Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
201941 6.1 警告
Network
Roundcube.net - Roundcube の rcube_utils.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2017-6820 2017-04-3 16:07 2017-03-10 Show GitHub Exploit DB Packet Storm
201942 9.8 緊急
Network
Sage CRM - SageCRM の Component Manager 機能におけるコンポーネントの追加を許可する脆弱性 CWE-254
セキュリティ機能
CVE-2017-5219 2017-04-3 15:22 2017-01-24 Show GitHub Exploit DB Packet Storm
201943 9.8 緊急
Network
bitlbee - bitlbee-libpurple におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2017-5668 2017-03-31 17:30 2017-01-30 Show GitHub Exploit DB Packet Storm
201944 7.5 重要
Network
bitlbee - BitlBee におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2016-10189 2017-03-31 17:30 2016-11-14 Show GitHub Exploit DB Packet Storm
201945 9.8 緊急
Network
bitlbee - bitlbee-libpurple におけるサービス運用妨害 (DoS) の脆弱性 CWE-416
解放済みメモリの使用
CVE-2016-10188 2017-03-31 17:30 2016-11-14 Show GitHub Exploit DB Packet Storm
201946 8.1 重要
Network
WP Technologies, Inc - WePresent WiPG-1500 デバイスのファームウェアにおけるハードコードされたアカウントでデバイスにログインされる脆弱性 CWE-798
ハードコードされた認証情報の使用
CVE-2017-6351 2017-03-31 17:29 2017-03-5 Show GitHub Exploit DB Packet Storm
201947 7.5 重要
Network
OP-TEE
Libtom
- OP-TEE で使用される LibTomCrypt の rsa_verify_hash.c における RSA 署名または公開証明書を偽造される脆弱性 CWE-20
不適切な入力確認
CVE-2016-6129 2017-03-31 17:24 2016-06-30 Show GitHub Exploit DB Packet Storm
201948 8.8 重要
Network
Puppet - Windows 上で稼動する mcollective-puppet-agent プラグインにおけるファイルを作成される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2017-2290 2017-03-31 17:22 2017-03-1 Show GitHub Exploit DB Packet Storm
201949 5.5 警告
Local
Wavpack project - Wavpack の open_utils.c の read_new_config_info 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り
CVE-2016-10172 2017-03-31 17:16 2016-12-22 Show GitHub Exploit DB Packet Storm
201950 5.5 警告
Local
Wavpack project - Wavpack の cli/wvunpack.c の unreorder_channels 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り
CVE-2016-10171 2017-03-31 17:16 2016-12-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289141 - google chrome The SimplifiedLowering::DoLoadBuffer function in compiler/simplified-lowering.cc in Google V8, as used in Google Chrome before 40.0.2214.91, does not properly choose an integer data type, which allow… CWE-189
Numeric Errors
CVE-2014-7927 2024-11-21 11:18 2015-01-23 Show GitHub Exploit DB Packet Storm
289142 - google chrome Use-after-free vulnerability in the WebAudio implementation in Blink, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified o… NVD-CWE-Other
CVE-2014-7925 2024-11-21 11:18 2015-01-23 Show GitHub Exploit DB Packet Storm
289143 - redhat
opensuse
google
oracle
icu-project
canonical
enterprise_linux_desktop_supplementary
enterprise_linux_server_supplementary
enterprise_linux_workstation_supplementary
enterprise_linux_server_supplementary_eus
opensuse
chrome
com…
The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of… CWE-17
Code
CVE-2014-7926 2024-11-21 11:18 2015-01-23 Show GitHub Exploit DB Packet Storm
289144 - google chrome Use-after-free vulnerability in the IndexedDB implementation in Google Chrome before 40.0.2214.91 allows remote attackers to cause a denial of service or possibly have unspecified other impact by tri… NVD-CWE-Other
CVE-2014-7924 2024-11-21 11:18 2015-01-23 Show GitHub Exploit DB Packet Storm
289145 - redhat
opensuse
icu-project
oracle
canonical
google
enterprise_linux_desktop_supplementary
enterprise_linux_server_supplementary
enterprise_linux_workstation_supplementary
enterprise_linux_server_supplementary_eus
opensuse
international…
The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of… CWE-17
Code
CVE-2014-7923 2024-11-21 11:18 2015-01-23 Show GitHub Exploit DB Packet Storm
289146 - cisco unified_communications_manager Absolute path traversal vulnerability in the Real-Time Monitoring Tool (RTMT) API in Cisco Unified Communications Manager (CUCM) allows remote authenticated users to read arbitrary files via a full p… CWE-200
Information Exposure
CVE-2014-8008 2024-11-21 11:18 2015-01-22 Show GitHub Exploit DB Packet Storm
289147 - apache santuario_xml_security_for_java Apache Santuario XML Security for Java 2.0.x before 2.0.3 allows remote attackers to bypass the streaming XML signature protection mechanism via a crafted XML document. CWE-254
 7PK - Security Features
CVE-2014-8152 2024-11-21 11:18 2015-01-22 Show GitHub Exploit DB Packet Storm
289148 - samba samba Samba 4.0.x before 4.0.24, 4.1.x before 4.1.16, and 4.2.x before 4.2rc4, when an Active Directory Domain Controller (AD DC) is configured, allows remote authenticated users to set the LDB userAccount… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-8143 2024-11-21 11:18 2015-01-17 Show GitHub Exploit DB Packet Storm
289149 - redhat cloudforms_3.1_management_engine SQL injection vulnerability in Red Hat CloudForms 3.1 Management Engine (CFME) 5.3 allows remote authenticated users to execute arbitrary SQL commands via a crafted REST API request to an SQL filter. CWE-89
SQL Injection
CVE-2014-7814 2024-11-21 11:18 2015-01-17 Show GitHub Exploit DB Packet Storm
289150 - cisco webex_meetings_server Cisco WebEx Meetings Server 1.5 presents the same CAPTCHA challenge for each login attempt, which makes it easier for remote attackers to obtain access via a brute-force approach of guessing username… CWE-255
Credentials Management
CVE-2014-8034 2024-11-21 11:18 2015-01-16 Show GitHub Exploit DB Packet Storm