Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 4:11 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203871	7.8	重要 Local	マイクロソフト	-	Microsoft Visio 2016 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-3364	2016-09-15 18:14	2016-09-13	Show	GitHub Exploit DB Packet Storm

203872	7.8	重要 Local	マイクロソフト	-	複数の Microsoft Excel 製品および Office 互換機能パックにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-3363	2016-09-15 18:14	2016-09-13	Show	GitHub Exploit DB Packet Storm

203873	7.8	重要 Local	マイクロソフト	-	Microsoft Excel 2010 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-3361	2016-09-15 18:14	2016-09-13	Show	GitHub Exploit DB Packet Storm

203874	7.8	重要 Local	マイクロソフト	-	複数の Microsoft Excel 製品および Office 互換機能パックにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-3359	2016-09-15 18:14	2016-09-13	Show	GitHub Exploit DB Packet Storm

203875	6.5	警告 Network	マイクロソフト	-	複数の Microsoft Office 製品の Visual Basic マクロにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-0141	2016-09-15 18:14	2016-09-13	Show	GitHub Exploit DB Packet Storm

203876	3.3	低 Local	マイクロソフト	-	Microsoft Office 2013 および 2016 のクイック実行の実装における ASLR 保護メカニズムを回避される脆弱性	CWE-Other その他	CVE-2016-0137	2016-09-15 18:14	2016-09-13	Show	GitHub Exploit DB Packet Storm

203877	6.1	警告 Network	マイクロソフト	-	Microsoft Exchange Server 2016 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-3379	2016-09-15 16:38	2016-09-13	Show	GitHub Exploit DB Packet Storm

203878	4.3	警告 Network	マイクロソフト	-	Microsoft Exchange Server における重要な Outlook アプリケーション情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-0138	2016-09-15 16:38	2016-09-13	Show	GitHub Exploit DB Packet Storm

203879	3.1	低 Network	マイクロソフト	-	Microsoft Internet Explorer 11 および Microsoft Edge における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3325	2016-09-15 15:44	2016-09-13	Show	GitHub Exploit DB Packet Storm

203880	8.8	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 および Microsoft Edge における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2016-3297	2016-09-15 15:44	2016-09-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
289811	-	mozilla	network_security_services firefox_esr thunderbird firefox	Use-after-free vulnerability in the CERT_DestroyCertificate function in libnss3.so in Mozilla Network Security Services (NSS) 3.x, as used in Firefox before 31.0, Firefox ESR 24.x before 24.7, and Th…	NVD-CWE-Other	CVE-2014-1544	2024-11-21 11:04	2014-07-23	Show	GitHub Exploit DB Packet Storm

289812	-	bestpractical email\	rt \	Algorithmic complexity vulnerability in Email::Address::List before 0.02, as used in RT 4.2.0 through 4.2.2, allows remote attackers to cause a denial of service (CPU consumption) via a string withou…	CWE-189 Numeric Errors	CVE-2014-1474	2024-11-21 11:04	2014-07-15	Show	GitHub Exploit DB Packet Storm

289813	-	microsoft	windows_server_2012 windows_rt windows_7 windows_8.1 windows_server_2008 windows_server_2003 windows_rt_8.1 windows_vista windows_8	Double free vulnerability in the Ancillary Function Driver (AFD) in afd.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Win…	CWE-415 Double Free	CVE-2014-1767	2024-11-21 11:04	2014-07-9	Show	GitHub Exploit DB Packet Storm

289814	-	apple	tvos	Apple TV before 6.1.2 allows remote authenticated users to bypass an intended password requirement for iTunes Store purchase transactions via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1383	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

289815	-	apple	safari tvos iphone_os	WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (m…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-1382	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

289816	-	apple	mac_os_x	Thunderbolt in Apple OS X before 10.9.4 does not properly restrict IOThunderBoltController API calls, which allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds memo…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1381	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

289817	-	apple	mac_os_x	The Security - Keychain component in Apple OS X before 10.9.4 does not properly implement keystroke observers, which allows physically proximate attackers to bypass the screen-lock protection mechani…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1380	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

289818	-	apple	mac_os_x	Graphics Drivers in Apple OS X before 10.9.4 allows attackers to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via a 32-bit executable file for a crafted ap…	NVD-CWE-Other	CVE-2014-1379	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

289819	-	apple	mac_os_x	IOGraphicsFamily in Apple OS X before 10.9.4 allows local users to bypass the ASLR protection mechanism by leveraging read access to a kernel pointer in an IOKit object.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1378	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm

289820	-	apple	mac_os_x	Array index error in IOAcceleratorFamily in Apple OS X before 10.9.4 allows attackers to execute arbitrary code via a crafted application.	NVD-CWE-Other	CVE-2014-1377	2024-11-21 11:04	2014-07-1	Show	GitHub Exploit DB Packet Storm