Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201721 7.8 重要
Local 		Fabrice Bellard
Canonical
オラクル		 - QEMU の block/iscsi.c の iscsi_aio_ioctl 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-5126 2016-10-28 16:26 2016-05-24 Show GitHub Exploit DB Packet Storm
201722 6 警告
Local 		Fabrice Bellard
Canonical		 - QEMU の hw/display/vmware_vga.c の vmsvga_fifo_read_raw 関数における重要なホストメモリ情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2016-4454 2016-10-28 16:26 2016-05-30 Show GitHub Exploit DB Packet Storm
201723 4.4 警告
Local 		Fabrice Bellard
Canonical		 - QEMU の hw/display/vmware_vga.c の vmsvga_fifo_run 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-4453 2016-10-28 16:25 2016-05-30 Show GitHub Exploit DB Packet Storm
201724 6 警告
Local 		Fabrice Bellard
Canonical		 - QEMU の 53C9X Fast SCSI Controller サポートの hw/scsi/esp.c の get_cmd 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-4441 2016-10-28 16:25 2016-05-19 Show GitHub Exploit DB Packet Storm
201725 8.2 重要
Local 		Fabrice Bellard
Canonical		 - QEMU の 53C9X Fast SCSI Controller サポートの hw/scsi/esp.c の esp_reg_write 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-4439 2016-10-28 16:25 2016-05-19 Show GitHub Exploit DB Packet Storm
201726 5.3 警告
Network 		nov (jose-php project) - jose-php の JWE.php の JOSE_JWE クラスの RSA 1.5 アルゴリズムの実装における平文データを取得される脆弱性 CWE-200
CWE-310
CVE-2016-5430 2016-10-28 14:55 2016-08-31 Show GitHub Exploit DB Packet Storm
201727 3.7
Network 		nov (jose-php project) - jose-php における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-5429 2016-10-28 14:55 2016-08-30 Show GitHub Exploit DB Packet Storm
201728 3.1
Network 		オラクル - Oracle Fusion Middleware の Oracle Data Integrator における Code Generation Engine に関する脆弱性 CWE-200
情報漏えい 		CVE-2016-5618 2016-10-28 14:20 2016-10-18 Show GitHub Exploit DB Packet Storm
201729 6.1 警告
Network 		オラクル - Oracle Financial Services Applications の Oracle FLEXCUBE Universal Banking における INFRA に関する脆弱性 CWE-Other
その他 		CVE-2016-5622 2016-10-28 14:20 2016-10-18 Show GitHub Exploit DB Packet Storm
201730 4.3 警告
Network 		オラクル - Oracle Financial Services Applications の Oracle FLEXCUBE Universal Banking における INFRA に関する脆弱性 CWE-200
CWE-Other
CVE-2016-5621 2016-10-28 14:20 2016-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289991 - websvn
debian 		websvn
debian_linux 		WebSVN 2.3.3 allows remote authenticated users to read arbitrary files via a symlink attack in a commit. CWE-200
Information Exposure 		CVE-2013-6892 2024-11-21 10:59 2015-01-22 Show GitHub Exploit DB Packet Storm
289992 - phpthumb_project phpthumb The default configuration of phpThumb before 1.7.12 has a false value for the disable_debug option, which allows remote attackers to conduct Server-Side Request Forgery (SSRF) attacks via the src par… NVD-CWE-Other
CVE-2013-6919 2024-11-21 10:59 2014-12-28 Show GitHub Exploit DB Packet Storm
289993 - rpm
debian 		rpm
debian_linux 		Race condition in RPM 4.11.1 and earlier allows remote attackers to execute arbitrary code via a crafted RPM file whose installation extracts the contents to temporary files before validating the sig… CWE-74
Injection 		CVE-2013-6435 2024-11-21 10:59 2014-12-17 Show GitHub Exploit DB Packet Storm
289994 - fedup_project fedup fedup 0.9.0 in Fedora 19, 20, and 21 uses a temporary directory with a static name for its download cache, which allows local users to cause a denial of service (prevention of system updates). CWE-17
Code 		CVE-2013-6494 2024-11-21 10:59 2014-12-2 Show GitHub Exploit DB Packet Storm
289995 - clamav clamav clamscan in ClamAV before 0.98.5, when using -a option, allows remote attackers to cause a denial of service (crash) as demonstrated by the jwplayer.js file. CWE-17
Code 		CVE-2013-6497 2024-11-21 10:59 2014-12-2 Show GitHub Exploit DB Packet Storm
289996 - qemu qemu Array index error in the virtio_load function in hw/virtio/virtio.c in QEMU before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image. CWE-94
Code Injection 		CVE-2013-6399 2024-11-21 10:59 2014-11-5 Show GitHub Exploit DB Packet Storm
289997 - deeproot_linux deepofix The SMTP server in DeepOfix 3.3 and earlier allows remote attackers to bypass authentication via an empty password, which triggers an LDAP anonymous bind. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-6796 2024-11-21 10:59 2014-10-27 Show GitHub Exploit DB Packet Storm
289998 - redhat conga Red Hat Conga 0.12.2 allows remote attackers to obtain sensitive information via a crafted request to the (1) homebase, (2) cluster, (3) storage, (4) portal_skins/custom, or (5) logs Luci extension. CWE-200
Information Exposure 		CVE-2013-6496 2024-11-21 10:59 2014-10-6 Show GitHub Exploit DB Packet Storm
289999 - ibm tivoli_storage_manager The Backup-Archive client in IBM Tivoli Storage Manager (TSM) for Space Management 5.x and 6.x before 6.2.5.3, 6.3.x before 6.3.2, 6.4.x before 6.4.2, and 7.1.x before 7.1.0.3 on Linux and AIX, and 5… CWE-281
 Improper Preservation of Permissions 		CVE-2013-6335 2024-11-21 10:59 2014-08-26 Show GitHub Exploit DB Packet Storm
290000 - splunk splunk Directory traversal vulnerability in the collect script in Splunk before 5.0.5 allows remote attackers to execute arbitrary commands via a .. (dot dot) in the file parameter. NOTE: this issue was SP… CWE-22
Path Traversal 		CVE-2013-6771 2024-11-21 10:59 2014-08-7 Show GitHub Exploit DB Packet Storm