Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202371 8.8 重要
Network 		マイクロソフト
日立		 - 複数の Microsoft Windows 製品の Web プロキシ自動検出プロトコルの実装における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3213 2016-06-28 16:58 2016-06-14 Show GitHub Exploit DB Packet Storm
202372 7.8 重要
Local 		Linux - Linux Kernel の drivers/hid/usbhid/hiddev.c の hiddev_ioctl_usage 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-5829 2016-06-28 16:36 2016-06-23 Show GitHub Exploit DB Packet Storm
202373 7.8 重要
Local 		Linux - PowerPC プラットフォーム上で稼動する Linux Kernel の arch/powerpc/kernel/process.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-5828 2016-06-28 16:36 2016-06-17 Show GitHub Exploit DB Packet Storm
202374 7.1 重要
Local 		Linux - Linux Kernel の MIC VOP ドライバの drivers/misc/mic/vop/vop_vringh.c の vop_ioctl 関数における重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2016-5728 2016-06-28 16:36 2016-06-1 Show GitHub Exploit DB Packet Storm
202375 5.5 警告
Local 		Linux - Linux Kernel の net/tipc/netlink_compat.c の tipc_nl_compat_link_dump 関数におけるカーネルスタックメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-5243 2016-06-28 16:36 2016-06-2 Show GitHub Exploit DB Packet Storm
202376 7.8 重要
Local 		Linux - Linux Kernel の arch/x86/kvm/vmx.c におけるホスト OS 上で直接 APIC の MSR アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-4440 2016-06-28 16:36 2016-05-18 Show GitHub Exploit DB Packet Storm
202377 7.1 重要
Local 		Linux - Linux Kernel の arch/x86/kvm/mtrr.c の msr_mtrr_valid 関数における kvm_arch_vcpu のデータ構造を読み書きされる脆弱性 CWE-Other
その他 		CVE-2016-3713 2016-06-28 16:36 2016-06-1 Show GitHub Exploit DB Packet Storm
202378 7.8 重要
Local 		Linux - Linux Kernel の fs/ecryptfs/kthread.c の ecryptfs_privileged_open 関数における権限を取得される脆弱性 CWE-119
バッファエラー 		CVE-2016-1583 2016-06-28 16:36 2016-06-24 Show GitHub Exploit DB Packet Storm
202379 7.8 重要
Local 		Linux - Linux Kernel の ALSA サブシステムの sound/core/compress_offload.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-9904 2016-06-28 16:36 2014-07-16 Show GitHub Exploit DB Packet Storm
202380 5.5 警告
Local 		Linux - Linux Kernel の kernel/sched/core.c の sched_read_attr 関数におけるカーネルスタックメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-9903 2016-06-28 16:36 2014-02-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290631 - postgresql
canonical 		postgresql
ubuntu_linux 		Argument injection vulnerability in PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, and 9.0.x before 9.0.13 allows remote attackers to cause a denial of service (file corruption), and allows remot… CWE-94
Code Injection 		CVE-2013-1899 2024-11-21 10:50 2013-04-5 Show GitHub Exploit DB Packet Storm
290632 - mark_burns ldoce lib/ldoce/word.rb in the ldoce 0.0.2 gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in (1) an mp3 URL or (2) file name. CWE-20
 Improper Input Validation  		CVE-2013-1911 2024-11-21 10:50 2013-04-3 Show GitHub Exploit DB Packet Storm
290633 - openstack keystone_essex
folsom 		The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex and Folsom, Django, and possibly other products allow remote attackers to read arbitrary files via a… CWE-200
Information Exposure 		CVE-2013-1665 2024-11-21 10:50 2013-04-3 Show GitHub Exploit DB Packet Storm
290634 - openstack cinder_folsom
keystone_essex
grizzly
folsom
compute_\(nova\)_essex
compute_\(nova\)_folsom 		The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex, Folsom, and Grizzly; Compute (Nova) Essex and Folsom; Cinder Folsom; Django; and possibly other pro… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1664 2024-11-21 10:50 2013-04-3 Show GitHub Exploit DB Packet Storm
290635 - redhat subscription_asset_manager Cross-site scripting (XSS) vulnerability in the Notifications form in Red Hat Subscription Asset Manager before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the username f… CWE-79
Cross-site Scripting 		CVE-2013-1823 2024-11-21 10:50 2013-04-3 Show GitHub Exploit DB Packet Storm
290636 - zeroclipboard_project zeroclipboard Cross-site scripting (XSS) vulnerability in ZeroClipboard.swf and ZeroClipboard10.swf in ZeroClipboard before 1.0.8, as used in em-shorty, RepRapCalculator, Fulcrum, Django, aCMS, and other products,… CWE-79
Cross-site Scripting 		CVE-2013-1808 2024-11-21 10:50 2013-04-2 Show GitHub Exploit DB Packet Storm
290637 - gnome
canonical 		gnome_online_accounts
ubuntu_linux 		Gnome Online Accounts (GOA) 3.6.x before 3.6.3 and 3.7.x before 3.7.91, does not properly validate SSL certificates when creating accounts for providers who use the libsoup library, which allows man-… CWE-310
Cryptographic Issues 		CVE-2013-1799 2024-11-21 10:50 2013-04-2 Show GitHub Exploit DB Packet Storm
290638 - mariadb
oracle
redhat
debian
canonical
suse
opensuse 		mariadb
mysql
enterprise_linux
debian_linux
ubuntu_linux
linux_enterprise_desktop
linux_enterprise_server
opensuse
linux_enterprise_software_development_kit 		MariaDB 5.5.x before 5.5.30, 5.3.x before 5.3.13, 5.2.x before 5.2.15, and 5.1.x before 5.1.68, and Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote attackers… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1861 2024-11-21 10:50 2013-03-29 Show GitHub Exploit DB Packet Storm
290639 - ngircd ngircd channel.c in ngIRCd 20 and 20.1 allows remote attackers to cause a denial of service (assertion failure and crash) via a KICK command for a user who is not on the associated channel. NVD-CWE-noinfo
CVE-2013-1747 2024-11-21 10:50 2013-03-29 Show GitHub Exploit DB Packet Storm
290640 - views_project views Multiple cross-site scripting (XSS) vulnerabilities in the Views module 7.x-3.x before 7.x-3.6 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or H… CWE-79
Cross-site Scripting 		CVE-2013-1887 2024-11-21 10:50 2013-03-28 Show GitHub Exploit DB Packet Storm