Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201341 6.5 警告
Network 		Paessler AG - PRTG Network Monitor における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2015-7743 2017-02-8 10:41 2015-08-28 Show GitHub Exploit DB Packet Storm
201342 9.8 緊急
Network 		Vivint, Inc. - Vivint SkyControl Panel におけるアラームシステムを有効/無効にされる脆弱性 CWE-284
不適切なアクセス制御 		CVE-2014-8362 2017-02-8 10:31 2014-09-25 Show GitHub Exploit DB Packet Storm
201343 7.5 重要
Network 		GStreamer - GStreamer の vmnc デコーダにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-9446 2017-02-8 10:06 2016-11-16 Show GitHub Exploit DB Packet Storm
201344 7.8 重要
Local 		GStreamer - GStreamer の NSF デコーダの ROM マッピングにおけるサービス運用妨害 (DoS) の脆弱性 CWE-125
CWE-787
CVE-2016-9447 2017-02-8 10:06 2016-11-14 Show GitHub Exploit DB Packet Storm
201345 7.5 重要
Network 		The PHP Group - PHP の ext/wddx/wddx.c の php_wddx_pop_element 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2016-10162 2017-02-7 17:42 2016-12-29 Show GitHub Exploit DB Packet Storm
201346 7.5 重要
Network 		The PHP Group - PHP の ext/standard/var_unserializer.c の object_common1 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-10161 2017-02-7 17:42 2016-12-31 Show GitHub Exploit DB Packet Storm
201347 9.8 緊急
Network 		The PHP Group - PHP の ext/phar/phar.c の phar_parse_pharfile 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-10160 2017-02-7 17:42 2016-12-31 Show GitHub Exploit DB Packet Storm
201348 7.5 重要
Network 		The PHP Group - PHP の ext/phar/phar.c の phar_parse_pharfile 関数における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-10159 2017-02-7 17:42 2016-12-31 Show GitHub Exploit DB Packet Storm
201349 7.5 重要
Network 		The PHP Group - PHP の ext/exif/exif.c の exif_convert_any_to_int 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2016-10158 2017-02-7 17:42 2016-12-14 Show GitHub Exploit DB Packet Storm
201350 7.5 重要
Network 		SAP - SAP AS JAVA の P4 SERVERCORE コンポーネントの msp におけるシステム情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2017-5372 2017-02-7 15:51 2017-01-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289621 - f5 nginx The STARTTLS implementation in mail/ngx_mail_smtp_handler.c in the SMTP proxy in nginx 1.5.x and 1.6.x before 1.6.1 and 1.7.x before 1.7.4 does not properly restrict I/O buffering, which allows man-i… CWE-77
Command Injection 		CVE-2014-3556 2024-11-21 11:08 2014-12-30 Show GitHub Exploit DB Packet Storm
289622 - openssl openssl The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote attackers to cause a denia… NVD-CWE-Other
CVE-2014-3569 2024-11-21 11:08 2014-12-24 Show GitHub Exploit DB Packet Storm
289623 - cisco adaptive_security_appliance_software The syslog-management subsystem in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to obtain an administrator password by waiting for an administrator to copy a file, and the… CWE-200
Information Exposure 		CVE-2014-3410 2024-11-21 11:08 2014-12-20 Show GitHub Exploit DB Packet Storm
289624 - redhat
apache
debian
apple 		enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server_eus
enterprise_linux_server
enterprise_linux_hpc_node
subversion
debian_linux
xcode 		The mod_dav_svn Apache HTTPD server module in Apache Subversion 1.x before 1.7.19 and 1.8.x before 1.8.11 allows remote attackers to cause a denial of service (NULL pointer dereference and server cra… NVD-CWE-Other
CVE-2014-3580 2024-11-21 11:08 2014-12-19 Show GitHub Exploit DB Packet Storm
289625 - apple
apache
canonical 		mac_os_x
os_x_server
http_server
ubuntu_linux 		The handle_headers function in mod_proxy_fcgi.c in the mod_proxy_fcgi module in the Apache HTTP Server 2.4.10 allows remote FastCGI servers to cause a denial of service (buffer over-read and daemon c… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-3583 2024-11-21 11:08 2014-12-16 Show GitHub Exploit DB Packet Storm
289626 - vmware vcenter_server_appliance Cross-site scripting (XSS) vulnerability in VMware vCenter Server Appliance (vCSA) 5.1 before Update 3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2014-3797 2024-11-21 11:08 2014-12-8 Show GitHub Exploit DB Packet Storm
289627 - f5
debian 		nginx
debian_linux 		nginx 0.5.6 through 1.7.4, when using the same shared ssl_session_cache or ssl_session_ticket_key for multiple servers, can reuse a cached SSL session for an unrelated context, which allows remote at… CWE-613
 Insufficient Session Expiration 		CVE-2014-3616 2024-11-21 11:08 2014-12-8 Show GitHub Exploit DB Packet Storm
289628 - apache hadoop The YARN NodeManager daemon in Apache Hadoop 0.23.0 through 0.23.11 and 2.x before 2.5.2, when using Kerberos authentication, allows remote cluster users to change the permissions of certain files to… CWE-59
Link Following 		CVE-2014-3627 2024-11-21 11:08 2014-12-6 Show GitHub Exploit DB Packet Storm
289629 - redhat enterprise_virtualization The rhevm-log-collector package in Red Hat Enterprise Virtualization 3.4 uses the PostgreSQL database password on the command line when calling sosreport, which allows local users to obtain sensitive… CWE-200
Information Exposure 		CVE-2014-3561 2024-11-21 11:08 2014-12-6 Show GitHub Exploit DB Packet Storm
289630 - redhat packstack OpenStack PackStack 2012.2.1, when the Open vSwitch (OVS) monolithic plug-in is not used, does not properly set the libvirt_vif_driver configuration option when generating the nova.conf configuration… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3703 2024-11-21 11:08 2014-12-2 Show GitHub Exploit DB Packet Storm