Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202711 7.8 重要
Local 		Lenovo - Windows 10 PC にインストールされている Lenovo System Interface Foundation ソフトウェアにおけるローカル権限昇格の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-8223 2016-12-7 15:42 2016-11-17 Show GitHub Exploit DB Packet Storm
202712 9.6 緊急
Network 		日立
オラクル		 - Oracle Java SE および Java SE Embedded における Libraries に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3610 2016-12-6 17:56 2016-07-19 Show GitHub Exploit DB Packet Storm
202713 9.6 緊急
Network 		日立
オラクル		 - Oracle Java SE および Java SE Embedded における Libraries に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3598 2016-12-6 17:56 2016-07-19 Show GitHub Exploit DB Packet Storm
202714 9.6 緊急
Network 		日立
オラクル		 - Oracle Java SE および Java SE Embedded における Hotspot に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3587 2016-12-6 17:55 2016-07-19 Show GitHub Exploit DB Packet Storm
202715 4.3 警告
Network 		日立
オラクル		 - Oracle Java SE および Java SE Embedded における Hotspot に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3550 2016-12-6 17:55 2016-07-19 Show GitHub Exploit DB Packet Storm
202716 8.1 重要
Network 		レッドハット
日本電気
Apache Software Foundation
オラクル		 - Apache Tomcat における任意のプロキシサーバにアプリケーションのアウトバウンド HTTP トラフィックをリダイレクトされる脆弱性 CWE-Other
CWE-Other
CVE-2016-5388 2016-12-6 17:55 2016-07-18 Show GitHub Exploit DB Packet Storm
202717 5.3 警告
Network 		日立
オラクル		 - 複数の Oracle Java 製品における JAXP に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3508 2016-12-6 17:14 2016-07-19 Show GitHub Exploit DB Packet Storm
202718 5.3 警告
Network 		日立
オラクル		 - 複数の Oracle Java 製品における JAXP に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3500 2016-12-6 17:13 2016-07-19 Show GitHub Exploit DB Packet Storm
202719 6.8 警告 SIL International
Mozilla Foundation
openSUSE project
SUSE
オラクル		 - Mozilla Firefox で使用される Graphite2 におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-2802 2016-12-6 17:02 2016-03-8 Show GitHub Exploit DB Packet Storm
202720 6.8 警告 SIL International
Mozilla Foundation
openSUSE project
SUSE
オラクル		 - Mozilla Firefox で使用される Graphite2 の TtfUtil.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-2801 2016-12-6 17:02 2016-03-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292371 - cisco unified_communications_manager Cross-site request forgery (CSRF) vulnerability in the Call Detail Records Analysis and Reporting (CAR) interface in the OS Administration component in Cisco Unified Communications Manager (Unified C… CWE-352
 Origin Validation Error 		CVE-2014-0740 2024-11-21 11:02 2014-02-27 Show GitHub Exploit DB Packet Storm
292372 - ibm rational_focal_point Multiple cross-site scripting (XSS) vulnerabilities in the (1) ForwardController and (2) AttributeEditor scripts in IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 allo… CWE-79
Cross-site Scripting 		CVE-2014-0853 2024-11-21 11:02 2014-02-26 Show GitHub Exploit DB Packet Storm
292373 - ibm rational_focal_point Cross-site scripting (XSS) vulnerability in IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 allows remote authenticated users to inject arbitrary web script or HTML by … CWE-79
Cross-site Scripting 		CVE-2014-0843 2024-11-21 11:02 2014-02-26 Show GitHub Exploit DB Packet Storm
292374 - ibm rational_focal_point The account-creation functionality in IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 places the new user's default password within the creation page, which allows remo… CWE-255
Credentials Management 		CVE-2014-0842 2024-11-21 11:02 2014-02-26 Show GitHub Exploit DB Packet Storm
292375 - ibm rational_focal_point Multiple cross-site scripting (XSS) vulnerabilities in IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 allow remote authenticated users to inject arbitrary web script o… CWE-79
Cross-site Scripting 		CVE-2014-0840 2024-11-21 11:02 2014-02-26 Show GitHub Exploit DB Packet Storm
292376 - ibm rational_focal_point IBM Rational Focal Point 6.4.x and 6.5.x before 6.5.2.3 and 6.6.x before 6.6.1 allows remote authenticated users to modify data via vectors involving a direct object reference. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0839 2024-11-21 11:02 2014-02-26 Show GitHub Exploit DB Packet Storm
292377 - iconics genesis32 An ActiveX control in GenLaunch.htm in ICONICS GENESIS32 8.0, 8.02, 8.04, and 8.05 allows remote attackers to execute arbitrary programs via a crafted HTML document. CWE-20
 Improper Input Validation  		CVE-2014-0758 2024-11-21 11:02 2014-02-24 Show GitHub Exploit DB Packet Storm
292378 - ibm cognos_business_intelligence Cross-site scripting (XSS) vulnerability in the server in IBM Cognos Business Intelligence (BI) 8.4.1, 10.1 before IF6, 10.1.1 before IF5, 10.2 before IF7, 10.2.1 before IF4, and 10.2.1.1 before IF4 … CWE-79
Cross-site Scripting 		CVE-2014-0861 2024-11-21 11:02 2014-02-23 Show GitHub Exploit DB Packet Storm
292379 - ibm cognos_business_intelligence The server in IBM Cognos Business Intelligence (BI) 8.4.1, 10.1 before IF6, 10.1.1 before IF5, 10.2 before IF7, 10.2.1 before IF4, and 10.2.1.1 before IF4 allows remote authenticated users to read ar… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0854 2024-11-21 11:02 2014-02-23 Show GitHub Exploit DB Packet Storm
292380 - autodesk autocad Untrusted search path vulnerability in Autodesk AutoCAD before 2014 allows local users to gain privileges via a Trojan horse DLL in the current working directory. CWE-20
 Improper Input Validation  		CVE-2014-0819 2024-11-21 11:02 2014-02-23 Show GitHub Exploit DB Packet Storm