Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201791 7.8 重要
Local 		Google - Android のカメラサービスの camera/src/camera_metadata.c における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3915 2016-10-14 16:58 2016-10-3 Show GitHub Exploit DB Packet Storm
201792 7.8 重要
Local 		Google - Android の Telephony の providers/telephony/MmsProvider.java における権限を取得される脆弱性 CWE-362
競合状態 		CVE-2016-3914 2016-10-14 16:58 2016-10-3 Show GitHub Exploit DB Packet Storm
201793 7.8 重要
Local 		Google - 複数の Nexus および Android One デバイス上で稼動する Android の Qualcomm サウンドドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-8951 2016-10-14 16:53 2015-12-23 Show GitHub Exploit DB Packet Storm
201794 5.5 警告
Local 		Linux - Android などの製品の ION サブシステムで使用される Linux Kernel における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-8950 2016-10-14 16:53 2015-05-13 Show GitHub Exploit DB Packet Storm
201795 7.8 重要
Local 		Google - Android のメディアサーバの media/libmediaplayerservice/MediaPlayerService.cpp における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3913 2016-10-14 16:51 2016-10-3 Show GitHub Exploit DB Packet Storm
201796 7.8 重要
Local 		Google - Android のフレームワーク API における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3912 2016-10-14 16:51 2016-10-3 Show GitHub Exploit DB Packet Storm
201797 7.8 重要
Local 		Google - Android の Zygote の core/java/android/os/Process.java における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3911 2016-10-14 16:51 2016-10-3 Show GitHub Exploit DB Packet Storm
201798 7.8 重要
Local 		Google - Android のメディアサーバの services/soundtrigger/SoundTriggerHwService.cpp における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3910 2016-10-14 16:51 2016-10-3 Show GitHub Exploit DB Packet Storm
201799 7.8 重要
Local 		Google - Android のメディアサーバの libstagefright の SoftMPEG4 コンポーネントにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3909 2016-10-14 16:51 2016-10-3 Show GitHub Exploit DB Packet Storm
201800 5.5 警告
Local 		Google - Android の LockSettings サービスにおけるデバイスの PIN またはパスワードを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3908 2016-10-14 16:51 2016-10-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290231 - redhat libvirt libvirt 1.1.0 and 1.1.1 allows local users to cause a denial of service (memory consumption) via a large number of domain migrate parameters in certain RPC calls in (1) daemon/remote.c and (2) remote… CWE-399
 Resource Management Errors 		CVE-2013-4292 2024-11-21 10:55 2013-10-1 Show GitHub Exploit DB Packet Storm
290232 - redhat libvirt The virSecurityManagerSetProcessLabel function in libvirt 0.10.2.7, 1.0.5.5, and 1.1.1, when the domain has read an uid:gid label, does not properly set group memberships, which allows local users to… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4291 2024-11-21 10:55 2013-10-1 Show GitHub Exploit DB Packet Storm
290233 - redhat libvirt The xenDaemonListDefinedDomains function in xen/xend_internal.c in libvirt 1.1.1 allows remote authenticated users to cause a denial of service (memory corruption and crash) via vectors involving the… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4239 2024-11-21 10:55 2013-10-1 Show GitHub Exploit DB Packet Storm
290234 - redhat jboss_a-mq
jboss_fuse 		Multiple cross-site scripting (XSS) vulnerabilities in Fuse Management Console in Red Hat JBoss Fuse 6.0.0 before patch 3 and JBoss A-MQ 6.0.0 before patch 3 allow remote attackers to inject arbitrar… CWE-79
Cross-site Scripting 		CVE-2013-4372 2024-11-21 10:55 2013-10-1 Show GitHub Exploit DB Packet Storm
290235 - proftpd proftpd Integer overflow in kbdint.c in mod_sftp in ProFTPD 1.3.4d and 1.3.5r3 allows remote attackers to cause a denial of service (memory consumption) via a large response count value in an authentication … CWE-189
Numeric Errors 		CVE-2013-4359 2024-11-21 10:55 2013-10-1 Show GitHub Exploit DB Packet Storm
290236 - littlecms little_cms_color_engine Multiple stack-based buffer overflows in LittleCMS (aka lcms or liblcms) 1.19 and earlier allow remote attackers to cause a denial of service (crash) via a crafted (1) ICC color profile to the icctra… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4276 2024-11-21 10:55 2013-09-29 Show GitHub Exploit DB Packet Storm
290237 - libtiff libtiff The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary co… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4244 2024-11-21 10:55 2013-09-29 Show GitHub Exploit DB Packet Storm
290238 - marketpress backwpup_plugin Cross-site scripting (XSS) vulnerability in the BackWPup plugin before 3.0.13 for WordPress allows remote attackers to inject arbitrary web script or HTML via the tab parameter to wp-admin/admin.php. CWE-79
Cross-site Scripting 		CVE-2013-4626 2024-11-21 10:55 2013-09-27 Show GitHub Exploit DB Packet Storm
290239 - linux linux_kernel The IPv6 SCTP implementation in net/sctp/ipv6.c in the Linux kernel through 3.11.1 uses data structures and function calls that do not trigger an intended configuration of IPsec encryption, which all… CWE-310
Cryptographic Issues 		CVE-2013-4350 2024-11-21 10:55 2013-09-25 Show GitHub Exploit DB Packet Storm
290240 - linux
canonical 		linux_kernel
ubuntu_linux 		Use-after-free vulnerability in drivers/net/tun.c in the Linux kernel through 3.11.1 allows local users to gain privileges by leveraging the CAP_NET_ADMIN capability and providing an invalid tuntap i… CWE-399
 Resource Management Errors 		CVE-2013-4343 2024-11-21 10:55 2013-09-25 Show GitHub Exploit DB Packet Storm