Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201771	7.8	重要 Local	Linux	-	Linux Kernel の fs/ext4/ext4_jbd2.c の __ext4_journal_stop 関数における権限を取得される脆弱性	CWE-Other その他	CVE-2015-8961	2016-11-17 14:31	2015-12-14	Show	GitHub Exploit DB Packet Storm

201772	7.8	重要 Local	xmlsoft.org	-	XMLSec などの製品で使用される libxml2 における XML 外部エンティティの脆弱性	CWE-Other その他	CVE-2016-9318	2016-11-17 13:46	2016-10-11	Show	GitHub Exploit DB Packet Storm

201773	5.5	警告 Local	SUSE レッドハット Linux オラクル	-	Linux Kernel の security/keys/key.c の key_reject_and_link 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-4470	2016-11-16 18:14	2016-06-16	Show	GitHub Exploit DB Packet Storm

201774	7.1	重要 Local	アップル Debian Canonical xmlsoft.org	-	libxml2 の parser.c の xmlStringLenDecodeEntities 関数における XML 外部エンティティの脆弱性	CWE-20 不適切な入力確認	CVE-2016-4449	2016-11-16 18:14	2016-05-23	Show	GitHub Exploit DB Packet Storm

201775	9.8	緊急 Network	xmlsoft.org IBM Slackware アップル openSUSE project Mageia.Org オラクル SUSE レッドハット	-	libxml2 におけるフォーマットストリングの脆弱性	CWE-noinfo 情報不足	CVE-2016-4448	2016-11-16 18:13	2016-05-23	Show	GitHub Exploit DB Packet Storm

201776	7.8	重要 Local	Linux	-	Linux Kernel の InfiniBand スタックにおけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-4565	2016-11-16 18:13	2016-05-4	Show	GitHub Exploit DB Packet Storm

201777	8.4	重要 Local	Xen プロジェクトオラクル	-	Xen の arch/x86/mm/guest_walk.c の guest_walk_tables 関数における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-4480	2016-11-16 18:12	2016-05-17	Show	GitHub Exploit DB Packet Storm

201778	6.7	警告 Local	Xen プロジェクトオラクル	-	Xen の libxl デバイスハンドリングにおけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-4962	2016-11-16 18:12	2015-06-2	Show	GitHub Exploit DB Packet Storm

201779	6.1	警告 Network	Python Software Foundation	-	CPython の urllib2 および urllib における CRLF インジェクションの脆弱性	CWE-Other その他	CVE-2016-5699	2016-11-16 17:21	2016-06-15	Show	GitHub Exploit DB Packet Storm

201780	9.8	緊急 Network	Python Software Foundation	-	CPython の zipimport.c の get_data 関数における整数オーバーフローの脆弱性	CWE-Other その他	CVE-2016-5636	2016-11-16 17:21	2016-06-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
354361	-	apple	darwin_streaming_server	Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to obtain the source code for scripts by appending encoded space (%20) or . (%2e) characters to an HTTP request for the…	NVD-CWE-Other	CVE-2003-0424	2008-09-11 04:18	2003-08-27	Show	GitHub Exploit DB Packet Storm

354362	-	apple	darwin_streaming_server	Directory traversal vulnerability in Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to read arbitrary files via a ... (triple dot) in an HTTP request.	NVD-CWE-Other	CVE-2003-0425	2008-09-11 04:18	2003-08-27	Show	GitHub Exploit DB Packet Storm

354363	-	apc	apcupsd	Multiple buffer overflows in apcupsd before 3.8.6, and 3.10.x before 3.10.5, may allow attackers to cause a denial of service or execute arbitrary code, related to usage of the vsprintf function.	NVD-CWE-Other	CVE-2003-0099	2008-09-11 04:17	2003-03-3	Show	GitHub Exploit DB Packet Storm

354364	-	jmcce mandrakesoft	jmcce mandrake_linux	jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names, which allows local users to overwrite arbitrary files via a symlink attack.	NVD-CWE-Other	CVE-2002-2001	2008-09-11 04:16	2002-12-31	Show	GitHub Exploit DB Packet Storm

354365	-	qnx	rtos	Multiple buffer overflows in realtime operating system (RTOS) 6.1.0 allows local users to execute arbitrary code via (1) a long ABLANG environment variable in phlocale or (2) a long -u option to pkg-…	NVD-CWE-Other	CVE-2002-2041	2008-09-11 04:16	2002-12-31	Show	GitHub Exploit DB Packet Storm

354366	-	mozilla netscape	mozilla navigator	Heap-based buffer overflow in Netscape 6.2.3 and Mozilla 1.0 and earlier allows remote attackers to crash client browsers and execute arbitrary code via a PNG image with large width and height values…	NVD-CWE-Other	CVE-2002-2061	2008-09-11 04:16	2002-12-31	Show	GitHub Exploit DB Packet Storm

354367	-	bea	weblogic_server	BEA WebLogic Server and Express 7.0 and 7.0.0.1, when running Servlets and Enterprise JavaBeans (EJB) on more than one server, will remove the security constraints and roles on all servers for any Se…	NVD-CWE-Other	CVE-2002-2141	2008-09-11 04:16	2002-12-31	Show	GitHub Exploit DB Packet Storm

354368	-	bea	weblogic_integration weblogic_server	An undocumented extension for the Servlet mappings in the Servlet 2.3 specification, when upgrading to WebLogic Server and Express 7.0 Service Pack 1 from BEA WebLogic Server and Express 6.0 through …	NVD-CWE-Other	CVE-2002-2142	2008-09-11 04:16	2002-12-31	Show	GitHub Exploit DB Packet Storm

354369	-	andrey_cherezov	acweb	Cross-site scripting (XSS) vulnerability in acWEB 1.8 and 1.14 allows remote attackers to insert arbitrary HTML and web script via a URL, possibly via a "%db" request in a URL.	NVD-CWE-Other	CVE-2002-2171	2008-09-11 04:16	2002-12-31	Show	GitHub Exploit DB Packet Storm

354370	-	bea	weblogic_server	BEA WebLogic Server and Express 6.1 through 7.0.0.1 buffers HTTP requests in a way that can cause BEA to send the same response for two different HTTP requests, which could allow remote attackers to …	NVD-CWE-Other	CVE-2002-2177	2008-09-11 04:16	2002-12-31	Show	GitHub Exploit DB Packet Storm