Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202791 7.5 重要
Network 		BMC Software - Linux および UNIX 上で稼動する BMC BladeLogic Server Automation の RSCD エージェントの RPC API における認証を回避される脆弱性 CWE-Other
その他 		CVE-2016-1543 2016-06-17 15:53 2016-04-25 Show GitHub Exploit DB Packet Storm
202792 7.5 重要
Network 		BMC Software - Linux および UNIX 上で稼動する BMC BladeLogic Server Automation の RSCD エージェントの RPC API における認証を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-1542 2016-06-17 15:53 2016-04-25 Show GitHub Exploit DB Packet Storm
202793 5 警告
Local 		マイクロソフト - 複数の Microsoft Windows 製品の Windows Search コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3230 2016-06-17 14:56 2016-06-14 Show GitHub Exploit DB Packet Storm
202794 6.5 警告
Network 		マイクロソフト - Microsoft Windows Server 2008 および 2012 の Active Directory におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-3226 2016-06-17 14:56 2016-06-14 Show GitHub Exploit DB Packet Storm
202795 7.8 重要
Local 		マイクロソフト - Windows 診断ハブ標準コレクターサービスにおける権限昇格の脆弱性 CWE-Other
その他 		CVE-2016-3231 2016-06-17 14:56 2016-06-14 Show GitHub Exploit DB Packet Storm
202796 8.8 重要
Network 		マイクロソフト - Microsoft Windows Server 2008 および 2012 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3228 2016-06-17 14:56 2016-06-14 Show GitHub Exploit DB Packet Storm
202797 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Windows 製品の SMB サーバコンポーネントにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3225 2016-06-17 14:56 2016-06-14 Show GitHub Exploit DB Packet Storm
202798 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Windows 製品の Adobe Type Manager フォントドライバの atmfd.dll における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3220 2016-06-17 14:03 2016-06-14 Show GitHub Exploit DB Packet Storm
202799 7.8 重要
Local 		マイクロソフト - Microsoft Windows 10 のカーネルモードドライバにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3219 2016-06-17 14:03 2016-06-14 Show GitHub Exploit DB Packet Storm
202800 4.3 警告
Network 		マイクロソフト - 複数の Microsoft Windows 製品の Graphics コンポーネントの GDI32.dll における ASLR 保護メカニズムを回避される脆弱性 CWE-200
情報漏えい 		CVE-2016-3216 2016-06-17 14:03 2016-06-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290221 - fenrir-inc sleipnir_mobile The Sleipnir Mobile application 2.8.0 and earlier and Sleipnir Mobile Black Edition application 2.8.0 and earlier for Android allow remote attackers to load arbitrary Extension APIs, and trigger down… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2304 2024-11-21 10:51 2013-04-16 Show GitHub Exploit DB Packet Storm
290222 - fenrir-inc sleipnir Sleipnir 4.0.0.4000 and earlier on Windows allows remote attackers to spoof the SSL lock icon and address-bar colors via unspecified vectors. NVD-CWE-noinfo
CVE-2013-2303 2024-11-21 10:51 2013-04-16 Show GitHub Exploit DB Packet Storm
290223 - transware active\!_mail TransWARE Active! mail 6, when an external public interface is used, allows local users to obtain sensitive information belonging to arbitrary users by leveraging shell access, as demonstrated by a T… CWE-200
Information Exposure 		CVE-2013-2302 2024-11-21 10:51 2013-04-5 Show GitHub Exploit DB Packet Storm
290224 - omron openwnn The OMRON OpenWnn application before 1.3.6 for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesses the local f… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2301 2024-11-21 10:51 2013-03-30 Show GitHub Exploit DB Packet Storm
290225 - asterisk open_source
certified_asterisk
business_edition
digiumphones 		The SIP channel driver in Asterisk Open Source 1.8.x before 1.8.20.2, 10.x before 10.12.2, and 11.x before 11.2.2; Certified Asterisk 1.8.15 before 1.8.15-cert2; Asterisk Business Edition (BE) C.3.x … CWE-200
Information Exposure 		CVE-2013-2264 2024-11-21 10:51 2013-04-2 Show GitHub Exploit DB Packet Storm
290226 - arubanetworks arubaos Cross-site scripting (XSS) vulnerability in the dashboard of the ArubaOS Administration WebUI in Aruba Networks ArubaOS 6.2.x before 6.2.0.3, 6.1.3.x before 6.1.3.7, 6.1.x-FIPS before 6.1.4.3-FIPS, a… CWE-79
Cross-site Scripting 		CVE-2013-2290 2024-11-21 10:51 2013-03-29 Show GitHub Exploit DB Packet Storm
290227 - isc dhcp libdns in ISC DHCP 4.2.x before 4.2.5-P1 allows remote name servers to cause a denial of service (memory consumption) via vectors involving a regular expression, as demonstrated by a memory-exhaustio… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-2494 2024-11-21 10:51 2013-03-29 Show GitHub Exploit DB Packet Storm
290228 - isc bind libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service (memor… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-2266 2024-11-21 10:51 2013-03-29 Show GitHub Exploit DB Packet Storm
290229 - pm9 flickwnn The FlickWnn (aka OpenWnn/Flick support) application 2.02 and earlier for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an applicatio… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2300 2024-11-21 10:51 2013-03-28 Show GitHub Exploit DB Packet Storm
290230 - terillion terillion_reviews_plugin Cross-site scripting (XSS) vulnerability in the Terillion Reviews plugin before 1.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the ProfileId field. CWE-79
Cross-site Scripting 		CVE-2013-2501 2024-11-21 10:51 2013-03-23 Show GitHub Exploit DB Packet Storm