Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201891 6.8 警告
Network 		IBM - IBM Security Privileged Identity Manager 仮想アプライアンスで使用される WAS Liberty におけるユーザを任意の Web サイトにリダイレクトされる脆弱性 CWE-Other
その他 		CVE-2016-3040 2016-10-3 16:56 2016-08-19 Show GitHub Exploit DB Packet Storm
201892 5.7 警告
Network 		IBM - IBM Spectrum Control におけるクリックジャッキング攻撃を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-5947 2016-10-3 16:37 2016-09-8 Show GitHub Exploit DB Packet Storm
201893 6.5 警告
Network 		IBM - IBM Spectrum Control におけるディレクトリトラバーサルの脆弱性 CWE-200
情報漏えい 		CVE-2016-5946 2016-10-3 16:37 2016-09-8 Show GitHub Exploit DB Packet Storm
201894 4.3 警告
Network 		IBM - IBM Spectrum Control における実行不可能なファイルをアップロードされる脆弱性 CWE-Other
その他 		CVE-2016-5945 2016-10-3 16:37 2016-09-8 Show GitHub Exploit DB Packet Storm
201895 5.4 警告
Network 		IBM - IBM Spectrum Control の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-5944 2016-10-3 16:37 2016-09-8 Show GitHub Exploit DB Packet Storm
201896 5.4 警告
Network 		IBM - IBM Spectrum Control におけるアクセス制限を回避される脆弱性 CWE-Other
その他 		CVE-2016-5943 2016-10-3 16:37 2016-09-8 Show GitHub Exploit DB Packet Storm
201897 7.5 重要
Network 		GNU Project - GnuTLS の lib/x509/ocsp.c の gnutls_ocsp_resp_check_crt 関数における証明書検証メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-7444 2016-10-3 16:28 2016-08-28 Show GitHub Exploit DB Packet Storm
201898 8.1 重要
Network 		GNU Project - wget におけるアクセスリストの制限を回避される脆弱性 CWE-362
競合状態 		CVE-2016-7098 2016-10-3 16:28 2016-08-24 Show GitHub Exploit DB Packet Storm
201899 7.5 重要
Network 		Debian
Irssi
Canonical		 - Irssi のフォーマット構文解析コードの format_send_to_gui 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-7045 2016-10-3 10:31 2016-09-21 Show GitHub Exploit DB Packet Storm
201900 7.5 重要
Network 		Debian
Irssi
Canonical		 - Irssi のフォーマット構文解析コードの unformat_24bit_color 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-7044 2016-10-3 10:31 2016-09-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290431 - cisco ios The default configuration of the Group Encrypted Transport VPN (GET VPN) feature on Cisco IOS uses an improper mechanism for enabling Group Domain of Interpretation (GDOI) traffic flow, which allows … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3436 2024-11-21 10:53 2013-07-19 Show GitHub Exploit DB Packet Storm
290432 - emc avamar_server
avamar_server_virtual_edition 		EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly restrict use of FRAME elements, which makes it easier for remote attackers to obt… CWE-20
 Improper Input Validation  		CVE-2013-3275 2024-11-21 10:53 2013-07-19 Show GitHub Exploit DB Packet Storm
290433 - emc avamar_server
avamar_server_virtual_edition 		EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly determine authorization for calls to Java RMI methods, which allows remote authen… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3274 2024-11-21 10:53 2013-07-19 Show GitHub Exploit DB Packet Storm
290434 - cisco unified_ip_phones_9900_series_firmware
unified_ip_phone_9951
unified_ip_phone_9971 		The Serviceability servlet on Cisco 9900 IP phones does not properly restrict paths, which allows remote attackers to read arbitrary files by specifying a pathname in a file request, aka Bug ID CSCuh… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3426 2024-11-21 10:53 2013-07-18 Show GitHub Exploit DB Packet Storm
290435 - cisco identity_services_engine_software
identity_services_engine 		Cross-site request forgery (CSRF) vulnerability in the web framework on the Cisco Identity Services Engine (ISE) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CS… CWE-352
 Origin Validation Error 		CVE-2013-3420 2024-11-21 10:53 2013-07-18 Show GitHub Exploit DB Packet Storm
290436 - cisco unified_communications_manager Untrusted search path vulnerability in Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(1a) allows local users to gain privileges by leveraging unspecified file-permission and environme… NVD-CWE-Other
CVE-2013-3434 2024-11-21 10:53 2013-07-18 Show GitHub Exploit DB Packet Storm
290437 - cisco unified_communications_manager Untrusted search path vulnerability in Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(1a) allows local users to gain privileges by leveraging unspecified file-permission and environme… NVD-CWE-Other
CVE-2013-3433 2024-11-21 10:53 2013-07-18 Show GitHub Exploit DB Packet Storm
290438 - cisco unified_communications_manager SQL injection vulnerability in Cisco Unified Communications Manager (CUCM) 7.1(x) through 9.1(2) allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug I… CWE-89
SQL Injection 		CVE-2013-3412 2024-11-21 10:53 2013-07-18 Show GitHub Exploit DB Packet Storm
290439 - cisco intrusion_prevention_system
idsm-2 		The IDSM-2 drivers in Cisco Intrusion Prevention System (IPS) Software on Cisco Catalyst 6500 devices with an IDSM-2 module allow remote attackers to cause a denial of service (device hang) via malfo… NVD-CWE-noinfo
CVE-2013-3411 2024-11-21 10:53 2013-07-18 Show GitHub Exploit DB Packet Storm
290440 - cisco intrusion_prevention_system
ips_nme 		Cisco Intrusion Prevention System (IPS) Software on IPS NME devices before 7.0(9)E4 allows remote attackers to cause a denial of service (device reload) via malformed IPv4 packets that trigger incorr… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3410 2024-11-21 10:53 2013-07-18 Show GitHub Exploit DB Packet Storm