Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201841 7.8 重要
Local 		Xen プロジェクト - Xen における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-10013 2017-02-9 17:46 2016-12-19 Show GitHub Exploit DB Packet Storm
201842 5.5 警告
Local 		LibGD project - GD Graphics Library の gdImageCreate 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-9317 2017-02-9 17:23 2016-11-12 Show GitHub Exploit DB Packet Storm
201843 5.5 警告
Local 		LibGD project - GD Graphics Library の dynamicGetbuf 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-6911 2017-02-9 17:23 2016-08-2 Show GitHub Exploit DB Packet Storm
201844 7.5 重要
Network 		B.A.S - B.A.S C2Box におけるビジネスロジックを破損される脆弱性 CWE-189
数値処理の問題 		CVE-2015-4626 2017-02-9 16:58 2015-06-10 Show GitHub Exploit DB Packet Storm
201845 4.3 警告
Adjacent 		シスコシステムズ - Cisco Mobility Express 2800 および 3800 シリーズ Access Points におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-9221 2017-02-9 16:45 2016-11-6 Show GitHub Exploit DB Packet Storm
201846 4.3 警告
Adjacent 		シスコシステムズ - Cisco Mobility Express 2800 および 3800 シリーズ Access Points におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-9220 2017-02-9 16:45 2016-11-6 Show GitHub Exploit DB Packet Storm
201847 8.8 重要
Network 		シスコシステムズ - Cisco Hybrid Meeting Server におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-9218 2017-02-9 16:45 2016-11-6 Show GitHub Exploit DB Packet Storm
201848 5.3 警告
Network 		シスコシステムズ - Cisco ASR 5000 ソフトウェアの ipsecmgr プロセスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-9216 2017-02-9 16:45 2016-11-6 Show GitHub Exploit DB Packet Storm
201849 8.1 重要
Network 		Zabbix - Zabbix のエージェントの MySQL ユーザパラメータ設定スクリプトにおける任意のコードを実行される脆弱性 CWE-89
SQLインジェクション 		CVE-2016-4338 2017-02-9 15:33 2016-05-11 Show GitHub Exploit DB Packet Storm
201850 9.8 緊急
Network 		アバイア - Avaya Fabric Connect の Virtual Services Platform Operating System Software における非認証のアクセス権を取得される脆弱性 CWE-19
データ処理 		CVE-2016-2783 2017-02-9 15:33 2016-07-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292551 - ibm operational_decision_manager Cross-site request forgery (CSRF) vulnerability in the RES Console in Rule Execution Server in IBM Operational Decision Manager 7.5 before FP3 IF37, 8.0 before MP1 FP2, and 8.5 before MP1 IF26 allows… CWE-352
 Origin Validation Error 		CVE-2014-0944 2024-11-21 11:03 2014-05-9 Show GitHub Exploit DB Packet Storm
292552 - ibm lotus_inotes
lotus_domino 		Cross-site scripting (XSS) vulnerability in IBM iNotes and Domino 8.5.3 FP6 before IF2 and 9.0.1 before FP1 allows remote attackers to inject arbitrary web script or HTML via an e-mail message, aka S… CWE-79
Cross-site Scripting 		CVE-2014-0913 2024-11-21 11:03 2014-05-9 Show GitHub Exploit DB Packet Storm
292553 - ibm security_access_manager_for_web_appliance
security_access_manager_for_web_software 		The Reverse Proxy feature in IBM Global Security Kit (aka GSKit) in IBM Security Access Manager (ISAM) for Web 7.0 before 7.0.0-ISS-SAM-IF0006 and 8.0 before 8.0.0.3-ISS-WGA-IF0002 allows remote atta… CWE-399
 Resource Management Errors 		CVE-2014-0963 2024-11-21 11:03 2014-05-8 Show GitHub Exploit DB Packet Storm
292554 - ibm vios
aix 		The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service (system crash) or obtain sensitive information from kernel memory via a crafted PT… NVD-CWE-noinfo
CVE-2014-0930 2024-11-21 11:03 2014-05-8 Show GitHub Exploit DB Packet Storm
292555 - ibm websphere_mq inetd in IBM WebSphere MQ 7.1.x before 7.1.0.5 and 7.5.x before 7.5.0.4 allows remote attackers to cause a denial of service (disk or CPU consumption) via unspecified vectors. NVD-CWE-noinfo
CVE-2014-0911 2024-11-21 11:03 2014-05-7 Show GitHub Exploit DB Packet Storm
292556 - ibm tivoli_netcool\/omnibus Cross-site scripting (XSS) vulnerability in webtop/eventviewer/eventViewer.jsp in the Web GUI in IBM Netcool/OMNIbus 7.4.0 before FP2 allows remote authenticated users to inject arbitrary web script … CWE-79
Cross-site Scripting 		CVE-2014-0942 2024-11-21 11:03 2014-05-2 Show GitHub Exploit DB Packet Storm
292557 - ibm tivoli_netcool\/omnibus Cross-site scripting (XSS) vulnerability in webtop/eventviewer/eventViewer.jsp in the Web GUI in IBM Netcool/OMNIbus 7.4.0 before FP2 allows remote authenticated users to inject arbitrary web script … CWE-79
Cross-site Scripting 		CVE-2014-0941 2024-11-21 11:03 2014-05-2 Show GitHub Exploit DB Packet Storm
292558 - ibm websphere_application_server IBM WebSphere Application Server (WAS) Liberty Profile 8.5.x before 8.5.5.2 allows remote attackers to obtain sensitive information via a crafted request. CWE-200
Information Exposure 		CVE-2014-0896 2024-11-21 11:03 2014-05-2 Show GitHub Exploit DB Packet Storm
292559 - livetecs timeline Livetecs Timelive before 6.2.8 does not properly restrict access to systemsetting.aspx, which allows remote attackers to change configurations and obtain the database connection string and credential… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1217 2024-11-21 11:03 2014-04-28 Show GitHub Exploit DB Packet Storm
292560 - fitnesse fitnesse_wiki FitNesse Wiki 20131110, 20140201, and earlier allows remote attackers to execute arbitrary commands by defining a COMMAND_PATTERN and TEST_RUNNER in the pageContent parameter when editing a page. NVD-CWE-Other
CVE-2014-1216 2024-11-21 11:03 2014-04-22 Show GitHub Exploit DB Packet Storm