Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201821 7.7 重要
Network 		オラクル - Oracle Hospitality Applications の Oracle Hospitality OPERA 5 Property Services における OPERA Xchange Interface (OXI) に関する脆弱性 CWE-200
CWE-Other
CVE-2016-5565 2016-10-27 11:45 2016-10-18 Show GitHub Exploit DB Packet Storm
201822 7.4 重要
Network 		オラクル - Oracle Hospitality Applications の Oracle Hospitality OPERA 5 Property Services における OPERA Application Login に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-5564 2016-10-27 11:44 2016-10-18 Show GitHub Exploit DB Packet Storm
201823 7.9 重要
Network 		オラクル - Oracle Hospitality Applications の Oracle Hospitality OPERA 5 Property Services における OPERA File Upload Download に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-5563 2016-10-27 11:44 2016-10-18 Show GitHub Exploit DB Packet Storm
201824 7.3 重要
Physics 		オラクル - Oracle Retail Applications の Oracle Retail Xstore Payment における Security に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-5539 2016-10-27 11:44 2016-10-18 Show GitHub Exploit DB Packet Storm
201825 3.3
Local 		オラクル - Oracle Database Server の RDBMS Security における脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-5499 2016-10-27 11:43 2016-10-18 Show GitHub Exploit DB Packet Storm
201826 4.4 警告
Network 		オラクル - Oracle MySQL の MySQL Server における Server: Performance Schema に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-8290 2016-10-27 11:25 2016-10-18 Show GitHub Exploit DB Packet Storm
201827 4.7 警告
Local 		オラクル - Oracle MySQL の MySQL Server における Server: InnoDB に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-8289 2016-10-27 11:25 2016-10-18 Show GitHub Exploit DB Packet Storm
201828 3.1
Network 		オラクル - Oracle MySQL の MySQL Server における Server: InnoDB Plugin に関する脆弱性 CWE-Other
その他 		CVE-2016-8288 2016-10-27 11:25 2016-10-18 Show GitHub Exploit DB Packet Storm
201829 4.5 警告
Network 		オラクル - Oracle MySQL の MySQL Server における Server: Replication に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-8287 2016-10-27 11:25 2016-10-18 Show GitHub Exploit DB Packet Storm
201830 3.1
Network 		オラクル - Oracle MySQL の MySQL Server における Server: Security: Privileges に関する脆弱性 CWE-200
情報漏えい 		CVE-2016-8286 2016-10-27 11:25 2016-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289881 - openstack compute The instance rescue mode in OpenStack Compute (Nova) 2013.2 before 2013.2.3 and Icehouse before 2014.1, when using libvirt to spawn images and use_cow_images is set to false, allows remote authentica… CWE-200
Information Exposure 		CVE-2014-0134 2024-11-21 11:01 2014-05-8 Show GitHub Exploit DB Packet Storm
289882 - apache cxf Apache CXF before 2.6.14 and 2.7.x before 2.7.11 allows remote attackers to cause a denial of service (/tmp disk consumption) via a large invalid SOAP message. CWE-399
 Resource Management Errors 		CVE-2014-0110 2024-11-21 11:01 2014-05-8 Show GitHub Exploit DB Packet Storm
289883 - apache cxf Apache CXF before 2.6.14 and 2.7.x before 2.7.11 allows remote attackers to cause a denial of service (memory consumption) via a large request with the Content-Type set to text/html to a SOAP endpoin… CWE-399
 Resource Management Errors 		CVE-2014-0109 2024-11-21 11:01 2014-05-8 Show GitHub Exploit DB Packet Storm
289884 - theforeman foreman Session fixation vulnerability in Foreman before 1.4.2 allows remote attackers to hijack web sessions via the session id cookie. CWE-287
Improper Authentication 		CVE-2014-0090 2024-11-21 11:01 2014-05-8 Show GitHub Exploit DB Packet Storm
289885 - openstack
canonical 		neutron
ubuntu_linux 		The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers of arbitrary tenants … CWE-287
Improper Authentication 		CVE-2014-0056 2024-11-21 11:01 2014-05-8 Show GitHub Exploit DB Packet Storm
289886 - google search_appliance_software Cross-site scripting (XSS) vulnerability on Google Search Appliance (GSA) devices before 7.0.14.G.216 and 7.2 before 7.2.0.G.114, when dynamic navigation is configured, allows remote attackers to inj… CWE-79
Cross-site Scripting 		CVE-2014-0362 2024-11-21 11:01 2014-05-8 Show GitHub Exploit DB Packet Storm
289887 - apache struts CookieInterceptor in Apache Struts 2.x before 2.3.20, when a wildcard cookiesName value is used, does not properly restrict access to the getClass method, which allows remote attackers to "manipulate… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0116 2024-11-21 11:01 2014-05-8 Show GitHub Exploit DB Packet Storm
289888 - netty netty WebSocket08FrameDecoder in Netty 3.6.x before 3.6.9, 3.7.x before 3.7.1, 3.8.x before 3.8.2, 3.9.x before 3.9.1, and 4.0.x before 4.0.19 allows remote attackers to cause a denial of service (memory c… CWE-399
 Resource Management Errors 		CVE-2014-0193 2024-11-21 11:01 2014-05-6 Show GitHub Exploit DB Packet Storm
289889 - openssl
mariadb
fedoraproject
debian
opensuse
suse 		openssl
mariadb
fedora
debian_linux
opensuse
linux_enterprise_server
linux_enterprise_software_development_kit
linux_enterprise_desktop
linux_enterprise_workstation_extension 		The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows … CWE-476
 NULL Pointer Dereference 		CVE-2014-0198 2024-11-21 11:01 2014-05-6 Show GitHub Exploit DB Packet Storm
289890 - php php sapi/fpm/fpm/fpm_unix.c in the FastCGI Process Manager (FPM) in PHP before 5.4.28 and 5.5.x before 5.5.12 uses 0666 permissions for the UNIX socket, which allows local users to gain privileges via a … CWE-269
 Improper Privilege Management 		CVE-2014-0185 2024-11-21 11:01 2014-05-6 Show GitHub Exploit DB Packet Storm