重要
Local 		IBM - IBM Security Guardium Database Activity Monito アプライアンスにおけるコマンドを挿入される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2016-6065 2017-02-16 14:26 2016-12-15 Show GitHub Exploit DB Packet Storm
201216 6.3 警告
Network 		IBM - IBM Security Privileged Identity Manager 仮想アプライアンスにおける悪意のあるファイルをアップロードされる脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-5990 2017-02-16 14:26 2016-12-29 Show GitHub Exploit DB Packet Storm
201217 6.5 警告
Network 		IBM - IBM Security Privileged Identity Manager 仮想アプライアンスにおける重要な情報を公開される脆弱性 CWE-200
情報漏えい 		CVE-2016-5988 2017-02-16 14:26 2016-12-29 Show GitHub Exploit DB Packet Storm
201218 5.9 警告
Network 		IBM - IBM Security Privileged Identity Manager 仮想アプライアンスにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-5966 2017-02-16 14:26 2016-12-29 Show GitHub Exploit DB Packet Storm
201219 7.5 重要
Network 		IBM - IBM Security Privileged Identity Manager における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-5958 2017-02-16 14:26 2016-12-29 Show GitHub Exploit DB Packet Storm
201220 7.8 重要
Local 		IBM - IBM AIX における root レベルの権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3053 2017-02-16 14:26 2016-10-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291801 5.5 MEDIUM
Local 		ffmpeg ffmpeg A vulnerability has been found in FFmpeg 2.0 and classified as problematic. This vulnerability affects the function decode_hextile of the file libavcodec/vmnc.c. The manipulation leads to memory corr… CWE-787
 Out-of-bounds Write 		CVE-2014-125004 2024-11-21 11:03 2022-06-18 Show GitHub Exploit DB Packet Storm
291802 5.5 MEDIUM
Local 		ffmpeg ffmpeg A vulnerability was found in FFmpeg 2.0 and classified as problematic. This issue affects the function get_siz of the file libavcodec/jpeg2000dec.c. The manipulation leads to memory corruption. The a… CWE-787
 Out-of-bounds Write 		CVE-2014-125003 2024-11-21 11:03 2022-06-18 Show GitHub Exploit DB Packet Storm
291803 5.5 MEDIUM
Local 		ffmpeg ffmpeg A vulnerability was found in FFmpeg 2.0. It has been classified as problematic. Affected is the function dnxhd_init_rc of the file libavcodec/dnxhdenc.c. The manipulation leads to memory corruption. … CWE-787
 Out-of-bounds Write 		CVE-2014-125002 2024-11-21 11:03 2022-06-18 Show GitHub Exploit DB Packet Storm
291804 8.8 HIGH
Adjacent 		cardosystems scala_rider_q3_firmware A vulnerability classified as critical has been found in Cardo Systems Scala Rider Q3. Affected is the file /cardo/api of the Cardo-Updater. Unauthenticated remote code execution with root permission… CWE-269
 Improper Privilege Management 		CVE-2014-125001 2024-11-21 11:03 2022-05-25 Show GitHub Exploit DB Packet Storm
291805 6.1 MEDIUM
Local 		perl dbi An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute in the data source name (D… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2014-10402 2024-11-21 11:03 2020-09-17 Show GitHub Exploit DB Packet Storm
291806 6.1 MEDIUM
Local 		perl dbi An issue was discovered in the DBI module before 1.632 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2014-10401 2024-11-21 11:03 2020-09-12 Show GitHub Exploit DB Packet Storm
291807 6.1 MEDIUM
Network 		keplerproject cgilua The session.lua library in CGILua 5.0.x uses sequential session IDs, which makes it easier for remote attackers to predict the session ID and hijack arbitrary sessions. NOTE: this vulnerability was S… CWE-384
 Session Fixation 		CVE-2014-10400 2024-11-21 11:03 2020-02-7 Show GitHub Exploit DB Packet Storm
291808 6.1 MEDIUM
Network 		keplerproject cgilua The session.lua library in CGILua 5.1.x uses the same ID for each session, which allows remote attackers to hijack arbitrary sessions. NOTE: this vulnerability was SPLIT from CVE-2014-2875. CWE-384
 Session Fixation 		CVE-2014-10399 2024-11-21 11:03 2020-02-7 Show GitHub Exploit DB Packet Storm
291809 6.1 MEDIUM
Network 		bssys rbs_bs-client._retail_client Multiple cross-site scripting (XSS) vulnerabilities in bsi.dll in Bank Soft Systems (BSS) RBS BS-Client. Private Client (aka RBS BS-Client. Retail Client) 2.5, 2.4, and earlier allow remote attackers… CWE-79
Cross-site Scripting 		CVE-2014-10398 2024-11-21 11:03 2020-01-4 Show GitHub Exploit DB Packet Storm
291810 6.1 MEDIUM
Network 		ideagen q-pulse Cross-site scripting (XSS) vulnerability in ui/common/managedlistdialog.aspx in Gael Q-Pulse 0.6 and earlier. CWE-79
Cross-site Scripting 		CVE-2014-1238 2024-11-21 11:03 2019-11-23 Show GitHub Exploit DB Packet Storm