Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
202121	5	警告	ヒューレット・パッカード OpenSSL Project ヒューレット・パッカード・エンタープライズオラクル	-	OpenSSL の s3_srvr.c の ssl3_get_cert_verify 関数におけるアクセス権を取得される脆弱性	CWE-310 暗号の問題	CVE-2015-0205	2016-09-30 10:54	2015-01-8	Show	GitHub Exploit DB Packet Storm

202122	5.9	警告 Network	ヒューレット・パッカード Canonical Samba Project	-	Samba における SMB クライアントになりすまされる脆弱性	CWE-Other その他	CVE-2016-2115	2016-09-30 10:17	2016-04-12	Show	GitHub Exploit DB Packet Storm

202123	5.9	警告 Network	ヒューレット・パッカード Canonical Samba Project	-	Samba にバンドルされている LDAP クライアントライブラリにおける LDAP プロトコルダウングレード攻撃を実行される脆弱性	CWE-Other その他	CVE-2016-2112	2016-09-30 10:16	2016-04-12	Show	GitHub Exploit DB Packet Storm

202124	6.3	警告 Local	ヒューレット・パッカード Canonical Samba Project	-	Samba の NETLOGON サービスにおける安全なチャネルのエンドポイントのコンピュータ名を偽装される脆弱性	CWE-Other その他	CVE-2016-2111	2016-09-30 10:16	2016-04-12	Show	GitHub Exploit DB Packet Storm

202125	5.9	警告 Network	ヒューレット・パッカード Canonical Samba Project	-	Samba の NTLMSSP 認証の実装におけるプロトコルダウングレード攻撃を実行される脆弱性	CWE-Other その他	CVE-2016-2110	2016-09-30 10:16	2016-04-12	Show	GitHub Exploit DB Packet Storm

202126	5	警告	The PHP Group アップルレッドハット	-	PHP の main/rfc1867.c の multipart_buffer_headers 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2015-4024	2016-09-30 10:15	2015-05-14	Show	GitHub Exploit DB Packet Storm

202127	4.3	警告	Apache Software Foundation	-	Apache Commons HttpClient の http/conn/ssl/AbstractVerifier.java における SSL サーバになりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2012-6153	2016-09-30 09:57	2012-11-20	Show	GitHub Exploit DB Packet Storm

202128	5.8	警告	Apache Software Foundation	-	Apache HttpComponents HttpClient および HttpAsyncClient の org.apache.http.conn.ssl.AbstractVerifier における SSL サーバになりすまされる脆弱性	CWE-Other その他	CVE-2014-3577	2016-09-30 09:57	2014-08-18	Show	GitHub Exploit DB Packet Storm

202129	5	警告	Haxx オラクル	-	cURL および libcurl における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-3236	2016-09-30 09:49	2015-06-17	Show	GitHub Exploit DB Packet Storm

202130	3.1	低 Network	日立	-	Hitachi Automation Director および JP1/Automatic Operation における情報露出の脆弱性	CWE-noinfo 情報不足	-	2016-09-30 09:46	2016-08-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290021	-	ibm	system_x3500_m3 flex_system_x440_compute_node system_x3250_m4 system_x3550_m3 system_x3400_m2 bladecenter system_x3550_m2 system_x3750_m4 system_x3650_m2 system_x3200_m3	The RAKP protocol support in the Intelligent Platform Management Interface (IPMI) implementation in Integrated Management Module (IMM) and Integrated Management Module II (IMM2) on IBM BladeCenter, F…	NVD-CWE-noinfo	CVE-2013-4037	2024-11-21 10:54	2013-08-10	Show	GitHub Exploit DB Packet Storm

290022	-	ibm	system_x3500_m3 flex_system_x440_compute_node system_x3250_m4 system_x3550_m3 system_x3400_m2 bladecenter system_x3550_m2 system_x3750_m4 system_x3650_m2 system_x3200_m3	The Intelligent Platform Management Interface (IPMI) implementation in Integrated Management Module (IMM) and Integrated Management Module II (IMM2) on IBM BladeCenter, Flex System, System x iDataPle…	CWE-255 Credentials Management	CVE-2013-4031	2024-11-21 10:54	2013-08-10	Show	GitHub Exploit DB Packet Storm

290023	-	opensuse squid-cache	opensuse squid	Buffer overflow in the idnsALookup function in dns_internal.cc in Squid 3.2 through 3.2.11 and 3.3 through 3.3.6 allows remote attackers to cause a denial of service (memory corruption and server ter…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4115	2024-11-21 10:54	2013-08-10	Show	GitHub Exploit DB Packet Storm

290024	-	yard_radius_project	yard_radius	Multiple format string vulnerabilities in Yet Another Radius Daemon (YARD RADIUS) 1.1.2 allow context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via f…	CWE-134 Use of Externally-Controlled Format String	CVE-2013-4147	2024-11-21 10:54	2013-08-10	Show	GitHub Exploit DB Packet Storm

290025	-	ibm	lotus_domino	Cross-site scripting (XSS) vulnerability in the MIME e-mail functionality in iNotes in IBM Domino 9.0 before IF3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors…	CWE-79 Cross-site Scripting	CVE-2013-3990	2024-11-21 10:54	2013-08-10	Show	GitHub Exploit DB Packet Storm

290026	-	nttdocomo	overseas_usage	The NTT DOCOMO overseas usage application 2.0.0 through 2.0.4 for Android does not properly connect to Wi-Fi access points, which allows remote attackers to obtain sensitive information by leveraging…	CWE-287 Improper Authentication	CVE-2013-3659	2024-11-21 10:54	2013-08-10	Show	GitHub Exploit DB Packet Storm

290027	-	ibm	infosphere_biginsights	IBM InfoSphere BigInsights 1.1 through 2.1 does not properly handle FRAME elements, which makes it easier for remote authenticated users to conduct phishing attacks via a crafted web site.	CWE-20 Improper Input Validation	CVE-2013-3996	2024-11-21 10:54	2013-08-6	Show	GitHub Exploit DB Packet Storm

290028	-	ibm	infosphere_biginsights	Cross-site scripting (XSS) vulnerability in IBM InfoSphere BigInsights 1.1 through 2.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2013-3995	2024-11-21 10:54	2013-08-6	Show	GitHub Exploit DB Packet Storm

290029	-	ibm	infosphere_biginsights	Cross-site request forgery (CSRF) vulnerability in IBM InfoSphere BigInsights 2.0 through 2.1 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors.	CWE-352 Origin Validation Error	CVE-2013-3992	2024-11-21 10:54	2013-08-6	Show	GitHub Exploit DB Packet Storm

290030	-	canonical redhat fedoraproject samba opensuse	ubuntu_linux enterprise_linux fedora samba opensuse	Integer overflow in the read_nttrans_ea_list function in nttrans.c in smbd in Samba 3.x before 3.5.22, 3.6.x before 3.6.17, and 4.x before 4.0.8 allows remote attackers to cause a denial of service (…	CWE-189 Numeric Errors	CVE-2013-4124	2024-11-21 10:54	2013-08-6	Show	GitHub Exploit DB Packet Storm