Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201221	4.3	警告	Mozilla Foundation openSUSE project SUSE オラクル	-	Mozilla Firefox の libstagefright におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-1957	2016-12-5 17:48	2016-03-8	Show	GitHub Exploit DB Packet Storm

201222	6.8	警告	Mozilla Foundation openSUSE project SUSE オラクル	-	Mozilla Firefox の dom/security/nsCSPContext.cpp におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-1954	2016-12-5 17:47	2016-03-8	Show	GitHub Exploit DB Packet Storm

201223	6.8	警告	Mozilla Foundation openSUSE project SUSE オラクル	-	Mozilla Firefox のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-1952	2016-12-5 17:47	2016-03-8	Show	GitHub Exploit DB Packet Storm

201224	7.8	重要 Local	Apache Software Foundation オラクル	-	複数の Linux ディストリビューションの Tomcat パッケージにおける root 権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-5425	2016-12-5 17:01	2016-10-10	Show	GitHub Exploit DB Packet Storm

201225	7.3	重要 Network	ヒューレット・パッカード	-	HP Network Automation Software の RMI サービスにおける任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2016-4385	2016-12-5 17:01	2016-09-20	Show	GitHub Exploit DB Packet Storm

201226	6.8	警告	Debian Canonical Apache Software Foundation	-	Apache Tomcat における Web セッションをハイジャックされる脆弱性	CWE-Other その他	CVE-2015-5346	2016-12-5 17:01	2015-12-10	Show	GitHub Exploit DB Packet Storm

201227	5	警告	ヒューレット・パッカード Debian Canonical Apache Software Foundation	-	Apache Tomcat の Mapper コンポーネントにおけるディレクトリの存在を特定される脆弱性	CWE-22 パス・トラバーサル	CVE-2015-5345	2016-12-5 17:01	2015-12-6	Show	GitHub Exploit DB Packet Storm

201228	4	警告	ヒューレット・パッカード Debian Canonical Apache Software Foundation	-	Apache Tomcat の RequestUtil.java におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-5174	2016-12-5 17:01	2015-08-17	Show	GitHub Exploit DB Packet Storm

201229	5	警告	ヒューレット・パッカード Debian Apache Software Foundation	-	Apache Tomcat の Expression Language の実装における SecurityManager 保護メカニズムを回避される脆弱性	CWE-Other その他	CVE-2014-7810	2016-12-5 17:01	2014-12-9	Show	GitHub Exploit DB Packet Storm

201230	7.5	重要 Network	OpenSSL Project SUSE	-	OpenSSL の crypto/x509/x509_vfy.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-7052	2016-12-5 16:57	2016-09-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290851	-	live555	streaming_media	The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2011.08.13 through 2013.11.25, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service …	CWE-119 CWE-189 Incorrect Access of Indexable Resource ('Range Error') Numeric Errors	CVE-2013-6933	2024-11-21 10:59	2014-01-24	Show	GitHub Exploit DB Packet Storm

290852	-	redhat	cloudforms cloudforms_3.0_management_engine	CloudForms 3.0 Management Engine before 5.2.1.6 allows remote attackers to bypass the Ruby on Rails protect_from_forgery mechanism and conduct cross-site request forgery (CSRF) attacks via a destruct…	CWE-352 Origin Validation Error	CVE-2013-6443	2024-11-21 10:59	2014-01-23	Show	GitHub Exploit DB Packet Storm

290853	-	redhat	jboss_seam_2_framework	The InterfaceGenerator handler in JBoss Seam Remoting in JBoss Seam 2 framework 2.3.1 and earlier, as used in JBoss Web Framework Kit, allows remote attackers to bypass the WebRemote annotation restr…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6448	2024-11-21 10:59	2014-01-23	Show	GitHub Exploit DB Packet Storm

290854	-	redhat	jboss_seam_2_framework	Multiple XML External Entity (XXE) vulnerabilities in the (1) ExecutionHandler, (2) PollHandler, and (3) SubscriptionHandler classes in JBoss Seam Remoting in JBoss Seam 2 framework 2.3.1 and earlier…	CWE-200 Information Exposure	CVE-2013-6447	2024-11-21 10:59	2014-01-23	Show	GitHub Exploit DB Packet Storm

290855	-	augeas	augeas	The transform_save function in transform.c in Augeas 1.0.0 through 1.1.0 does not properly calculate the permission values when the umask contains a "7," which causes world-writable permissions to be…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6412	2024-11-21 10:59	2014-01-23	Show	GitHub Exploit DB Packet Storm

290856	-	ibm	filenet_p8_business_process_manager filenet_case_foundation filenet_content_manager	Cross-site scripting (XSS) vulnerability in FileNet P8 Platform Documentation Installable Info Center 4.5.1 through 5.2.0 in IBM FileNet Business Process Manager 4.5.1 through 5.1.0, FileNet Content …	CWE-79 Cross-site Scripting	CVE-2013-6746	2024-11-21 10:59	2014-01-22	Show	GitHub Exploit DB Packet Storm

290857	-	asus	tm-ac1900_firmware rt-n56u_firmware rt-ac66u_firmware	Multiple buffer overflows in web.c in httpd on the ASUS RT-N56U and RT-AC66U routers with firmware 3.0.0.4.374_979 allow remote attackers to execute arbitrary code via the (1) apps_name or (2) apps_f…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-6343	2024-11-21 10:59	2014-01-22	Show	GitHub Exploit DB Packet Storm

290858	-	seagate	blackarmor_nas_220_firmware blackarmor_nas_220	Multiple cross-site request forgery (CSRF) vulnerabilities in the Seagate BlackArmor NAS 220 devices with firmware sg2000-2000.1331 allow remote attackers to hijack the authentication of administrato…	CWE-352 Origin Validation Error	CVE-2013-6922	2024-11-21 10:59	2014-01-22	Show	GitHub Exploit DB Packet Storm

290859	-	o-dyn	collabtive	SQL injection vulnerability in managetimetracker.php in Collabtive before 1.2 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a projectpdf action.	CWE-89 SQL Injection	CVE-2013-6872	2024-11-21 10:59	2014-01-22	Show	GitHub Exploit DB Packet Storm

290860	-	pixman canonical debian redhat opensuse	pixman ubuntu_linux debian_linux enterprise_linux_server enterprise_linux_workstation enterprise_linux_server_aus enterprise_linux_server_tus enterprise_linux_desktop enterpri…	Integer underflow in the pixman_trapezoid_valid macro in pixman.h in Pixman before 0.32.0, as used in X.Org server and cairo, allows context-dependent attackers to cause a denial of service (crash) v…	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2013-6425	2024-11-21 10:59	2014-01-19	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed