Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201581 7.5 重要
Network 		マイクロソフト - Microsoft Windows の SMB Tree Connect Response パケットの処理にサービス運用妨害 (DoS) の脆弱性 - CVE-2017-0016 2017-03-16 14:18 2017-02-2 Show GitHub Exploit DB Packet Storm
201582 8.1 重要
Network 		Zend Technologies Ltd. - Zend Framework における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-4861 2017-03-16 14:14 2016-09-15 Show GitHub Exploit DB Packet Storm
201583 8.1 重要
Network 		D-Link Systems, Inc. - D-Link 製ルータの HNAP サービスにスタックバッファオーバーフローの脆弱性 CWE-Other
その他 		CVE-2016-6563 2017-03-16 14:10 2016-11-7 Show GitHub Exploit DB Packet Storm
201584 8.8 重要
Network 		シスコシステムズ - ウェブブラウザ向け Cisco WebEx 拡張機能に任意のコマンドが実行可能な脆弱性 CWE-119
CWE-78
CVE-2017-3823 2017-03-16 13:54 2017-01-27 Show GitHub Exploit DB Packet Storm
201585 7.5 重要
Network 		Squid-cache.org - Squid HTTP Proxy の Collapsed Forwarding 機能におけるプライベートな応答を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-10003 2017-03-16 09:56 2016-12-16 Show GitHub Exploit DB Packet Storm
201586 7.5 重要
Network 		Squid-cache.org
Debian		 - Squid HTTP Proxy におけるクライアント固有の Cookie データ漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2016-10002 2017-03-16 09:56 2016-12-16 Show GitHub Exploit DB Packet Storm
201587 9.8 緊急
Network 		The Perl Foundation - Perl の VDir::MapPathA および VDir::MapPathW 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2015-8608 2017-03-15 18:03 2015-11-28 Show GitHub Exploit DB Packet Storm
201588 7.2 重要
Network 		IBM - IBM Tivoli Storage Manager Server におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-8998 2017-03-15 17:52 2016-10-25 Show GitHub Exploit DB Packet Storm
201589 6.1 警告
Network 		IBM - Ephox WebRadar におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-8922 2017-03-15 17:52 2016-11-18 Show GitHub Exploit DB Packet Storm
201590 9.8 緊急
Network 		PEAR - PEAR HTML_AJAX の PHP Serializer における PHP オブジェクトインジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2017-5677 2017-03-15 17:49 2017-02-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
288931 - facebook hiphop_virtual_machine The mcrypt_create_iv function in hphp/runtime/ext/mcrypt/ext_mcrypt.cpp in Facebook HipHop Virtual Machine (HHVM) before 3.3.0 does not seed the random number generator, which makes it easier for rem… CWE-310
Cryptographic Issues 		CVE-2014-5386 2024-11-21 11:11 2014-12-29 Show GitHub Exploit DB Packet Storm
288932 - microfocus access_manager Cross-site request forgery (CSRF) vulnerability in nps/servlet/webacc in the Administration Console server in NetIQ Access Manager (NAM) 4.x before 4.1 allows remote attackers to hijack the authentic… CWE-352
 Origin Validation Error 		CVE-2014-5217 2024-11-21 11:11 2014-12-23 Show GitHub Exploit DB Packet Storm
288933 - microfocus access_manager Multiple cross-site scripting (XSS) vulnerabilities in NetIQ Access Manager (NAM) 4.x before 4.0.1 HF3 allow remote attackers to inject arbitrary web script or HTML via (1) the location parameter in … CWE-79
Cross-site Scripting 		CVE-2014-5216 2024-11-21 11:11 2014-12-23 Show GitHub Exploit DB Packet Storm
288934 - microfocus access_manager NetIQ Access Manager (NAM) 4.x before 4.0.1 HF3 allows remote authenticated administrators to discover service-account passwords via a request to (1) roma/jsp/volsc/monitoring/dev_services.jsp or (2)… CWE-200
Information Exposure 		CVE-2014-5215 2024-11-21 11:11 2014-12-23 Show GitHub Exploit DB Packet Storm
288935 - microfocus access_manager nps/servlet/webacc in iManager in the Administration Console server in NetIQ Access Manager (NAM) 4.x before 4.0.1 HF3 allows remote authenticated novlwww users to read arbitrary files via a query pa… NVD-CWE-Other
CVE-2014-5214 2024-11-21 11:11 2014-12-23 Show GitHub Exploit DB Packet Storm
288936 - yokogawa exaopc
centum_cs_3000
centum_vp 		BKBCopyD.exe in the Batch Management Packages in Yokogawa CENTUM CS 3000 through R3.09.50 and CENTUM VP through R4.03.00 and R5.x through R5.04.00, and Exaopc through R3.72.10, does not require authe… CWE-284
Improper Access Control 		CVE-2014-5208 2024-11-21 11:11 2014-12-23 Show GitHub Exploit DB Packet Storm
288937 - novell edirectory nds/files/opt/novell/eDirectory/lib64/ndsimon/public/images in iMonitor in Novell eDirectory before 8.8 SP8 Patch 4 allows remote authenticated users to obtain sensitive information from process memo… CWE-200
Information Exposure 		CVE-2014-5213 2024-11-21 11:11 2014-12-20 Show GitHub Exploit DB Packet Storm
288938 - novell edirectory Cross-site scripting (XSS) vulnerability in nds/search/data in iMonitor in Novell eDirectory before 8.8 SP8 Patch 4 allows remote attackers to inject arbitrary web script or HTML via the rdn paramete… CWE-79
Cross-site Scripting 		CVE-2014-5212 2024-11-21 11:11 2014-12-20 Show GitHub Exploit DB Packet Storm
288939 - mit kerberos
kerberos_5 		plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.1, when the KDC uses LDAP, allows remote authenticated users to cause a denial of service (NU… NVD-CWE-Other
CVE-2014-5354 2024-11-21 11:11 2014-12-17 Show GitHub Exploit DB Packet Storm
288940 - mit
redhat
fedoraproject
debian
canonical
oracle
opensuse 		kerberos_5
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_eus
enterprise_linux_server_tus
fedora
de… 		The krb5_ldap_get_password_policy_from_dn function in plugins/kdb/ldap/libkdb_ldap/ldap_pwd_policy.c in MIT Kerberos 5 (aka krb5) before 1.13.1, when the KDC uses LDAP, allows remote authenticated us… CWE-476
 NULL Pointer Dereference 		CVE-2014-5353 2024-11-21 11:11 2014-12-17 Show GitHub Exploit DB Packet Storm