Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201601 7.3 重要
Local 		Linux - Linux Kernel の drivers/scsi/sg.c の sg_common_write 関数におけるメモリ二重解放の脆弱性 CWE-Other
その他 		CVE-2015-8962 2016-11-17 14:31 2015-10-31 Show GitHub Exploit DB Packet Storm
201602 7.8 重要
Local 		Linux - Linux Kernel の fs/ext4/ext4_jbd2.c の __ext4_journal_stop 関数における権限を取得される脆弱性 CWE-Other
その他 		CVE-2015-8961 2016-11-17 14:31 2015-12-14 Show GitHub Exploit DB Packet Storm
201603 7.8 重要
Local 		xmlsoft.org - XMLSec などの製品で使用される libxml2 における XML 外部エンティティの脆弱性 CWE-Other
その他 		CVE-2016-9318 2016-11-17 13:46 2016-10-11 Show GitHub Exploit DB Packet Storm
201604 5.5 警告
Local 		SUSE
レッドハット
Linux
オラクル		 - Linux Kernel の security/keys/key.c の key_reject_and_link 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-4470 2016-11-16 18:14 2016-06-16 Show GitHub Exploit DB Packet Storm
201605 7.1 重要
Local 		アップル
Debian
Canonical
xmlsoft.org		 - libxml2 の parser.c の xmlStringLenDecodeEntities 関数における XML 外部エンティティの脆弱性 CWE-20
不適切な入力確認 		CVE-2016-4449 2016-11-16 18:14 2016-05-23 Show GitHub Exploit DB Packet Storm
201606 9.8 緊急
Network 		xmlsoft.org
IBM
Slackware
アップル
openSUSE project
Mageia.Org
オラクル
SUSE
レッドハット		 - libxml2 におけるフォーマットストリングの脆弱性 CWE-noinfo
情報不足 		CVE-2016-4448 2016-11-16 18:13 2016-05-23 Show GitHub Exploit DB Packet Storm
201607 7.8 重要
Local 		Linux - Linux Kernel の InfiniBand スタックにおけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-4565 2016-11-16 18:13 2016-05-4 Show GitHub Exploit DB Packet Storm
201608 8.4 重要
Local 		Xen プロジェクト
オラクル		 - Xen の arch/x86/mm/guest_walk.c の guest_walk_tables 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-4480 2016-11-16 18:12 2016-05-17 Show GitHub Exploit DB Packet Storm
201609 6.7 警告
Local 		Xen プロジェクト
オラクル		 - Xen の libxl デバイスハンドリングにおけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-4962 2016-11-16 18:12 2015-06-2 Show GitHub Exploit DB Packet Storm
201610 6.1 警告
Network 		Python Software Foundation - CPython の urllib2 および urllib における CRLF インジェクションの脆弱性 CWE-Other
その他 		CVE-2016-5699 2016-11-16 17:21 2016-06-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289871 - cisco unity_connection The server in Cisco Unity Connection allows remote authenticated users to cause a denial of service (CPU consumption) via unspecified IMAP commands, aka Bug ID CSCul49976. CWE-399
 Resource Management Errors 		CVE-2014-0664 2024-11-21 11:02 2014-01-11 Show GitHub Exploit DB Packet Storm
289872 - cisco secure_access_control_system Cross-site scripting (XSS) vulnerability in the web framework in Cisco Secure Access Control System (ACS) allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, … CWE-79
Cross-site Scripting 		CVE-2014-0663 2024-11-21 11:02 2014-01-11 Show GitHub Exploit DB Packet Storm
289873 - cisco unified_ip_phones_9900_series_firmware
unified_ip_phone_9951
unified_ip_phone_9971 		Cisco 9900 Unified IP phones allow remote attackers to cause a denial of service (unregistration) via a crafted SIP header, aka Bug ID CSCul24898. CWE-20
 Improper Input Validation  		CVE-2014-0658 2024-11-21 11:02 2014-01-11 Show GitHub Exploit DB Packet Storm
289874 - ecava integraxor The SCADA server in Ecava IntegraXor before 4.1.4369 allows remote attackers to read arbitrary project backup files via a crafted URL. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0752 2024-11-21 11:02 2014-01-10 Show GitHub Exploit DB Packet Storm
289875 - cisco unified_communications_manager The administration portal in Cisco Unified Communications Manager (Unified CM) 9.1(1) and earlier does not properly handle role restrictions, which allows remote authenticated users to bypass role-ba… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0657 2024-11-21 11:02 2014-01-9 Show GitHub Exploit DB Packet Storm
289876 - cisco context_directory_agent Cisco Context Directory Agent (CDA) allows remote authenticated users to trigger the omission of certain user-interface data via crafted field values, aka Bug ID CSCuj45353. CWE-20
 Improper Input Validation  		CVE-2014-0656 2024-11-21 11:02 2014-01-9 Show GitHub Exploit DB Packet Storm
289877 - cisco adaptive_security_appliance The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to change the user-cache contents via a replay attack involving crafted RADIUS C… CWE-20
 Improper Input Validation  		CVE-2014-0655 2024-11-21 11:02 2014-01-9 Show GitHub Exploit DB Packet Storm
289878 - cisco context_directory_agent Cisco Context Directory Agent (CDA) allows remote attackers to modify the cache via a replay attack involving crafted RADIUS accounting messages, aka Bug ID CSCuj45383. CWE-20
 Improper Input Validation  		CVE-2014-0654 2024-11-21 11:02 2014-01-9 Show GitHub Exploit DB Packet Storm
289879 - cisco adaptive_security_appliance The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to trigger authentication-state modifications via a crafted NetBIOS logout probe… CWE-20
 Improper Input Validation  		CVE-2014-0653 2024-11-21 11:02 2014-01-9 Show GitHub Exploit DB Packet Storm
289880 - cisco context_directory_agent Cross-site scripting (XSS) vulnerability in the Mappings page in Cisco Context Directory Agent (CDA) allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuj… CWE-79
Cross-site Scripting 		CVE-2014-0652 2024-11-21 11:02 2014-01-9 Show GitHub Exploit DB Packet Storm