Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201771 5.5 警告
Local 		Google - Audioserver における情報を公開される脆弱性 CWE-200
情報漏えい 		CVE-2017-0398 2017-01-27 16:58 2017-01-3 Show GitHub Exploit DB Packet Storm
201772 7 重要
Local 		Google - Broadcom Wi-Fi ドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-9910 2017-01-27 16:50 2016-12-5 Show GitHub Exploit DB Packet Storm
201773 7 重要
Local 		Google - Broadcom Wi-Fi ドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-9909 2017-01-27 16:50 2016-12-5 Show GitHub Exploit DB Packet Storm
201774 7.5 重要
Network 		GStreamer - GStreamer の mpegts デコーダの gst_mpegts_section_new 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-9812 2017-01-27 15:48 2016-11-29 Show GitHub Exploit DB Packet Storm
201775 4.7 警告
Local 		GStreamer - GStreamer の gst-plugins-base の windows_icon_typefind 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-9811 2017-01-27 15:48 2016-11-29 Show GitHub Exploit DB Packet Storm
201776 8.1 重要
Network 		b2evolution - b2evolution の inc/files/files.ctrl.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2017-5480 2017-01-27 15:40 2017-01-14 Show GitHub Exploit DB Packet Storm
201777 7.1 重要
Local 		Linux - Linux Kernel の arch/x86/kvm/emulate.c におけるカーネルメモリから重要な情報を取得される脆弱性 CWE-200
CWE-416
CVE-2017-2584 2017-01-27 15:05 2017-01-12 Show GitHub Exploit DB Packet Storm
201778 9.8 緊急
Network 		Barco - Barco ClickShare CSC-1 デバイスのファームウェアのにおける root パスワードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-3152 2017-01-27 14:57 2016-11-14 Show GitHub Exploit DB Packet Storm
201779 7.5 重要
Network 		Barco - 複数の Barco ClickShare デバイス製品のファームウェアの壁紙構文解析機能におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-3151 2017-01-27 14:57 2016-11-14 Show GitHub Exploit DB Packet Storm
201780 6.1 警告
Network 		Barco - 複数の Barco ClickShare デバイス製品のファームウェアの Base Unit の wallpaper.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-3150 2017-01-27 14:57 2016-11-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292251 - redhat cloudforms_3.0.5_management_engine
cloudforms_3.0.4_management_engine
cloudforms_3.0.3_management_engine
cloudforms_3.0.2_management_engine
cloudforms_3.0.1_management_engine
cloudform… 		Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to access sensitive controllers and actions via a direct HTTP or HTTPS request. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0140 2024-11-21 11:01 2014-10-6 Show GitHub Exploit DB Packet Storm
292252 - apache shiro Apache Shiro 1.x before 1.2.3, when using an LDAP server with unauthenticated bind enabled, allows remote attackers to bypass authentication via an empty (1) username or (2) password. CWE-287
Improper Authentication 		CVE-2014-0074 2024-11-21 11:01 2014-10-6 Show GitHub Exploit DB Packet Storm
292253 - redhat
jboss 		jboss_data_virtualization
teiid 		Teiid before 8.4.3 and before 8.7 and Red Hat JBoss Data Virtualization 6.0.0 before patch 3 allows remote attackers to read arbitrary files via a crafted request to a REST endpoint, related to an XM… NVD-CWE-Other
CVE-2014-0170 2024-11-21 11:01 2014-09-30 Show GitHub Exploit DB Packet Storm
292254 - linux linux_kernel The futex_wait function in kernel/futex.c in the Linux kernel before 2.6.37 does not properly maintain a certain reference count during requeue operations, which allows local users to cause a denial … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-0205 2024-11-21 11:01 2014-09-29 Show GitHub Exploit DB Packet Storm
292255 - fortinet fortios The FortiManager protocol service in Fortinet FortiOS before 4.3.16 and 5.x before 5.0.8 on FortiGate devices does not prevent use of anonymous ciphersuites, which makes it easier for man-in-the-midd… CWE-310
Cryptographic Issues 		CVE-2014-0351 2024-11-21 11:01 2014-09-11 Show GitHub Exploit DB Packet Storm
292256 - ovirt ovirt The REST API in oVirt 3.4.0 and earlier stores session IDs in HTML5 local storage, which allows remote attackers to obtain sensitive information via a crafted web page. CWE-200
Information Exposure 		CVE-2014-0153 2024-11-21 11:01 2014-09-8 Show GitHub Exploit DB Packet Storm
292257 - ovirt
redhat 		ovirt
ovirt-engine 		Session fixation vulnerability in the web admin interface in oVirt 3.4.0 and earlier allows remote attackers to hijack web sessions via unspecified vectors. NVD-CWE-Other
CVE-2014-0152 2024-11-21 11:01 2014-09-8 Show GitHub Exploit DB Packet Storm
292258 - apache ofbiz Multiple cross-site scripting (XSS) vulnerabilities in framework/common/webcommon/includes/messages.ftl in Apache OFBiz 11.04.01 before 11.04.05 and 12.04.01 before 12.04.04 allow remote attackers to… CWE-79
Cross-site Scripting 		CVE-2014-0232 2024-11-21 11:01 2014-08-22 Show GitHub Exploit DB Packet Storm
292259 - iridium open_port
pilot_below_deck_equipment 		The Terminal Upgrade Tool in the Pilot Below Deck Equipment (BDE) and OpenPort implementations on Iridium satellite terminals allows remote attackers to execute arbitrary code by uploading new firmwa… NVD-CWE-Other
CVE-2014-0327 2024-11-21 11:01 2014-08-18 Show GitHub Exploit DB Packet Storm
292260 - iridium open_port
pilot_below_deck_equipment 		The Pilot Below Deck Equipment (BDE) and OpenPort implementations on Iridium satellite terminals allow remote attackers to read hardcoded credentials via the web interface. NVD-CWE-Other
CVE-2014-0326 2024-11-21 11:01 2014-08-18 Show GitHub Exploit DB Packet Storm