Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203151	7.5	重要 Network	Node.js Foundation npm, Inc. IBM	-	Node.js で使用される npm の CLI における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3956	2016-07-12 10:08	2016-03-31	Show	GitHub Exploit DB Packet Storm

203152	8.1	重要 Network	Meinberg Funkuhren GmbH & Co KG	-	複数の Meinberg デバイスのファームウェア上で稼働する NTP Time Server のインターフェースにおける不特定のスクリプトへ書き込みを行う root 権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3989	2016-07-11 18:06	2016-06-28	Show	GitHub Exploit DB Packet Storm

203153	7.3	重要 Network	Meinberg Funkuhren GmbH & Co KG	-	複数の Meinberg デバイスのファームウェア上で稼働する NTP Time Server のインターフェースにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-3988	2016-07-11 18:06	2016-06-28	Show	GitHub Exploit DB Packet Storm

203154	7.3	重要 Network	Meinberg Funkuhren GmbH & Co KG	-	複数の Meinberg デバイスのファームウェア上で稼働する NTP Time Server のインターフェースにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-3962	2016-07-11 18:06	2016-06-28	Show	GitHub Exploit DB Packet Storm

203155	9.8	緊急 Network	マイクロフォーカス株式会社	-	Micro Focus Rumba の WdMacCtl.ocx の ObjectXMacro.ObjectXMacro におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-5228	2016-07-11 17:21	2016-06-30	Show	GitHub Exploit DB Packet Storm

203156	9.8	緊急 Network	マイクロフォーカス株式会社	-	Micro Focus Rumba の COM オブジェクトにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-1606	2016-07-11 17:21	2016-06-30	Show	GitHub Exploit DB Packet Storm

203157	8.8	重要 Network	DELL EMC (旧 EMC Corporation)	-	EMC Avamar の Avamar Data Store および Avamar Virtual Edition の web-restore インターフェースにおけるディレクトリを読まれる脆弱性	CWE-Other その他	CVE-2016-0906	2016-07-11 16:28	2016-07-6	Show	GitHub Exploit DB Packet Storm

203158	8.8	重要 Network	VMware	-	VMware vRealize Log Insight におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2016-2082	2016-07-11 16:28	2016-06-9	Show	GitHub Exploit DB Packet Storm

203159	5.9	警告 Network	VMware	-	VMware NSX Edge および vCNS Edge における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-2079	2016-07-11 16:28	2016-06-9	Show	GitHub Exploit DB Packet Storm

203160	6.3	警告 Network	DELL EMC (旧 EMC Corporation)	-	EMC RSA Archer GRC における web.config.bak ファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2016-0899	2016-07-11 12:03	2016-06-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290211	6.1	MEDIUM Network	ibm	infosphere_data_replication_dashboard	Cross-site scripting (XSS) vulnerability in IBM InfoSphere Data Replication Dashboard 9.7 and 10.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force …	CWE-79 Cross-site Scripting	CVE-2013-2999	2024-11-21 10:52	2018-07-10	Show	GitHub Exploit DB Packet Storm

290212	7.8	HIGH Local	ibm	websphere_application_server	IBM WebSphere Application Server (WAS) 8.5 through 8.5.0.2 on UNIX allows local users to gain privileges by leveraging improper process initialization. IBM X-Force ID: 84362.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-3024	2024-11-21 10:52	2018-05-25	Show	GitHub Exploit DB Packet Storm

290213	8.1	HIGH Network	ibm	tivoli_application_dependency_discovery_manager	IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 through 7.2.1.4 might allow remote attackers to obtain sensitive information about Tomcat credentials by sniffing the netwo…	CWE-200 Information Exposure	CVE-2013-3023	2024-11-21 10:52	2018-05-25	Show	GitHub Exploit DB Packet Storm

290214	5.3	MEDIUM Network	ibm	tivoli_application_dependency_discovery_manager	The AXIS webapp in deploy-tomcat/axis in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 through 7.2.1.4 allows remote attackers to obtain sensitive configuration informat…	CWE-200 Information Exposure	CVE-2013-3018	2024-11-21 10:52	2018-05-25	Show	GitHub Exploit DB Packet Storm

290215	7.8	HIGH Local	sumatrapdfreader	sumatrapdf	Use-after-free vulnerability in SumatraPDF Reader 2.x before 2.2.1 allows remote attackers to execute arbitrary code via a crafted PDF file.	CWE-416 Use After Free	CVE-2013-2830	2024-11-21 10:52	2018-02-9	Show	GitHub Exploit DB Packet Storm

290216	-		realnetworks	realarcade_installer	RealNetworks GameHouse RealArcade Installer (aka ActiveMARK Game Installer) 2.6.0.481 and 3.0.7 uses weak permissions (Create Files/Write Data) for the GameHouse Games directory tree, which allows lo…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-2604	2024-11-21 10:52	2015-01-13	Show	GitHub Exploit DB Packet Storm

290217	-		realnetworks	realarcade_installer	The RACInstaller.StateCtrl.1 ActiveX control in InstallerDlg.dll in RealNetworks GameHouse RealArcade Installer 2.6.0.481 performs unexpected type conversions for invalid parameter types, which allow…	NVD-CWE-Other	CVE-2013-2603	2024-11-21 10:52	2015-01-13	Show	GitHub Exploit DB Packet Storm

290218	-		emerson	dl_8000_remote_terminal_unit_firmware dl_8000_remote_terminal_unit roc_800l_remote_terminal_unit_firmware roc_800l_remote_terminal_unit roc_800_remote_terminal_unit_firmware roc_800_re…	Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier allows remote attackers to execute arbi…	CWE-77 Command Injection	CVE-2013-2810	2024-11-21 10:52	2014-12-8	Show	GitHub Exploit DB Packet Storm

290219	-		tp-link	firmware	Multiple cross-site request forgery (CSRF) vulnerabilities on the TP-LINK WR1043N router with firmware TL-WR1043ND_V1_120405 allow remote attackers to hijack the authentication of administrators for …	CWE-352 Origin Validation Error	CVE-2013-2645	2024-11-21 10:52	2014-10-6	Show	GitHub Exploit DB Packet Storm

290220	-		belkin	n300_firmware n300	The Belkin N300 (F7D7301v1) router allows remote attackers to bypass authentication and gain privileges via vectors related to incorrect validation of the HTTP Authorization header.	CWE-287 Improper Authentication	CVE-2013-3092	2024-11-21 10:52	2014-09-30	Show	GitHub Exploit DB Packet Storm