Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203301	4.3	警告	Mozilla Foundation openSUSE project オラクル	-	Mozilla Firefox の browser/base/content/browser.js におけるアドレスバーを偽装される脆弱性	CWE-Other その他	CVE-2016-1958	2016-12-5 17:48	2016-03-8	Show	GitHub Exploit DB Packet Storm

203302	4.3	警告	Mozilla Foundation openSUSE project SUSE オラクル	-	Mozilla Firefox の libstagefright におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-1957	2016-12-5 17:48	2016-03-8	Show	GitHub Exploit DB Packet Storm

203303	6.8	警告	Mozilla Foundation openSUSE project SUSE オラクル	-	Mozilla Firefox の dom/security/nsCSPContext.cpp におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-1954	2016-12-5 17:47	2016-03-8	Show	GitHub Exploit DB Packet Storm

203304	6.8	警告	Mozilla Foundation openSUSE project SUSE オラクル	-	Mozilla Firefox のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-1952	2016-12-5 17:47	2016-03-8	Show	GitHub Exploit DB Packet Storm

203305	7.8	重要 Local	Apache Software Foundation オラクル	-	複数の Linux ディストリビューションの Tomcat パッケージにおける root 権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-5425	2016-12-5 17:01	2016-10-10	Show	GitHub Exploit DB Packet Storm

203306	7.3	重要 Network	ヒューレット・パッカード	-	HP Network Automation Software の RMI サービスにおける任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2016-4385	2016-12-5 17:01	2016-09-20	Show	GitHub Exploit DB Packet Storm

203307	6.8	警告	Debian Canonical Apache Software Foundation	-	Apache Tomcat における Web セッションをハイジャックされる脆弱性	CWE-Other その他	CVE-2015-5346	2016-12-5 17:01	2015-12-10	Show	GitHub Exploit DB Packet Storm

203308	5	警告	ヒューレット・パッカード Debian Canonical Apache Software Foundation	-	Apache Tomcat の Mapper コンポーネントにおけるディレクトリの存在を特定される脆弱性	CWE-22 パス・トラバーサル	CVE-2015-5345	2016-12-5 17:01	2015-12-6	Show	GitHub Exploit DB Packet Storm

203309	4	警告	ヒューレット・パッカード Debian Canonical Apache Software Foundation	-	Apache Tomcat の RequestUtil.java におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-5174	2016-12-5 17:01	2015-08-17	Show	GitHub Exploit DB Packet Storm

203310	5	警告	ヒューレット・パッカード Debian Apache Software Foundation	-	Apache Tomcat の Expression Language の実装における SecurityManager 保護メカニズムを回避される脆弱性	CWE-Other その他	CVE-2014-7810	2016-12-5 17:01	2014-12-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346111	-	redhat	enterprise_linux	The linux-2.4.21-mlock.patch in Red Hat Enterprise Linux 3 does not properly maintain the mlock page count when one process unlocks pages that belong to another process, which allows local users to m…	NVD-CWE-Other	CVE-2004-0491	2017-10-11 10:29	2004-12-31	Show	GitHub Exploit DB Packet Storm

346112	-	avaya redhat	cvlan enterprise_linux enterprise_linux_desktop linux_advanced_workstation	Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI.	NVD-CWE-Other	CVE-2004-0494	2017-10-11 10:29	2004-11-23	Show	GitHub Exploit DB Packet Storm

346113	-	avaya gentoo linux redhat suse conectiva	converged_communications_server modular_messaging_message_storage_server linux linux_kernel enterprise_linux suse_linux intuity_audix suse_email_server suse_linux_admin-cd_for…	Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as found by the Sparse source code checking tool.	NVD-CWE-Other	CVE-2004-0495	2017-10-11 10:29	2004-08-6	Show	GitHub Exploit DB Packet Storm

346114	-	mandrakesoft conectiva gentoo linux redhat suse trustix	mandrake_multi_network_firewall linux linux_kernel mandrake_linux mandrake_linux_corporate_server enterprise_linux suse_linux secure_linux	Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4.	NVD-CWE-Other	CVE-2004-0497	2017-10-11 10:29	2004-12-6	Show	GitHub Exploit DB Packet Storm

346115	-	rob_flynn gentoo mandrakesoft	gaim linux mandrake_linux	Buffer overflow in the MSN protocol plugins (1) object.c and (2) slp.c for Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary code via MSNSLP protoco…	NVD-CWE-Other	CVE-2004-0500	2017-10-11 10:29	2004-09-28	Show	GitHub Exploit DB Packet Storm

346116	-	sgi squirrelmail	propack squirrelmail	Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.2 allow remote attackers to execute arbitrary script as other users and possibly steal authentication information via multiple …	NVD-CWE-Other	CVE-2004-0519	2017-10-11 10:29	2004-08-18	Show	GitHub Exploit DB Packet Storm

346117	-	open_webmail sgi squirrelmail	open_webmail propack squirrelmail	Cross-site scripting (XSS) vulnerability in mime.php for SquirrelMail before 1.4.3 allows remote attackers to insert arbitrary HTML and script via the content-type mail header, as demonstrated using …	NVD-CWE-Other	CVE-2004-0520	2017-10-11 10:29	2004-08-18	Show	GitHub Exploit DB Packet Storm

346118	-	sgi squirrelmail	propack squirrelmail	SQL injection vulnerability in SquirrelMail before 1.4.3 RC1 allows remote attackers to execute unauthorized SQL statements, with unknown impact, probably via abook_database.php.	NVD-CWE-Other	CVE-2004-0521	2017-10-11 10:29	2004-08-18	Show	GitHub Exploit DB Packet Storm

346119	-	mandrakesoft suse conectiva engardelinux gentoo linux	mandrake_multi_network_firewall suse_email_server suse_linux_admin-cd_for_firewall suse_linux_connectivity_server suse_linux_database_server suse_linux_firewall_cd suse_linux_firewa…	The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally …	NVD-CWE-Other	CVE-2004-0535	2017-10-11 10:29	2004-08-6	Show	GitHub Exploit DB Packet Storm

346120	-	sox conectiva gentoo redhat	sox linux enterprise_linux enterprise_linux_desktop fedora_core	Multiple buffer overflows in the st_wavstartread function in wav.c for Sound eXchange (SoX) 12.17.2 through 12.17.4 allow remote attackers to execute arbitrary code via certain WAV file header fields.	NVD-CWE-Other	CVE-2004-0557	2017-10-11 10:29	2004-08-6	Show	GitHub Exploit DB Packet Storm