Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201931 7.5 重要
Network 		Linux - Linux Kernel の IP スタックにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-7039 2016-10-25 11:49 2016-10-10 Show GitHub Exploit DB Packet Storm
201932 6.3 警告
Local 		オラクル - Oracle Fusion Middleware の Oracle WebLogic Server における CIE Related Components に関する脆弱性 CWE-Other
その他 		CVE-2016-5601 2016-10-25 09:44 2016-10-18 Show GitHub Exploit DB Packet Storm
201933 7.5 重要
Network 		ISC, Inc. - ISC BIND 9 にサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-2848 2016-10-24 18:20 2016-10-21 Show GitHub Exploit DB Packet Storm
201934 4.3 警告
Network 		株式会社アイ・オー・データ機器 - アイ・オー・データ製の複数のレコーディングハードディスクにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-4845 2016-10-24 18:06 2016-08-8 Show GitHub Exploit DB Packet Storm
201935 7.8 重要
Local 		Apache Software Foundation - 複数の Red Hat 製品の Tomcat パッケージにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-6325 2016-10-24 17:12 2016-10-10 Show GitHub Exploit DB Packet Storm
201936 8.4 重要
Local 		Synology Inc. - Synology 製の複数の NAS サーバに機器共通の認証情報が設定されている問題 CWE-255
証明書・パスワード管理 		CVE-2016-6554 2016-10-24 16:58 2016-10-20 Show GitHub Exploit DB Packet Storm
201937 8.1 重要
Network 		NUUO INC. - NUUO Titan NVR NT-4040 に機器共通の認証情報が設定されている問題 CWE-255
証明書・パスワード管理 		CVE-2016-6553 2016-10-24 16:58 2016-10-20 Show GitHub Exploit DB Packet Storm
201938 8.1 重要
Network 		Green Packet - Green Packet DX-350 に機器共通の認証情報が設定されている問題 CWE-255
証明書・パスワード管理 		CVE-2016-6552 2016-10-24 16:58 2016-10-20 Show GitHub Exploit DB Packet Storm
201939 5.6 警告
Network 		Intellian Technologies, Inc. - Intellian Satellite TV および Satellite Communications に機器共通の認証情報が設定されている問題 CWE-255
証明書・パスワード管理 		CVE-2016-6551 2016-10-24 16:58 2016-10-20 Show GitHub Exploit DB Packet Storm
201940 6.5 警告
Network 		SAP - SAP SAPCRYPTOLIB の DSA アルゴリズムの実装における任意のユーザになりすまされる脆弱性 CWE-Other
その他 		CVE-2016-4407 2016-10-20 18:13 2016-09-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289781 - brocade vyatta_vrouter_software
vyatta_vrouter 		The OSPF implementation on the Brocade Vyatta vRouter with software before 6.6R1 does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before p… NVD-CWE-Other
CVE-2013-7307 2024-11-21 11:00 2014-01-24 Show GitHub Exploit DB Packet Storm
289782 - brocade icx
vyatta
mlx
bigiron_rx
netiron_ces
netiron_xmr
netiron_cer
vdx
adx
fastiron
turboiron 		The OSPF implementation on Brocade routers does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA databa… CWE-20
 Improper Input Validation  		CVE-2013-7306 2024-11-21 11:00 2014-01-24 Show GitHub Exploit DB Packet Storm
289783 - e107 e107 fpw.php in e107 through 1.0.4 does not check the user_ban field, which makes it easier for remote attackers to reset passwords by sending a pwsubmit request and leveraging access to the e-mail accoun… CWE-255
Credentials Management 		CVE-2013-7305 2024-11-21 11:00 2014-01-23 Show GitHub Exploit DB Packet Storm
289784 - checkpoint endpoint_security_mi_server_r73 Check Point Endpoint Security MI Server through R73 3.0.0 HFA2.5 does not configure X.509 certificate validation for client devices, which allows man-in-the-middle attackers to spoof SSL servers by p… CWE-310
Cryptographic Issues 		CVE-2013-7304 2024-11-21 11:00 2014-01-23 Show GitHub Exploit DB Packet Storm
289785 - 2glux com_sexypolling SQL injection vulnerability in vote.php in the 2Glux Sexy Polling (com_sexypolling) component before 1.0.9 for Joomla! allows remote attackers to execute arbitrary SQL commands via the answer_id[] pa… CWE-89
SQL Injection 		CVE-2013-7219 2024-11-21 11:00 2014-01-22 Show GitHub Exploit DB Packet Storm
289786 - typo3 typo3 Cross-site scripting (XSS) vulnerability in the errorAction method in the ActionController base class in the Extbase Framework in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.1… CWE-79
Cross-site Scripting 		CVE-2013-7078 2024-11-21 11:00 2014-01-20 Show GitHub Exploit DB Packet Storm
289787 - torproject tor Tor before 0.2.4.20, when OpenSSL 1.x is used in conjunction with a certain HardwareAccel setting on Intel Sandy Bridge and Ivy Bridge platforms, does not properly generate random numbers for (1) rel… CWE-310
Cryptographic Issues 		CVE-2013-7295 2024-11-21 11:00 2014-01-18 Show GitHub Exploit DB Packet Storm
289788 - get-simple getsimple_cms Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS 3.1.2 and 3.2.3 allow remote attackers to inject arbitrary web script or HTML via the (1) post-menu field to edit.php or (2) Displ… CWE-79
Cross-site Scripting 		CVE-2013-7243 2024-11-21 11:00 2014-01-18 Show GitHub Exploit DB Packet Storm
289789 - conceptronic cipcamptiwl_1.0_firmware
cipcamptiwl 		Cross-site request forgery (CSRF) vulnerability in set_users.cgi in Conceptronic CIPCAMPTIWL Camera 1.0 with firmware 21.37.2.49 allows remote attackers to hijack the authentication of administrators… CWE-352
 Origin Validation Error 		CVE-2013-7204 2024-11-21 11:00 2014-01-18 Show GitHub Exploit DB Packet Storm
289790 - libreswan libreswan The ikev2parent_inI1outR1 function in pluto/ikev2_parent.c in libreswan before 3.7 allows remote attackers to cause a denial of service (restart) via an IKEv2 I1 notification without a KE payload. CWE-20
 Improper Input Validation  		CVE-2013-7294 2024-11-21 11:00 2014-01-16 Show GitHub Exploit DB Packet Storm