Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201471 6.1 警告
Network 		シスコシステムズ - Cisco Unified Communications Manager の Web ベースの管理インターフェースにおけるクロスサイトスクリプティングフィルタを回避される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-3798 2017-02-8 19:16 2017-01-18 Show GitHub Exploit DB Packet Storm
201472 5.3 警告
Network 		シスコシステムズ - Cisco IOS および Cisco IOx ソフトウェアの Web ベースの管理インターフェースにおけるデバイスへの認証なしで表示される機密情報を閲覧される脆弱性 CWE-200
情報漏えい 		CVE-2017-3805 2017-02-8 18:19 2017-01-18 Show GitHub Exploit DB Packet Storm
201473 4.7 警告
Adjacent 		シスコシステムズ - Cisco 2960X および 3750X スイッチの Cisco IOS ソフトウェアの転送キューにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-3803 2017-02-8 18:19 2017-01-18 Show GitHub Exploit DB Packet Storm
201474 9.8 緊急
Network 		Michael Wallner - pecl_http の HTTP URL 構文解析機能におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-5873 2017-02-8 18:18 2016-03-9 Show GitHub Exploit DB Packet Storm
201475 4.8 警告
Local 		valve software - Valve Steam におけるファイルを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-5237 2017-02-8 18:17 2016-05-11 Show GitHub Exploit DB Packet Storm
201476 6.8 警告
Physics 		cryptsetup project - cryptsetup パッケージ用 Debian initrd スクリプトにおけるシェルのアクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2016-4484 2017-02-8 18:15 2016-11-17 Show GitHub Exploit DB Packet Storm
201477 8.8 重要
Network 		GitLab.org - Gitlab の偽装の機能における他のユーザとして "ログイン" される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-4340 2017-02-8 18:15 2016-05-2 Show GitHub Exploit DB Packet Storm
201478 9.8 緊急
Network 		Magento, Inc. - Magento CE および EE における PHP オブジェクトインジェクション攻撃を実行される脆弱性 CWE-74
インジェクション 		CVE-2016-4010 2017-02-8 17:23 2016-05-17 Show GitHub Exploit DB Packet Storm
201479 9.8 緊急
Network 		LibGD project - GD Graphics ライブラリの gdImageWebPtr 関数におけるメモリ二重解放の脆弱性 CWE-415
二重解放 		CVE-2016-6912 2017-02-8 17:03 2016-08-17 Show GitHub Exploit DB Packet Storm
201480 7.8 重要
Local 		シトリックス・システムズ
Xen プロジェクト		 - Xen の x86 エミュレータにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-9386 2017-02-8 16:53 2016-11-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291871 7.5 HIGH
Network 		qualcomm msm8909w_firmware
sd_210_firmware
sd_212_firmware
sd_205_firmware
sd_400_firmware
sd_410_firmware
sd_412_firmware
sd_800_firmware 		In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, and SD 800, while reading PlayReady r… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-10043 2024-11-21 11:03 2018-04-18 Show GitHub Exploit DB Packet Storm
291872 7.8 HIGH
Local 		s3dvt_project s3dvt The pipe_init_terminal function in main.c in s3dvt allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier. NOTE: This vulnerability exists because o… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1226 2024-11-21 11:03 2018-04-7 Show GitHub Exploit DB Packet Storm
291873 7.8 HIGH
Local 		coreftp core_ftp Multiple buffer overflows in Core FTP Server before 1.2 build 508 allow local users to gain privileges via vectors related to reading data from config.dat and Windows Registry. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1215 2024-11-21 11:03 2018-03-21 Show GitHub Exploit DB Packet Storm
291874 9.8 CRITICAL
Network 		zsh_project zsh In utils.c in zsh before 5.0.6, there is a buffer overflow when scanning very long directory paths for symbolic links. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-10072 2024-11-21 11:03 2018-02-28 Show GitHub Exploit DB Packet Storm
291875 9.8 CRITICAL
Network 		zsh
canonical 		zsh
ubuntu_linux 		In exec.c in zsh before 5.0.7, there is a buffer overflow for very long fds in the ">& fd" syntax. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-10071 2024-11-21 11:03 2018-02-28 Show GitHub Exploit DB Packet Storm
291876 7.8 HIGH
Local 		zsh_project zsh zsh before 5.0.7 allows evaluation of the initial values of integer variables imported from the environment (instead of treating them as literal numbers). That could allow local privilege escalation,… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-10070 2024-11-21 11:03 2018-02-28 Show GitHub Exploit DB Packet Storm
291877 7.5 HIGH
Network 		hitrontech cve-30360_firmware Hitron CVE-30360 devices use a 578A958E3DD933FC DES key that is shared across different customers' installations, which makes it easier for attackers to obtain sensitive information by decrypting a b… CWE-310
Cryptographic Issues 		CVE-2014-10069 2024-11-21 11:03 2018-01-8 Show GitHub Exploit DB Packet Storm
291878 9.8 CRITICAL
Network 		eyou eyou The get_login_ip_config_file function in Eyou Mail System before 3.6 allows remote attackers to execute arbitrary commands via shell metacharacters in the domain parameter to admin/domain/ip_login_se… CWE-77
Command Injection 		CVE-2014-1203 2024-11-21 11:03 2017-10-24 Show GitHub Exploit DB Packet Storm
291879 7.5 HIGH
Network 		google android WiFiMonitor in Android 4.4.4 as used in the Nexus 5 and 4, Android 4.2.2 as used in the LG D806, Android 4.2.2 as used in the Samsung SM-T310, Android 4.1.2 as used in the Motorola RAZR HD, and poten… CWE-19
 Data Processing Errors 		CVE-2014-0997 2024-11-21 11:03 2017-09-26 Show GitHub Exploit DB Packet Storm
291880 7.8 HIGH
Local 		graphviz graphviz Stack-based buffer overflow in the "yyerror" function in Graphviz 2.34.0 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted file. NOTE: … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1235 2024-11-21 11:03 2017-08-8 Show GitHub Exploit DB Packet Storm