Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
202231	7.8	重要 Local	Google	-	Android のメディアサーバの libstagefright の omx/OMXNodeInstance.cpp における権限を取得される脆弱性	CWE-119 バッファエラー	CVE-2016-3824	2016-08-10 16:53	2016-08-1	Show	GitHub Exploit DB Packet Storm

202232	9.8	緊急 Network	Google	-	Android の libjhead で使用される Matthias Wandel jhead の exif.c における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-3822	2016-08-10 16:53	2016-08-1	Show	GitHub Exploit DB Packet Storm

202233	7.3	重要 Network	Google	-	Android のフレームワーク API におけるインテントフィルターのプライオリティを高くされる脆弱性	CWE-119 バッファエラー	CVE-2016-2497	2016-08-10 16:53	2016-08-1	Show	GitHub Exploit DB Packet Storm

202234	9.8	緊急 Network	Google	-	Nexus 7 (2013) デバイス上で稼動する Android の Qualcomm Wi-Fi ドライバにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-9902	2016-08-10 16:53	2016-08-1	Show	GitHub Exploit DB Packet Storm

202235	7.5	重要 Network	Google	-	Nexus 7 (2013) デバイス上で稼動する Android の Qualcomm Wi-Fi ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-9901	2016-08-10 16:53	2016-08-1	Show	GitHub Exploit DB Packet Storm

202236	9.8	緊急 Network	The PHP Group	-	PHP の ext/spl/spl_dllist.c の SplDoublyLinkedList::offsetSet 関数におけるメモリ二重解放の脆弱性	CWE-Other その他	CVE-2016-3132	2016-08-10 14:56	2016-04-28	Show	GitHub Exploit DB Packet Storm

202237	9.8	緊急 Network	The PHP Group	-	PHP の zip エクステンションの php_zip.c における整数オーバーフローの脆弱性	CWE-Other その他	CVE-2016-3078	2016-08-10 14:43	2016-04-28	Show	GitHub Exploit DB Packet Storm

202238	5.4	警告 Network	Apache Software Foundation	-	Apache ActiveMQ の管理 Web コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-0782	2016-08-10 14:25	2016-03-14	Show	GitHub Exploit DB Packet Storm

202239	5	警告	OpenSSL Project オラクル	-	OpenSSL の d1_pkt.c の dtls1_buffer_record 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2015-0206	2016-08-9 18:16	2015-01-7	Show	GitHub Exploit DB Packet Storm

202240	5	警告	アップル日本電気 OpenSSL Project ヒューレット・パッカードオラクル	-	OpenSSL における指紋ベースの認証ブラックリスト保護メカニズムを破られる脆弱性	CWE-310 暗号の問題	CVE-2014-8275	2016-08-9 18:15	2014-12-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290941	-	openvpn opensuse	openvpn openvpn_access_server opensuse	The openvpn_decrypt function in crypto.c in OpenVPN 2.3.0 and earlier, when running in UDP mode, allows remote attackers to obtain sensitive information via a timing attack involving an HMAC comparis…	CWE-200 Information Exposure	CVE-2013-2061	2024-11-21 10:50	2013-11-18	Show	GitHub Exploit DB Packet Storm

290942	-	mediawiki fedoraproject gentoo	mediawiki fedora linux	MediaWiki before 1.19.6 and 1.20.x before 1.20.5 does not allow extensions to prevent password changes without using both Special:PasswordReset and Special:ChangePassword, which allows remote attacke…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-2032	2024-11-21 10:50	2013-11-18	Show	GitHub Exploit DB Packet Storm

290943	-	gentoo mediawiki	linux mediawiki	MediaWiki before 1.19.6 and 1.20.x before 1.20.5 allows remote attackers to conduct cross-site scripting (XSS) attacks, as demonstrated by a CDATA section containing valid UTF-7 encoded sequences in …	CWE-79 Cross-site Scripting	CVE-2013-2031	2024-11-21 10:50	2013-11-18	Show	GitHub Exploit DB Packet Storm

290944	-	linux	linux_kernel	The host_start function in drivers/usb/chipidea/host.c in the Linux kernel before 3.7.4 does not properly support a certain non-streaming option, which allows local users to cause a denial of service…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-2058	2024-11-21 10:50	2013-11-5	Show	GitHub Exploit DB Packet Storm

290945	-	opensuse ruby-lang	opensuse ruby	(1) DL and (2) Fiddle in Ruby 1.9 before 1.9.3 patchlevel 426, and 2.0 before 2.0.0 patchlevel 195, do not perform taint checking for native functions, which allows context-dependent attackers to byp…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-2065	2024-11-21 10:50	2013-11-3	Show	GitHub Exploit DB Packet Storm

290946	-	mozilla	bugzilla	Multiple cross-site scripting (XSS) vulnerabilities in report.cgi in Bugzilla 4.1.x and 4.2.x before 4.2.7 and 4.3.x and 4.4.x before 4.4.1 allow remote attackers to inject arbitrary web script or HT…	CWE-79 Cross-site Scripting	CVE-2013-1743	2024-11-21 10:50	2013-10-24	Show	GitHub Exploit DB Packet Storm

290947	-	mozilla	bugzilla	Multiple cross-site scripting (XSS) vulnerabilities in editflagtypes.cgi in Bugzilla 2.x, 3.x, and 4.0.x before 4.0.11; 4.1.x and 4.2.x before 4.2.7; and 4.3.x and 4.4.x before 4.4.1 allow remote att…	CWE-79 Cross-site Scripting	CVE-2013-1742	2024-11-21 10:50	2013-10-24	Show	GitHub Exploit DB Packet Storm

290948	-	mozilla	bugzilla	Cross-site request forgery (CSRF) vulnerability in attachment.cgi in Bugzilla 2.x, 3.x, and 4.0.x before 4.0.11; 4.1.x and 4.2.x before 4.2.7; and 4.3.x and 4.4.x before 4.4.1 allows remote attackers…	CWE-352 Origin Validation Error	CVE-2013-1734	2024-11-21 10:50	2013-10-24	Show	GitHub Exploit DB Packet Storm

290949	-	mozilla	bugzilla	Cross-site request forgery (CSRF) vulnerability in process_bug.cgi in Bugzilla 4.4.x before 4.4.1 allows remote attackers to hijack the authentication of arbitrary users for requests that modify bugs…	CWE-352 Origin Validation Error	CVE-2013-1733	2024-11-21 10:50	2013-10-24	Show	GitHub Exploit DB Packet Storm

290950	-	mozilla	network_security_services	Mozilla Network Security Services (NSS) before 3.15.2 does not ensure that data structures are initialized before read operations, which allows remote attackers to cause a denial of service or possib…	NVD-CWE-noinfo	CVE-2013-1739	2024-11-21 10:50	2013-10-23	Show	GitHub Exploit DB Packet Storm