Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201481 5.9 警告
Network 		libssh2.org
Debian
openSUSE project
Fedora Project		 - libssh2 の kex.c の diffie_hellman_sha256 関数における SSH セッションを復号される脆弱性 CWE-200
情報漏えい 		CVE-2016-0787 2016-11-21 16:18 2016-02-23 Show GitHub Exploit DB Packet Storm
201482 9.8 緊急
Network 		Fedora Project
Apache Software Foundation		 - Apache Xerces-C の XML パーサライブラリにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-0729 2016-11-21 16:18 2016-02-25 Show GitHub Exploit DB Packet Storm
201483 5 警告 PostgreSQL.org
Debian
Canonical		 - PostgreSQL におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-0773 2016-11-21 16:18 2016-02-11 Show GitHub Exploit DB Packet Storm
201484 7.2 危険 Google
Linux
ヒューレット・パッカード・エンタープライズ		 - Linux Kernel の security/keys/process_keys.c の join_session_keyring 関数における権限を取得される脆弱性 CWE-Other
その他 		CVE-2016-0728 2016-11-21 16:18 2016-01-31 Show GitHub Exploit DB Packet Storm
201485 9.3 危険 レッドハット
日立
オラクル		 - Oracle Java SE における Hotspot に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0636 2016-11-21 15:32 2016-03-23 Show GitHub Exploit DB Packet Storm
201486 5.9 警告
Network 		OpenSSL Project
日立		 - OpenSSL の SSLv2 の実装の s2_srvr.c のオラクル保護メカニズムにおける TLS 暗号文データを解読される脆弱性 CWE-200
情報漏えい 		CVE-2016-0704 2016-11-21 15:32 2016-03-1 Show GitHub Exploit DB Packet Storm
201487 9.8 緊急
Network 		Google
OpenSSL Project
オラクル		 - OpenSSL の crypto/dsa/dsa_ameth.c の dsa_priv_decode 関数におけるメモリ二重解放の脆弱性 CWE-Other
その他 		CVE-2016-0705 2016-11-21 15:32 2016-03-1 Show GitHub Exploit DB Packet Storm
201488 5.1 警告
Local 		OpenSSL Project
日立
オラクル		 - OpenSSL の crypto/bn/bn_exp.c の MOD_EXP_CTIME_COPY_FROM_PREBUF 関数における RSA の鍵を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-0702 2016-11-21 15:32 2016-03-1 Show GitHub Exploit DB Packet Storm
201489 4 警告 ヒューレット・パッカード
Debian
Canonical
Apache Software Foundation		 - Apache Tomcat における SecurityManager の制限を回避される脆弱性 CWE-200
情報漏えい 		CVE-2016-0706 2016-11-21 15:32 2016-01-5 Show GitHub Exploit DB Packet Storm
201490 10 危険 日立
Canonical
オラクル		 - Oracle Java SE および Java SE Embedded における 2D に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0494 2016-11-21 15:32 2016-01-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290011 - ovirt
redhat 		ovirt
ovirt-engine 		Session fixation vulnerability in the web admin interface in oVirt 3.4.0 and earlier allows remote attackers to hijack web sessions via unspecified vectors. NVD-CWE-Other
CVE-2014-0152 2024-11-21 11:01 2014-09-8 Show GitHub Exploit DB Packet Storm
290012 - apache ofbiz Multiple cross-site scripting (XSS) vulnerabilities in framework/common/webcommon/includes/messages.ftl in Apache OFBiz 11.04.01 before 11.04.05 and 12.04.01 before 12.04.04 allow remote attackers to… CWE-79
Cross-site Scripting 		CVE-2014-0232 2024-11-21 11:01 2014-08-22 Show GitHub Exploit DB Packet Storm
290013 - iridium open_port
pilot_below_deck_equipment 		The Terminal Upgrade Tool in the Pilot Below Deck Equipment (BDE) and OpenPort implementations on Iridium satellite terminals allows remote attackers to execute arbitrary code by uploading new firmwa… NVD-CWE-Other
CVE-2014-0327 2024-11-21 11:01 2014-08-18 Show GitHub Exploit DB Packet Storm
290014 - iridium open_port
pilot_below_deck_equipment 		The Pilot Below Deck Equipment (BDE) and OpenPort implementations on Iridium satellite terminals allow remote attackers to read hardcoded credentials via the web interface. NVD-CWE-Other
CVE-2014-0326 2024-11-21 11:01 2014-08-18 Show GitHub Exploit DB Packet Storm
290015 - cobham ailor_6110_mini-c_gmdss
sailor_6006_message_terminal
sailor_6222_vhf
sailor_6300_mf_\/_hf 		The thraneLINK protocol implementation on Cobham devices does not verify firmware signatures, which allows attackers to execute arbitrary code by leveraging physical access or terminal access to send… NVD-CWE-Other
CVE-2014-0328 2024-11-21 11:01 2014-08-15 Show GitHub Exploit DB Packet Storm
290016 - microsoft windows_server_2008
windows_rt
windows_8.1
windows_7
windows_rt_8.1
windows_vista
windows_8
windows_server_2012
windows_server_2003 		win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0318 2024-11-21 11:01 2014-08-13 Show GitHub Exploit DB Packet Storm
290017 - microsoft windows_server_2008
windows_server_2012
windows_rt
windows_8.1
windows_7
windows_rt_8.1
windows_8 		Memory leak in the Local RPC (LRPC) server implementation in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 … CWE-399
 Resource Management Errors 		CVE-2014-0316 2024-11-21 11:01 2014-08-13 Show GitHub Exploit DB Packet Storm
290018 - redhat
opensuse 		libvirt
enterprise_linux
opensuse
enterprise_virtualization 		libvirt 0.7.5 through 1.2.x before 1.2.5 allows local users to cause a denial of service (read block and hang) via a crafted XML document containing an XML external entity declaration in conjunction … CWE-20
 Improper Input Validation  		CVE-2014-0179 2024-11-21 11:01 2014-08-4 Show GitHub Exploit DB Packet Storm
290019 - zarafa
fedoraproject 		zarafa
webapp
fedora 		WebAccess in Zarafa before 7.1.10 and WebApp before 1.6 stores credentials in cleartext, which allows local Apache users to obtain sensitive information by reading the PHP session files. CWE-310
Cryptographic Issues 		CVE-2014-0103 2024-11-21 11:01 2014-07-29 Show GitHub Exploit DB Packet Storm
290020 - apache http_server The mod_cgid module in the Apache HTTP Server before 2.4.10 does not have a timeout mechanism, which allows remote attackers to cause a denial of service (process hang) via a request to a CGI script … CWE-399
 Resource Management Errors 		CVE-2014-0231 2024-11-21 11:01 2014-07-20 Show GitHub Exploit DB Packet Storm