Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202621 9.8 緊急
Network 		マイクロソフト
日立		 - 複数の Microsoft Windows 製品の Web プロキシ自動検出プロトコルの実装におけるネットワークトラフィックをリダイレクトされる脆弱性 CWE-Other
その他 		CVE-2016-3236 2016-06-28 16:58 2016-06-14 Show GitHub Exploit DB Packet Storm
202622 8.8 重要
Network 		マイクロソフト
日立		 - 複数の Microsoft Windows 製品の Web プロキシ自動検出プロトコルの実装における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3213 2016-06-28 16:58 2016-06-14 Show GitHub Exploit DB Packet Storm
202623 7.8 重要
Local 		Linux - Linux Kernel の drivers/hid/usbhid/hiddev.c の hiddev_ioctl_usage 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-5829 2016-06-28 16:36 2016-06-23 Show GitHub Exploit DB Packet Storm
202624 7.8 重要
Local 		Linux - PowerPC プラットフォーム上で稼動する Linux Kernel の arch/powerpc/kernel/process.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-5828 2016-06-28 16:36 2016-06-17 Show GitHub Exploit DB Packet Storm
202625 7.1 重要
Local 		Linux - Linux Kernel の MIC VOP ドライバの drivers/misc/mic/vop/vop_vringh.c の vop_ioctl 関数における重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2016-5728 2016-06-28 16:36 2016-06-1 Show GitHub Exploit DB Packet Storm
202626 5.5 警告
Local 		Linux - Linux Kernel の net/tipc/netlink_compat.c の tipc_nl_compat_link_dump 関数におけるカーネルスタックメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-5243 2016-06-28 16:36 2016-06-2 Show GitHub Exploit DB Packet Storm
202627 7.8 重要
Local 		Linux - Linux Kernel の arch/x86/kvm/vmx.c におけるホスト OS 上で直接 APIC の MSR アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-4440 2016-06-28 16:36 2016-05-18 Show GitHub Exploit DB Packet Storm
202628 7.1 重要
Local 		Linux - Linux Kernel の arch/x86/kvm/mtrr.c の msr_mtrr_valid 関数における kvm_arch_vcpu のデータ構造を読み書きされる脆弱性 CWE-Other
その他 		CVE-2016-3713 2016-06-28 16:36 2016-06-1 Show GitHub Exploit DB Packet Storm
202629 7.8 重要
Local 		Linux - Linux Kernel の fs/ecryptfs/kthread.c の ecryptfs_privileged_open 関数における権限を取得される脆弱性 CWE-119
バッファエラー 		CVE-2016-1583 2016-06-28 16:36 2016-06-24 Show GitHub Exploit DB Packet Storm
202630 7.8 重要
Local 		Linux - Linux Kernel の ALSA サブシステムの sound/core/compress_offload.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-9904 2016-06-28 16:36 2014-07-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290201 - strongswan strongswan strongSwan 4.3.5 through 5.0.3, when using the OpenSSL plugin for ECDSA signature verification, allows remote attackers to authenticate as other users via an invalid signature. CWE-287
Improper Authentication 		CVE-2013-2944 2024-11-21 10:52 2013-05-2 Show GitHub Exploit DB Packet Storm
290202 - vmware vcenter_server_appliance VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 allows remote authenticated users to create or overwrite arbitrary files, and consequently execute arbitrary code or cause a denial of servi… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3080 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290203 - vmware vcenter_server_appliance VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 allows remote authenticated users to execute arbitrary programs with root privileges by leveraging Virtual Appliance Management Interface (V… CWE-94
Code Injection 		CVE-2013-3079 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290204 - sap basis_communication_services SAP BASIS Communication Services 4.6B through 7.30 allows remote authenticated users to execute arbitrary commands via unspecified vectors. NVD-CWE-noinfo
CVE-2013-3063 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290205 - sap production_planning_and_control The CP_RC_TRANSACTION_CALL_BY_SET function in the Engineering Workbench component in SAP Production Planning and Control allows remote authenticated users to bypass intended transaction restrictions … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3062 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290206 - sap healthcare_industry_solution
erp_central_component 		The ISHMED-PATRED_TRANSACT_RFCCALL function in the IS-H Industry-Specific Component Hospital subsystem in SAP Healthcare Industry Solution, and the SAP ERP central component (aka ECC 6), allows remot… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3061 2024-11-21 10:52 2013-05-1 Show GitHub Exploit DB Packet Storm
290207 - crunchify foursquare-checkins Cross-site request forgery (CSRF) vulnerability in the FourSquare Checkins plugin before 1.3 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that in… CWE-352
 Origin Validation Error 		CVE-2013-2709 2024-11-21 10:52 2013-04-26 Show GitHub Exploit DB Packet Storm
290208 - citrix netscaler_access_gateway_firmware
netscaler_access_gateway 		Unspecified vulnerability in Citrix NetScaler Access Gateway Enterprise Edition (AGEE) before 9.3.62.4 and 10.x through 10.0.74.4, and NetScaler AGEE Common Criteria build before 9.3.53.6, allows rem… NVD-CWE-noinfo
CVE-2013-2767 2024-11-21 10:52 2013-04-26 Show GitHub Exploit DB Packet Storm
290209 - crunchify all-in-on-webmaster Cross-site request forgery (CSRF) vulnerability in the All in One Webmaster plugin before 8.2.4 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that… CWE-352
 Origin Validation Error 		CVE-2013-2696 2024-11-21 10:52 2013-04-26 Show GitHub Exploit DB Packet Storm
290210 - lexmark markvision Lexmark Markvision Enterprise before 1.8 provides a diagnostic interface on TCP port 9789, which allows remote attackers to execute arbitrary code, change the configuration, or obtain sensitive fleet… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3055 2024-11-21 10:52 2013-04-25 Show GitHub Exploit DB Packet Storm