Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203221	3.3	低 Local	アップル	-	Apple iOS の Accessibility コンポーネントにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-1790	2016-05-23 14:46	2016-05-16	Show	GitHub Exploit DB Packet Storm

203222	7.8	重要 Local	アップル	-	Apple iTunes のインストーラにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-1742	2016-05-23 14:10	2016-05-16	Show	GitHub Exploit DB Packet Storm

203223	7.5	重要 Network	Petri Lehtinen	-	Jansson におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-4425	2016-05-23 13:58	2016-05-3	Show	GitHub Exploit DB Packet Storm

203224	9.8	緊急 Network	VMware	-	Windows 上で稼動する VMware Workstation および Player におけるホスト OS の権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-2077	2016-05-23 13:43	2016-05-17	Show	GitHub Exploit DB Packet Storm

203225	6.8	警告	Lantronix, Inc.	-	Lantronix xPrintServer におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-9003	2016-05-23 12:16	2014-11-11	Show	GitHub Exploit DB Packet Storm

203226	10	危険	Lantronix, Inc.	-	Lantronix xPrintServer における任意のコマンドを実行される脆弱性	CWE-264 CWE-Other	CVE-2014-9002	2016-05-23 12:15	2014-11-11	Show	GitHub Exploit DB Packet Storm

203227	9.8	緊急 Network	Lantronix, Inc.	-	Lantronix xPrintServer デバイスのファームウェアにおける root アクセス権を取得される脆弱性	CWE-255 CWE-Other	CVE-2016-4325	2016-05-23 12:13	2016-05-13	Show	GitHub Exploit DB Packet Storm

203228	7.5	重要 Network	Xstream Debian	-	XStream の複数のドライバにおける XML 外部エンティティの脆弱性	CWE-200 情報漏えい	CVE-2016-3674	2016-05-23 12:13	2016-03-15	Show	GitHub Exploit DB Packet Storm

203229	4.3	警告 Network	IBM	-	IBM Cognos TM1 におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-0381	2016-05-23 11:39	2016-05-12	Show	GitHub Exploit DB Packet Storm

203230	7.5	重要 Network	IBM	-	IBM Multi-Enterprise Integration Gateway および B2B Advanced Communications における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-0341	2016-05-23 11:39	2016-05-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290671	-	linux	linux_kernel	Race condition in the install_user_keyrings function in security/keys/process_keys.c in the Linux kernel before 3.8.3 allows local users to cause a denial of service (NULL pointer dereference and sys…	CWE-362 Race Condition	CVE-2013-1792	2024-11-21 10:50	2013-03-22	Show	GitHub Exploit DB Packet Storm

290672	-	matomo	matomo	Cross-site scripting (XSS) vulnerability in Piwik before 1.11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2013-1844	2024-11-21 10:50	2013-03-22	Show	GitHub Exploit DB Packet Storm

290673	-	rubygems	command_wrap	command_wrap.rb in the command_wrap Gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL or filename.	CWE-94 Code Injection	CVE-2013-1875	2024-11-21 10:50	2013-03-21	Show	GitHub Exploit DB Packet Storm

290674	-	realnetworks	realplayer realplayer_sp	Heap-based buffer overflow in RealNetworks RealPlayer before 16.0.1.18 and RealPlayer SP 1.0 through 1.1.5 allows remote attackers to execute arbitrary code via a malformed MP4 file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-1750	2024-11-21 10:50	2013-03-21	Show	GitHub Exploit DB Packet Storm

290675	-	puppet puppetlabs	puppet puppet_enterprise	Puppet 2.7.x before 2.7.21 and 3.1.x before 3.1.1, when running Ruby 1.9.3 or later, allows remote attackers to execute arbitrary code via vectors related to "serialized attributes."	CWE-20 Improper Input Validation	CVE-2013-1655	2024-11-21 10:50	2013-03-21	Show	GitHub Exploit DB Packet Storm

290676	-	puppetlabs puppet canonical	puppet puppet_enterprise ubuntu_linux	Puppet 2.7.x before 2.7.21 and 3.1.x before 3.1.1, and Puppet Enterprise 2.7.x before 2.7.2, does not properly negotiate the SSL protocol between client and master, which allows remote attackers to c…	NVD-CWE-noinfo	CVE-2013-1654	2024-11-21 10:50	2013-03-21	Show	GitHub Exploit DB Packet Storm

290677	-	puppet puppetlabs canonical	puppet puppet_enterprise ubuntu_linux	Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and Puppet Enterprise before 1.2.7 and 2.7.x before 2.7.2, when listening for incoming connections is enabled and allowing access to…	NVD-CWE-noinfo	CVE-2013-1653	2024-11-21 10:50	2013-03-21	Show	GitHub Exploit DB Packet Storm

290678	-	puppetlabs puppet canonical	puppet puppet_enterprise ubuntu_linux	Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and Puppet Enterprise before 1.2.7 and 2.7.x before 2.7.2 allows remote authenticated users with a valid certificate and private key…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1652	2024-11-21 10:50	2013-03-21	Show	GitHub Exploit DB Packet Storm

290679	-	puppet canonical	puppet puppet_enterprise ubuntu_linux	The (1) template and (2) inline_template functions in the master server in Puppet before 2.6.18, 2.7.x before 2.7.21, and 3.1.x before 3.1.1, and Puppet Enterprise before 1.2.7 and 2.7.x before 2.7.2…	NVD-CWE-noinfo	CVE-2013-1640	2024-11-21 10:50	2013-03-21	Show	GitHub Exploit DB Packet Storm

290680	-	typo3	typo3	Open redirect vulnerability in the Access tracking mechanism in TYPO3 4.5.x before 4.5.24, 4.6.x before 4.6.17, 4.7.x before 4.7.9, and 6.0.x before 6.0.3 allows remote attackers to redirect users to…	CWE-399 Resource Management Errors	CVE-2013-1843	2024-11-21 10:50	2013-03-21	Show	GitHub Exploit DB Packet Storm