Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201771 7.8 重要
Local 		Linux - Linux Kernel の fs/ext4/ext4_jbd2.c の __ext4_journal_stop 関数における権限を取得される脆弱性 CWE-Other
その他 		CVE-2015-8961 2016-11-17 14:31 2015-12-14 Show GitHub Exploit DB Packet Storm
201772 7.8 重要
Local 		xmlsoft.org - XMLSec などの製品で使用される libxml2 における XML 外部エンティティの脆弱性 CWE-Other
その他 		CVE-2016-9318 2016-11-17 13:46 2016-10-11 Show GitHub Exploit DB Packet Storm
201773 5.5 警告
Local 		SUSE
レッドハット
Linux
オラクル		 - Linux Kernel の security/keys/key.c の key_reject_and_link 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-4470 2016-11-16 18:14 2016-06-16 Show GitHub Exploit DB Packet Storm
201774 7.1 重要
Local 		アップル
Debian
Canonical
xmlsoft.org		 - libxml2 の parser.c の xmlStringLenDecodeEntities 関数における XML 外部エンティティの脆弱性 CWE-20
不適切な入力確認 		CVE-2016-4449 2016-11-16 18:14 2016-05-23 Show GitHub Exploit DB Packet Storm
201775 9.8 緊急
Network 		xmlsoft.org
IBM
Slackware
アップル
openSUSE project
Mageia.Org
オラクル
SUSE
レッドハット		 - libxml2 におけるフォーマットストリングの脆弱性 CWE-noinfo
情報不足 		CVE-2016-4448 2016-11-16 18:13 2016-05-23 Show GitHub Exploit DB Packet Storm
201776 7.8 重要
Local 		Linux - Linux Kernel の InfiniBand スタックにおけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-4565 2016-11-16 18:13 2016-05-4 Show GitHub Exploit DB Packet Storm
201777 8.4 重要
Local 		Xen プロジェクト
オラクル		 - Xen の arch/x86/mm/guest_walk.c の guest_walk_tables 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-4480 2016-11-16 18:12 2016-05-17 Show GitHub Exploit DB Packet Storm
201778 6.7 警告
Local 		Xen プロジェクト
オラクル		 - Xen の libxl デバイスハンドリングにおけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-4962 2016-11-16 18:12 2015-06-2 Show GitHub Exploit DB Packet Storm
201779 6.1 警告
Network 		Python Software Foundation - CPython の urllib2 および urllib における CRLF インジェクションの脆弱性 CWE-Other
その他 		CVE-2016-5699 2016-11-16 17:21 2016-06-15 Show GitHub Exploit DB Packet Storm
201780 9.8 緊急
Network 		Python Software Foundation - CPython の zipimport.c の get_data 関数における整数オーバーフローの脆弱性 CWE-Other
その他 		CVE-2016-5636 2016-11-16 17:21 2016-06-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291381 - checkpoint gaia_os
ipso_os 		The OSPF implementation in Check Point Gaia OS R75.X and R76 and IPSO OS 6.2 R75.X and R76 does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packet… NVD-CWE-Other
CVE-2013-7311 2024-11-21 11:00 2014-01-24 Show GitHub Exploit DB Packet Storm
291382 - yamaha rtx810
rtx3000
rtx1200
rt140
rt250i
srt100
rtx1000
rt300i
fwx120
rtx1100
rt107e
rt105
rtx1500
rtx2000 		The OSPF implementation on Yamaha routers does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA databas… NVD-CWE-Other
CVE-2013-7310 2024-11-21 11:00 2014-01-24 Show GitHub Exploit DB Packet Storm
291383 - extremenetworks exos The OSPF implementation in Extreme Networks EXOS does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA … NVD-CWE-Other
CVE-2013-7309 2024-11-21 11:00 2014-01-24 Show GitHub Exploit DB Packet Storm
291384 - dlink des-3810-28_firmware
des-3810-28 		The OSPF implementation on the D-Link DES-3810-28 switch with firmware R2.20.B017 does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before … NVD-CWE-Other
CVE-2013-7308 2024-11-21 11:00 2014-01-24 Show GitHub Exploit DB Packet Storm
291385 - brocade vyatta_vrouter_software
vyatta_vrouter 		The OSPF implementation on the Brocade Vyatta vRouter with software before 6.6R1 does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before p… NVD-CWE-Other
CVE-2013-7307 2024-11-21 11:00 2014-01-24 Show GitHub Exploit DB Packet Storm
291386 - brocade icx
vyatta
mlx
bigiron_rx
netiron_ces
netiron_xmr
netiron_cer
vdx
adx
fastiron
turboiron 		The OSPF implementation on Brocade routers does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA databa… CWE-20
 Improper Input Validation  		CVE-2013-7306 2024-11-21 11:00 2014-01-24 Show GitHub Exploit DB Packet Storm
291387 - e107 e107 fpw.php in e107 through 1.0.4 does not check the user_ban field, which makes it easier for remote attackers to reset passwords by sending a pwsubmit request and leveraging access to the e-mail accoun… CWE-255
Credentials Management 		CVE-2013-7305 2024-11-21 11:00 2014-01-23 Show GitHub Exploit DB Packet Storm
291388 - checkpoint endpoint_security_mi_server_r73 Check Point Endpoint Security MI Server through R73 3.0.0 HFA2.5 does not configure X.509 certificate validation for client devices, which allows man-in-the-middle attackers to spoof SSL servers by p… CWE-310
Cryptographic Issues 		CVE-2013-7304 2024-11-21 11:00 2014-01-23 Show GitHub Exploit DB Packet Storm
291389 - 2glux com_sexypolling SQL injection vulnerability in vote.php in the 2Glux Sexy Polling (com_sexypolling) component before 1.0.9 for Joomla! allows remote attackers to execute arbitrary SQL commands via the answer_id[] pa… CWE-89
SQL Injection 		CVE-2013-7219 2024-11-21 11:00 2014-01-22 Show GitHub Exploit DB Packet Storm
291390 - typo3 typo3 Cross-site scripting (XSS) vulnerability in the errorAction method in the ActionController base class in the Extbase Framework in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.1… CWE-79
Cross-site Scripting 		CVE-2013-7078 2024-11-21 11:00 2014-01-20 Show GitHub Exploit DB Packet Storm