Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
201681 7.1 重要
Local
アップル - 複数の Apple 製品の FontParser コンポーネントにおける重要な情報を取得される脆弱性 CWE-125
境界外読み取り
CVE-2017-2439 2017-04-12 17:19 2017-03-27 Show GitHub Exploit DB Packet Storm
201682 7.8 重要
Local
アップル - 複数の Apple 製品の FontParser コンポーネントにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2017-2487 2017-04-12 17:17 2017-03-27 Show GitHub Exploit DB Packet Storm
201683 8.8 重要
Network
アップル - 複数の Apple 製品のセキュリティコンポーネントにおける任意のコードを実行される脆弱性 CWE-416
解放済みメモリの使用
CVE-2017-2485 2017-04-12 17:17 2017-03-27 Show GitHub Exploit DB Packet Storm
201684 7.8 重要
Local
アップル - 複数の Apple 製品のカーネルコンポーネントにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2017-2483 2017-04-12 17:17 2017-03-27 Show GitHub Exploit DB Packet Storm
201685 7.8 重要
Local
アップル - 複数の Apple 製品のカーネルコンポーネントにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2017-2482 2017-04-12 17:17 2017-03-27 Show GitHub Exploit DB Packet Storm
201686 7 重要
Local
アップル - 複数の Apple 製品のカーネルコンポーネントにおける特権付きコンテキスト内で任意のコードを実行される脆弱性 CWE-362
競合状態
CVE-2017-2478 2017-04-12 17:17 2017-03-27 Show GitHub Exploit DB Packet Storm
201687 7.8 重要
Local
アップル - Apple Safari などで使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2017-2392 2017-04-12 17:02 2017-03-27 Show GitHub Exploit DB Packet Storm
201688 9.8 緊急
Network
アップル - 複数の Apple 製品の HTTPProtocol コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2017-2428 2017-04-12 16:55 2017-03-27 Show GitHub Exploit DB Packet Storm
201689 5.5 警告
Local
アップル - 複数の Apple 製品の CoreGraphics コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2017-2417 2017-04-12 16:55 2017-03-27 Show GitHub Exploit DB Packet Storm
201690 7.8 重要
Local
アップル - 複数の Apple 製品の ImageIO コンポーネントにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2017-2416 2017-04-12 16:55 2017-03-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289301 - huawei mobile_partner_firmware
ec156
ec176
ec177
Untrusted search path vulnerability in Huawei Mobile Partner for Windows 23.009.05.03.1014 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wintab32.d… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-8359 2024-11-21 11:18 2014-11-14 Show GitHub Exploit DB Packet Storm
289302 - redhat libvirt The virDomainGetXMLDesc API in Libvirt before 1.2.11 allows remote read-only users to obtain the VNC password by using the VIR_DOMAIN_XML_MIGRATABLE flag, which triggers the use of the VIR_DOMAIN_XML… CWE-255
Credentials Management
CVE-2014-7823 2024-11-21 11:18 2014-11-14 Show GitHub Exploit DB Packet Storm
289303 7.8 HIGH
Local
linux
opensuse
suse
linux_kernel
evergreen
suse_linux_enterprise_server
kernel/trace/trace_syscalls.c in the Linux kernel through 3.17.2 does not properly handle private syscall numbers during use of the ftrace subsystem, which allows local users to gain privileges or ca… CWE-476
 NULL Pointer Dereference
CVE-2014-7826 2024-11-21 11:18 2014-11-10 Show GitHub Exploit DB Packet Storm
289304 7.8 HIGH
Local
linux linux_kernel kernel/trace/trace_syscalls.c in the Linux kernel through 3.17.2 does not properly handle private syscall numbers during use of the perf subsystem, which allows local users to cause a denial of servi… CWE-125
Out-of-bounds Read
CVE-2014-7825 2024-11-21 11:18 2014-11-10 Show GitHub Exploit DB Packet Storm
289305 7.8 HIGH
Local
linux
debian
opensuse
suse
linux_kernel
debian_linux
evergreen
linux_enterprise_real_time_extension
suse_linux_enterprise_server
The kvm_iommu_map_pages function in virt/kvm/iommu.c in the Linux kernel through 3.17.2 miscalculates the number of pages during the handling of a mapping failure, which allows guest OS users to caus… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-8369 2024-11-21 11:18 2014-11-10 Show GitHub Exploit DB Packet Storm
289306 - sprockets_project sprockets Multiple directory traversal vulnerabilities in server.rb in Sprockets before 2.0.5, 2.1.x before 2.1.4, 2.2.x before 2.2.3, 2.3.x before 2.3.3, 2.4.x before 2.4.6, 2.5.x before 2.5.1, 2.6.x and 2.7.… CWE-22
Path Traversal
CVE-2014-7819 2024-11-21 11:18 2014-11-8 Show GitHub Exploit DB Packet Storm
289307 - rubyonrails
opensuse
ruby_on_rails
rails
opensuse
Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.20, 4.0.x before 4.0.11, 4.1.x before 4.1.7, and 4.2.x before 4… CWE-22
Path Traversal
CVE-2014-7818 2024-11-21 11:18 2014-11-8 Show GitHub Exploit DB Packet Storm
289308 - cisco ios_xe
air-ct5760
ws-c3850
ws-c3860
Cisco IOS XE 3.5E and earlier on WS-C3850, WS-C3860, and AIR-CT5760 devices does not properly parse the "request system shell" challenge response, which allows local users to obtain Linux root access… CWE-20
 Improper Input Validation 
CVE-2014-7990 2024-11-21 11:18 2014-11-7 Show GitHub Exploit DB Packet Storm
289309 - cisco b460_m4
b420_m3
b260_m4
b200_m3
b200_m4
b22_m3
b230_m2
b440_m2
Cisco Unified Computing System on B-Series blade servers allows local users to gain shell privileges via a crafted (1) ping6 or (2) traceroute6 command, aka Bug ID CSCuq38176. CWE-20
 Improper Input Validation 
CVE-2014-7989 2024-11-21 11:18 2014-11-7 Show GitHub Exploit DB Packet Storm
289310 - cisco unity_connection The Unified Messaging Service (UMS) in Cisco Unity Connection 10.5 and earlier allows remote authenticated users to obtain sensitive information by reading log files, aka Bug ID CSCur06493. CWE-200
Information Exposure
CVE-2014-7988 2024-11-21 11:18 2014-11-7 Show GitHub Exploit DB Packet Storm