Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
202581 7.3 重要
Network
Jenkins プロジェクト - Jenkins の Script Security プラグインにおける Groovy サンドボックス保護メカニズムを回避される脆弱性 CWE-254
セキュリティ機能
CVE-2016-3102 2017-03-16 15:23 2016-04-11 Show GitHub Exploit DB Packet Storm
202582 7.2 重要
Network
フォーティネット - Fortinet Connect における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2016-8494 2017-03-16 15:12 2016-10-7 Show GitHub Exploit DB Packet Storm
202583 8.1 重要
Network
Tor Browser Launcher project - Tor Browser Launcher における PGP 署名の検証を回避される脆弱性 CWE-254
セキュリティ機能
CVE-2016-3180 2017-03-16 15:11 2016-04-3 Show GitHub Exploit DB Packet Storm
202584 8.5 重要
Network
Smiths Medical - Smiths-Medical CADD-Solis Medication Safety Software におけるエンドポイント間の通信チャネルにアクセスされる脆弱性 CWE-346
同一生成元ポリシー違反
CVE-2016-8358 2017-03-16 15:07 2016-12-1 Show GitHub Exploit DB Packet Storm
202585 9.9 緊急
Network
Smiths Medical - Smiths-Medical CADD-Solis Medication Safety Software における SQL データベース上の権限を昇格される脆弱性 CWE-306
重要な機能に対する認証の欠如 解説
CVE-2016-8355 2017-03-16 15:07 2016-12-1 Show GitHub Exploit DB Packet Storm
202586 9.8 緊急
Network
Sensio Labs - Symfony における認証を回避される脆弱性 CWE-287
不適切な認証
CVE-2016-2403 2017-03-16 15:04 2016-05-9 Show GitHub Exploit DB Packet Storm
202587 9.8 緊急
Network
OpenText - OpenText Documentum D2 おける任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2017-5586 2017-03-16 15:01 2017-02-15 Show GitHub Exploit DB Packet Storm
202588 7.8 重要
Local
GPGTools - GPG Suite の Libmacgpg の installerHelper サブコンポーネントにおける root 権限で任意のコマンドを実行される脆弱性 CWE-77
コマンドインジェクション
CVE-2014-4677 2017-03-16 14:55 2014-06-26 Show GitHub Exploit DB Packet Storm
202589 9.8 緊急
Network
php-gettext project - php-gettext における Eval インジェクションの脆弱性 CWE-94
コード・インジェクション
CVE-2016-6175 2017-03-16 14:51 2016-07-25 Show GitHub Exploit DB Packet Storm
202590 9.8 緊急
Network
アドビシステムズ - Adobe Flash Player の Primetime TVSDK API の機能におけるメモリを破損される脆弱性 CWE-119
バッファエラー
CVE-2017-2998 2017-03-16 14:35 2017-03-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292691 - xen
opensuse
xen
opensuse
The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x does not properly check the return value from the IRQ setup check, which allows local HVM guest administrators to cause a denial of servic… NVD-CWE-Other
CVE-2014-3967 2024-11-21 11:09 2014-06-6 Show GitHub Exploit DB Packet Storm
292692 - a10networks advanced_core_operating_system Buffer overflow in A10 Networks Advanced Core Operating System (ACOS) before 2.7.0-p6 and 2.7.1 before 2.7.1-P1_55 allows remote attackers to cause a denial of service (crash) and possibly execute ar… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-3976 2024-11-21 11:09 2014-06-6 Show GitHub Exploit DB Packet Storm
292693 - auracms auracms Absolute path traversal vulnerability in filemanager.php in AuraCMS 3.0 allows remote attackers to list a directory via a full pathname in the viewdir parameter. CWE-22
Path Traversal
CVE-2014-3975 2024-11-21 11:09 2014-06-6 Show GitHub Exploit DB Packet Storm
292694 - auracms auracms Cross-site scripting (XSS) vulnerability in filemanager.php in AuraCMS 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the viewdir parameter. CWE-79
Cross-site Scripting
CVE-2014-3974 2024-11-21 11:09 2014-06-6 Show GitHub Exploit DB Packet Storm
292695 - frontaccounting frontaccounting Multiple SQL injection vulnerabilities in FrontAccounting (FA) before 2.3.21 allow remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection
CVE-2014-3973 2024-11-21 11:09 2014-06-6 Show GitHub Exploit DB Packet Storm
292696 - redhat
linux
enterprise_linux
enterprise_mrg
linux_kernel
The Linux kernel through 3.14.5 does not properly consider the presence of hugetlb entries, which allows local users to cause a denial of service (memory corruption or system crash) by accessing cert… CWE-362
Race Condition
CVE-2014-3940 2024-11-21 11:09 2014-06-6 Show GitHub Exploit DB Packet Storm
292697 - suse
redhat
linux
linux_enterprise_desktop
enterprise_linux
enterprise_mrg
linux_kernel
kernel/auditsc.c in the Linux kernel through 3.14.5, when CONFIG_AUDITSYSCALL is enabled with certain syscall rules, allows local users to obtain potentially sensitive single-bit values from kernel m… CWE-200
Information Exposure
CVE-2014-3917 2024-11-21 11:09 2014-06-6 Show GitHub Exploit DB Packet Storm
292698 - samsung ipolis_device_manager Stack-based buffer overflow in the FindConfigChildeKeyList method in the XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 ActiveX control in Samsung iPOLiS Device Manager before 1.8.7 allows remote atta… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-3912 2024-11-21 11:09 2014-06-6 Show GitHub Exploit DB Packet Storm
292699 - ipswitch imail_server Multiple cross-site scripting (XSS) vulnerabilities in the web client interface in Ipswitch IMail Server 12.3 and 12.4, possibly before 12.4.1.15, allow remote attackers to inject arbitrary web scrip… CWE-79
Cross-site Scripting
CVE-2014-3878 2024-11-21 11:09 2014-06-6 Show GitHub Exploit DB Packet Storm
292700 - owncloud owncloud ownCloud Server before 6.0.1 does not properly check permissions, which allows remote authenticated users to access arbitrary preview pictures via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-3963 2024-11-21 11:09 2014-06-4 Show GitHub Exploit DB Packet Storm