Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
202451	7.8	重要 Local	Google	-	Nexus 5X および 9 デバイス上で稼動する Android の Synaptics タッチスクリーンドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3865	2016-09-14 16:45	2016-09-6	Show	GitHub Exploit DB Packet Storm

202452	7.8	重要 Local	Google	-	複数の Nexus および Android One デバイス上で稼動する Android の Qualcomm ラジオインターフェースレイヤにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3864	2016-09-14 16:45	2016-09-6	Show	GitHub Exploit DB Packet Storm

202453	7.8	重要 Local	Google	-	Android のメディアサーバの media/ExifInterface.java における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-3862	2016-09-14 16:45	2016-09-6	Show	GitHub Exploit DB Packet Storm

202454	7.8	重要 Local	Google	-	Android の LibUtils における任意のコードを実行される脆弱性	CWE-119 CWE-264	CVE-2016-3861	2016-09-14 16:45	2016-09-6	Show	GitHub Exploit DB Packet Storm

202455	7.8	重要 Local	Google	-	Nexus 5X および 6P デバイス上で稼動する Android の Qualcomm システムドライバにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-3858	2016-09-14 16:45	2016-09-6	Show	GitHub Exploit DB Packet Storm

202456	6	警告 Network	Simtech Ltd.	-	CS-Cart 用アドオン「Twigmo」における PHP オブジェクトインジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2016-4862	2016-09-14 14:05	2016-09-14	Show	GitHub Exploit DB Packet Storm

202457	7.5	重要 Network	シスコシステムズ	-	Cisco ACE30 Application Control Engine モジュールおよび ACE 4700 Application Control Engine アプライアンスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-6399	2016-09-14 12:00	2016-09-8	Show	GitHub Exploit DB Packet Storm

202458	5.3	警告 Network	シスコシステムズ	-	Cisco IOS の PPTP サーバにおける過去のネットワーク通信から重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-6398	2016-09-14 12:00	2016-09-2	Show	GitHub Exploit DB Packet Storm

202459	5.3	警告 Network	シスコシステムズ	-	Cisco Firepower Management Center および FireSIGHT システムソフトウェアにおけるマルウェアの検出を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2016-6396	2016-09-14 12:00	2016-09-7	Show	GitHub Exploit DB Packet Storm

202460	5.4	警告 Network	シスコシステムズ	-	Cisco Firepower Management Center および FireSIGHT システムソフトウェアの Web ベースの管理インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-6395	2016-09-14 12:00	2016-09-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291611	-	openvpn opensuse	openvpn openvpn_access_server opensuse	The openvpn_decrypt function in crypto.c in OpenVPN 2.3.0 and earlier, when running in UDP mode, allows remote attackers to obtain sensitive information via a timing attack involving an HMAC comparis…	CWE-200 Information Exposure	CVE-2013-2061	2024-11-21 10:50	2013-11-18	Show	GitHub Exploit DB Packet Storm

291612	-	mediawiki fedoraproject gentoo	mediawiki fedora linux	MediaWiki before 1.19.6 and 1.20.x before 1.20.5 does not allow extensions to prevent password changes without using both Special:PasswordReset and Special:ChangePassword, which allows remote attacke…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-2032	2024-11-21 10:50	2013-11-18	Show	GitHub Exploit DB Packet Storm

291613	-	gentoo mediawiki	linux mediawiki	MediaWiki before 1.19.6 and 1.20.x before 1.20.5 allows remote attackers to conduct cross-site scripting (XSS) attacks, as demonstrated by a CDATA section containing valid UTF-7 encoded sequences in …	CWE-79 Cross-site Scripting	CVE-2013-2031	2024-11-21 10:50	2013-11-18	Show	GitHub Exploit DB Packet Storm

291614	-	linux	linux_kernel	The host_start function in drivers/usb/chipidea/host.c in the Linux kernel before 3.7.4 does not properly support a certain non-streaming option, which allows local users to cause a denial of service…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-2058	2024-11-21 10:50	2013-11-5	Show	GitHub Exploit DB Packet Storm

291615	-	opensuse ruby-lang	opensuse ruby	(1) DL and (2) Fiddle in Ruby 1.9 before 1.9.3 patchlevel 426, and 2.0 before 2.0.0 patchlevel 195, do not perform taint checking for native functions, which allows context-dependent attackers to byp…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-2065	2024-11-21 10:50	2013-11-3	Show	GitHub Exploit DB Packet Storm

291616	-	mozilla	bugzilla	Multiple cross-site scripting (XSS) vulnerabilities in report.cgi in Bugzilla 4.1.x and 4.2.x before 4.2.7 and 4.3.x and 4.4.x before 4.4.1 allow remote attackers to inject arbitrary web script or HT…	CWE-79 Cross-site Scripting	CVE-2013-1743	2024-11-21 10:50	2013-10-24	Show	GitHub Exploit DB Packet Storm

291617	-	mozilla	bugzilla	Multiple cross-site scripting (XSS) vulnerabilities in editflagtypes.cgi in Bugzilla 2.x, 3.x, and 4.0.x before 4.0.11; 4.1.x and 4.2.x before 4.2.7; and 4.3.x and 4.4.x before 4.4.1 allow remote att…	CWE-79 Cross-site Scripting	CVE-2013-1742	2024-11-21 10:50	2013-10-24	Show	GitHub Exploit DB Packet Storm

291618	-	mozilla	bugzilla	Cross-site request forgery (CSRF) vulnerability in attachment.cgi in Bugzilla 2.x, 3.x, and 4.0.x before 4.0.11; 4.1.x and 4.2.x before 4.2.7; and 4.3.x and 4.4.x before 4.4.1 allows remote attackers…	CWE-352 Origin Validation Error	CVE-2013-1734	2024-11-21 10:50	2013-10-24	Show	GitHub Exploit DB Packet Storm

291619	-	mozilla	bugzilla	Cross-site request forgery (CSRF) vulnerability in process_bug.cgi in Bugzilla 4.4.x before 4.4.1 allows remote attackers to hijack the authentication of arbitrary users for requests that modify bugs…	CWE-352 Origin Validation Error	CVE-2013-1733	2024-11-21 10:50	2013-10-24	Show	GitHub Exploit DB Packet Storm

291620	-	mozilla	network_security_services	Mozilla Network Security Services (NSS) before 3.15.2 does not ensure that data structures are initialized before read operations, which allows remote attackers to cause a denial of service or possib…	NVD-CWE-noinfo	CVE-2013-1739	2024-11-21 10:50	2013-10-23	Show	GitHub Exploit DB Packet Storm