Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 12:07 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203131 7.8 重要
Local 		シスコシステムズ - Cisco IOS および IOS XE の iox におけるゲスト OS 上で任意の IOx Linux コマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2016-6414 2016-09-28 11:41 2016-09-21 Show GitHub Exploit DB Packet Storm
203132 7.8 重要
Local 		シスコシステムズ - Cisco Application Policy Infrastructure Controller デバイスのインストールプロシージャにおける root アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-6413 2016-09-28 11:41 2016-09-21 Show GitHub Exploit DB Packet Storm
203133 6.5 警告
Network 		シスコシステムズ - Cisco IOS および IOS XE の Cisco Application-hosting Framework コンポーネントにおける任意のダウンロードを誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6412 2016-09-28 11:41 2016-09-21 Show GitHub Exploit DB Packet Storm
203134 7.5 重要
Network 		シスコシステムズ - Cisco Prime Home における任意のファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2016-6408 2016-09-28 11:41 2016-09-21 Show GitHub Exploit DB Packet Storm
203135 9.8 緊急
Network 		シスコシステムズ - Cisco E メール セキュリティ アプライアンスデバイス上で稼動する IronPort AsyncOS における root アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-6406 2016-09-28 11:41 2016-09-22 Show GitHub Exploit DB Packet Storm
203136 9.8 緊急
Network 		シスコシステムズ - Cisco Cloud Services Platform 2100 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6374 2016-09-28 11:41 2016-09-21 Show GitHub Exploit DB Packet Storm
203137 7.2 重要
Network 		シスコシステムズ - Cisco Cloud Services Platform 2100 の Web ベースの GUI における root 権限で任意の OS コマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2016-6373 2016-09-28 11:41 2016-09-21 Show GitHub Exploit DB Packet Storm
203138 6.5 警告
Network 		シスコシステムズ - Cisco IOS および IOS XE のゾーンベースファイアウォール機能におけるリソースへのアクセス制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2146 2016-09-28 11:41 2014-02-25 Show GitHub Exploit DB Packet Storm
203139 7.8 重要
Local 		Lenovo - 複数の Lenovo デバイスの BIOS におけるセキュアブートの保護メカニズムを回避される脆弱性 CWE-Other
その他 		CVE-2016-5247 2016-09-28 11:10 2016-08-25 Show GitHub Exploit DB Packet Storm
203140 7.4 重要
Network 		Mozilla Foundation - Mozilla Firefox におけるアドオンの更新を偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-5284 2016-09-27 17:51 2016-09-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289571 - fedoraproject
mozilla 		fedora
bugzilla 		Bugzilla 2.x through 4.0.x before 4.0.15, 4.1.x and 4.2.x before 4.2.11, 4.3.x and 4.4.x before 4.4.6, and 4.5.x before 4.5.6 does not ensure that a scalar context is used for certain CGI parameters,… CWE-79
Cross-site Scripting 		CVE-2014-1573 2024-11-21 11:04 2014-10-13 Show GitHub Exploit DB Packet Storm
289572 - fedoraproject
mozilla 		fedora
bugzilla 		The confirm_create_account function in the account-creation feature in token.cgi in Bugzilla 2.x through 4.0.x before 4.0.15, 4.1.x and 4.2.x before 4.2.11, 4.3.x and 4.4.x before 4.4.6, and 4.5.x be… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1572 2024-11-21 11:04 2014-10-13 Show GitHub Exploit DB Packet Storm
289573 - mozilla
fedoraproject 		bugzilla
fedora 		Bugzilla 2.x through 4.0.x before 4.0.15, 4.1.x and 4.2.x before 4.2.11, 4.3.x and 4.4.x before 4.4.6, and 4.5.x before 4.5.6 allows remote authenticated users to obtain sensitive private-comment inf… CWE-200
Information Exposure 		CVE-2014-1571 2024-11-21 11:04 2014-10-13 Show GitHub Exploit DB Packet Storm
289574 - google
mozilla 		chrome
network_security_services
seamonkey
firefox_esr
firefox
thunderbird 		Mozilla Network Security Services (NSS) before 3.16.2.1, 3.16.x before 3.16.5, and 3.17.x before 3.17.1, as used in Mozilla Firefox before 32.0.3, Mozilla Firefox ESR 24.x before 24.8.1 and 31.x befo… CWE-310
Cryptographic Issues 		CVE-2014-1568 2024-11-21 11:04 2014-09-26 Show GitHub Exploit DB Packet Storm
289575 - apple mac_os_x
mac_os_x_server 		QT Media Foundation in Apple OS X before 10.9.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file with … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1391 2024-11-21 11:04 2014-09-19 Show GitHub Exploit DB Packet Storm
289576 - mozilla firefox
firefox_esr
thunderbird 		Use-after-free vulnerability in DirectionalityUtils.cpp in Mozilla Firefox before 32.0, Firefox ESR 24.x before 24.8 and 31.x before 31.1, and Thunderbird 24.x before 24.8 and 31.x before 31.1 allows… NVD-CWE-Other
CVE-2014-1567 2024-11-21 11:04 2014-09-3 Show GitHub Exploit DB Packet Storm
289577 - mozilla firefox Mozilla Firefox before 31.1 on Android does not properly restrict copying of local files onto the SD card during processing of file: URLs, which allows attackers to obtain sensitive information from … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1566 2024-11-21 11:04 2014-09-3 Show GitHub Exploit DB Packet Storm
289578 - mozilla firefox
thunderbird 		The mozilla::dom::AudioEventTimeline function in the Web Audio API implementation in Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 does not properly crea… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-1565 2024-11-21 11:04 2014-09-3 Show GitHub Exploit DB Packet Storm
289579 - opensuse
mozilla 		evergreen
opensuse
firefox
thunderbird 		Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 do not properly initialize memory for GIF rendering, which allows remote attackers to obtain sensitive info… CWE-824
 Access of Uninitialized Pointer 		CVE-2014-1564 2024-11-21 11:04 2014-09-3 Show GitHub Exploit DB Packet Storm
289580 - opensuse
oracle
mozilla 		evergreen
opensuse
solaris
firefox
thunderbird 		Use-after-free vulnerability in the mozilla::DOMSVGLength::GetTearOff function in Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 allows remote attackers t… CWE-416
 Use After Free 		CVE-2014-1563 2024-11-21 11:04 2014-09-3 Show GitHub Exploit DB Packet Storm