Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202251 7.8 重要
Local 		Google - Nexus 5X および 6P デバイス上で稼動する Android の Qualcomm のパワードライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3868 2016-09-14 17:41 2016-09-6 Show GitHub Exploit DB Packet Storm
202252 7.8 重要
Local 		Google - Android の MediaMuxer におけるスタックベースのバッファオーバーフローの脆弱性 CWE-Other
その他 		CVE-2016-3863 2016-09-14 17:41 2016-09-6 Show GitHub Exploit DB Packet Storm
202253 7.8 重要
Local 		Google - 複数の Nexus デバイス上で稼動する Android の Qualcomm カメラドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3859 2016-09-14 17:41 2016-09-6 Show GitHub Exploit DB Packet Storm
202254 5.5 警告
Local 		Google - Android のメディアサーバの libstagefright の OMXCodec.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-3899 2016-09-14 16:46 2016-09-6 Show GitHub Exploit DB Packet Storm
202255 6.8 警告
Physics 		Google - Android における Factory Reset Protection 保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3889 2016-09-14 16:46 2016-09-6 Show GitHub Exploit DB Packet Storm
202256 2.1
Physics 		Google - Android の internal/telephony/SMSDispatcher.java における Factory Reset Protection 保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3888 2016-09-14 16:46 2016-09-6 Show GitHub Exploit DB Packet Storm
202257 7.8 重要
Local 		Google - Android の providers/settings/SettingsProvider.java における VPN の常時接続状態を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3887 2016-09-14 16:46 2016-09-6 Show GitHub Exploit DB Packet Storm
202258 6.8 警告
Physics 		Google - Android の System UI Tuner の systemui/statusbar/phone/QuickStatusBarHeader.java における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3886 2016-09-14 16:46 2016-09-6 Show GitHub Exploit DB Packet Storm
202259 5.5 警告
Local 		Google - Android の Notification Manager Service におけるメソッドの呼び出しの制限を回避される脆弱性 CWE-Other
その他 		CVE-2016-3884 2016-09-14 16:46 2016-09-6 Show GitHub Exploit DB Packet Storm
202260 5.5 警告
Local 		Google - Android のメディアサーバの libvpx の vp9/vp9_dx_iface.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-3881 2016-09-14 16:46 2016-09-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290011 - ibm db2_connect
db2 		IBM DB2 and DB2 Connect 9.7 through FP8, 9.8 through FP5, 10.1 through FP2, and 10.5 through FP1 allow remote authenticated users to execute DML statements by leveraging EXPLAIN authority. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4033 2024-11-21 10:54 2013-08-28 Show GitHub Exploit DB Packet Storm
290012 - ibm websphere_application_server Cross-site scripting (XSS) vulnerability in the Administrative console in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.47, 7.0 before 7.0.0.31, 8.0 before 8.0.0.7, and 8.5 before 8.5.5.1 a… CWE-79
Cross-site Scripting 		CVE-2013-4005 2024-11-21 10:54 2013-08-22 Show GitHub Exploit DB Packet Storm
290013 - ibm websphere_application_server Cross-site scripting (XSS) vulnerability in the Administrative console in IBM WebSphere Application Server (WAS) 8.0 before 8.0.0.7 and 8.5 before 8.5.5.1 allows remote authenticated users to inject … CWE-79
Cross-site Scripting 		CVE-2013-4004 2024-11-21 10:54 2013-08-22 Show GitHub Exploit DB Packet Storm
290014 - openstack swift
havana
grizzly
folsom 		OpenStack Swift before 1.9.1 in Folsom, Grizzly, and Havana allows authenticated users to cause a denial of service ("superfluous" tombstone consumption and Swift cluster slowdown) via a DELETE reque… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4155 2024-11-21 10:54 2013-08-21 Show GitHub Exploit DB Packet Storm
290015 - spice_project
canonical 		spice
ubuntu_linux 		The (1) red_channel_pipes_add_type and (2) red_channel_pipes_add_empty_msg functions in server/red_channel.c in SPICE before 0.12.4 do not properly perform ring loops, which might allow remote attack… CWE-399
 Resource Management Errors 		CVE-2013-4130 2024-11-21 10:54 2013-08-21 Show GitHub Exploit DB Packet Storm
290016 - ruby-lang ruby The OpenSSL::SSL.verify_certificate_identity function in lib/openssl/ssl.rb in Ruby 1.8 before 1.8.7-p374, 1.9 before 1.9.3-p448, and 2.0 before 2.0.0-p247 does not properly handle a '\0' character i… CWE-310
Cryptographic Issues 		CVE-2013-4073 2024-11-21 10:54 2013-08-18 Show GitHub Exploit DB Packet Storm
290017 - henri_wahl nagstamon The automatic update request in Nagstamont before 0.9.10 uses a cleartext base64 format for transmission of a username and password, which allows remote attackers to obtain sensitive information by s… CWE-255
Credentials Management 		CVE-2013-4114 2024-11-21 10:54 2013-08-17 Show GitHub Exploit DB Packet Storm
290018 - redhat jboss_enterprise_application_platform Red Hat JBoss Enterprise Application Platform (EAP) 6.1.0 does not properly cache EJB invocations by remote-naming, which allows remote attackers to hijack sessions by using a remoting client. CWE-16
Configuration 		CVE-2013-4128 2024-11-21 10:54 2013-08-17 Show GitHub Exploit DB Packet Storm
290019 - ibm advanced_management_module Cross-site scripting (XSS) vulnerability in adv_sw.php in the Advanced Management Module (AMM) with firmware BBET before BBET64G and BPET before BPET64G for IBM BladeCenter systems allows remote atta… CWE-79
Cross-site Scripting 		CVE-2013-4007 2024-11-21 10:54 2013-08-16 Show GitHub Exploit DB Packet Storm
290020 - ibm system_x3500_m3
flex_system_x440_compute_node
system_x3250_m4
system_x3550_m3
system_x3400_m2
bladecenter
system_x3550_m2
system_x3750_m4
system_x3650_m2
system_x3200_m3 		The Intelligent Platform Management Interface (IPMI) implementation in Integrated Management Module (IMM) on IBM BladeCenter, Flex System, System x iDataPlex, and System x3### servers uses cleartext … CWE-310
Cryptographic Issues 		CVE-2013-4038 2024-11-21 10:54 2013-08-10 Show GitHub Exploit DB Packet Storm