Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
202991	7.3	重要 Network	Google	-	Android のフレームワーク API におけるインテントフィルターのプライオリティを高くされる脆弱性	CWE-119 バッファエラー	CVE-2016-2497	2016-08-10 16:53	2016-08-1	Show	GitHub Exploit DB Packet Storm

202992	9.8	緊急 Network	Google	-	Nexus 7 (2013) デバイス上で稼動する Android の Qualcomm Wi-Fi ドライバにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-9902	2016-08-10 16:53	2016-08-1	Show	GitHub Exploit DB Packet Storm

202993	7.5	重要 Network	Google	-	Nexus 7 (2013) デバイス上で稼動する Android の Qualcomm Wi-Fi ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-9901	2016-08-10 16:53	2016-08-1	Show	GitHub Exploit DB Packet Storm

202994	9.8	緊急 Network	The PHP Group	-	PHP の ext/spl/spl_dllist.c の SplDoublyLinkedList::offsetSet 関数におけるメモリ二重解放の脆弱性	CWE-Other その他	CVE-2016-3132	2016-08-10 14:56	2016-04-28	Show	GitHub Exploit DB Packet Storm

202995	9.8	緊急 Network	The PHP Group	-	PHP の zip エクステンションの php_zip.c における整数オーバーフローの脆弱性	CWE-Other その他	CVE-2016-3078	2016-08-10 14:43	2016-04-28	Show	GitHub Exploit DB Packet Storm

202996	5.4	警告 Network	Apache Software Foundation	-	Apache ActiveMQ の管理 Web コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-0782	2016-08-10 14:25	2016-03-14	Show	GitHub Exploit DB Packet Storm

202997	5	警告	OpenSSL Project オラクル	-	OpenSSL の d1_pkt.c の dtls1_buffer_record 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2015-0206	2016-08-9 18:16	2015-01-7	Show	GitHub Exploit DB Packet Storm

202998	5	警告	アップル日本電気 OpenSSL Project ヒューレット・パッカードオラクル	-	OpenSSL における指紋ベースの認証ブラックリスト保護メカニズムを破られる脆弱性	CWE-310 暗号の問題	CVE-2014-8275	2016-08-9 18:15	2014-12-20	Show	GitHub Exploit DB Packet Storm

202999	5	警告	アップル OpenSSL Project ヒューレット・パッカードオラクル	-	OpenSSL の s3_clnt.c 内の ssl3_get_key_exchange 関数における ECDHE-to-ECDH ダウングレード攻撃を実行される脆弱性	CWE-310 暗号の問題	CVE-2014-3572	2016-08-9 18:14	2014-10-24	Show	GitHub Exploit DB Packet Storm

203000	5	警告	日本電気アップルヒューレット・パッカード OpenSSL Project オラクル日立	-	OpenSSL の BN_sqr の実装における暗号保護メカニズムを破られる脆弱性	CWE-310 暗号の問題	CVE-2014-3570	2016-08-9 18:14	2014-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
289911	-	oracle	industry_applications	Unspecified vulnerability in the Oracle Retail Invoice Matching component in Oracle Industry Applications 10.2, 11.0, 12.0, 12.0IN, 12.1, 13.0, 13.1, and 13.2 allows remote authenticated users to aff…	NVD-CWE-noinfo	CVE-2013-3814	2024-11-21 10:54	2013-10-17	Show	GitHub Exploit DB Packet Storm

289912	-	oracle	vm_virtualbox	Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.18, 4.0.20, 4.1.28, and 4.2.18 allows local users to affect availability via unknown v…	NVD-CWE-noinfo	CVE-2013-3792	2024-11-21 10:54	2013-10-17	Show	GitHub Exploit DB Packet Storm

289913	-	oracle	peoplesoft_products	Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Products 9.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Care…	NVD-CWE-noinfo	CVE-2013-3785	2024-11-21 10:54	2013-10-17	Show	GitHub Exploit DB Packet Storm

289914	-	oracle	primavera_products_suite	Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.1, 8.2, and 8.3 allows remote authenticated users to affect integr…	NVD-CWE-noinfo	CVE-2013-3766	2024-11-21 10:54	2013-10-17	Show	GitHub Exploit DB Packet Storm

289915	-	oracle	enterprise_manager_grid_control enterprise_manager_plugin_for_database_control enterprise_manager_database_control	Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control EM Base Platform 10.2.0.5 and 11.1.0.1; EM DB Control 11.1.0.7, 11.2.0.2, and 11.…	NVD-CWE-noinfo	CVE-2013-3762	2024-11-21 10:54	2013-10-17	Show	GitHub Exploit DB Packet Storm

289916	-	ibm	infosphere_information_server	Cross-site request forgery (CSRF) vulnerability in the Data Quality Console and Information Analyzer components in IBM InfoSphere Information Server 8.7 through FP2 and 9.1 through 9.1.2.0 allows rem…	CWE-352 Origin Validation Error	CVE-2013-4056	2024-11-21 10:54	2013-10-13	Show	GitHub Exploit DB Packet Storm

289917	-	status	statusnet	Multiple SQL injection vulnerabilities in StatusNet 1.0 before 1.0.2 and 1.1.0 allow remote attackers to execute arbitrary SQL commands via vectors related to user lists and "a particular tag format."	CWE-89 SQL Injection	CVE-2013-4137	2024-11-21 10:54	2013-10-12	Show	GitHub Exploit DB Packet Storm

289918	-	blackberry	blackberry_enterprise_service	The BlackBerry Universal Device Service in BlackBerry Enterprise Service (BES) 10.0 through 10.1.2 does not properly restrict access to the JBoss Remote Method Invocation (RMI) interface, which allow…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-3693	2024-11-21 10:54	2013-10-12	Show	GitHub Exploit DB Packet Storm

289919	-	ovislink	airlive_od-2025hd airlive_poe100hd airlive_od-2060hd airlive_poe250hd airlive_poe200hd airlive_poe2600hd	AirLive POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD, and possibly other camera models use cleartext to store sensitive information, which allows attackers to obtain passwo…	CWE-310 Cryptographic Issues	CVE-2013-3687	2024-11-21 10:54	2013-10-12	Show	GitHub Exploit DB Packet Storm

289920	-	ovislink	airlive_wl2600cam	cgi-bin/operator/param in AirLive WL2600CAM and possibly other camera models allows remote attackers to obtain the administrator password via a list action.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-3686	2024-11-21 10:54	2013-10-12	Show	GitHub Exploit DB Packet Storm