Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203911 5.9 警告
Network 		ベリタス
日立		 - Veritas NetBackup および NetBackup アプライアンスにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-6551 2016-08-2 16:25 2015-08-21 Show GitHub Exploit DB Packet Storm
203912 9.8 緊急
Network 		ベリタス
日立		 - Veritas NetBackup および NetBackup アプライアンスの管理サービスのプロトコルの実装における任意の RPC を実行される脆弱性 CWE-Other
その他 		CVE-2015-6552 2016-08-2 16:25 2015-08-21 Show GitHub Exploit DB Packet Storm
203913 5 警告 サン・マイクロシステムズ
日立
オラクル		 - 複数の Oracle Java 製品 における JAXP に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-4893 2016-08-2 16:25 2015-10-20 Show GitHub Exploit DB Packet Storm
203914 9.6 緊急
Network 		日立
オラクル		 - Oracle Java SE および Java SE Embedded における Hotspot に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3606 2016-08-2 15:51 2016-07-19 Show GitHub Exploit DB Packet Storm
203915 2.9
Local 		日立
オラクル		 - 複数の Oracle Java 製品における Networking に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3485 2016-08-2 15:51 2016-07-19 Show GitHub Exploit DB Packet Storm
203916 7.8 重要
Local 		Novell - Novell Filr における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-1611 2016-08-2 13:41 2016-06-9 Show GitHub Exploit DB Packet Storm
203917 7.5 重要
Network 		Novell - Novell Filr の電子メールのテンプレート機能におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-1610 2016-08-2 13:41 2016-07-20 Show GitHub Exploit DB Packet Storm
203918 5.4 警告
Network 		Novell - Novell Filr におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1609 2016-08-2 13:41 2016-07-20 Show GitHub Exploit DB Packet Storm
203919 8.8 重要
Network 		Novell - Novell Filr の vaconfig/time における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2016-1608 2016-08-2 13:41 2016-07-20 Show GitHub Exploit DB Packet Storm
203920 7.2 重要
Network 		Novell - Novell Filr の管理インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-1607 2016-08-2 13:41 2016-07-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290771 - redhat openshift Red Hat OpenShift Enterprise 2.0 and 2.1 and OpenShift Origin allow remote authenticated users to execute arbitrary commands via shell metacharacters in a directory name that is referenced by a cartr… CWE-94
Code Injection 		CVE-2014-0233 2024-11-21 11:01 2014-11-16 Show GitHub Exploit DB Packet Storm
290772 - suse
qemu 		linux_enterprise_server
qemu 		Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a large image size, whi… CWE-189
Numeric Errors 		CVE-2014-0223 2024-11-21 11:01 2014-11-5 Show GitHub Exploit DB Packet Storm
290773 - suse
qemu 		linux_enterprise_server
qemu 		Integer overflow in the qcow_open function in block/qcow.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service (crash) via a large L2 table in a QCOW version 1 image. CWE-189
Numeric Errors 		CVE-2014-0222 2024-11-21 11:01 2014-11-5 Show GitHub Exploit DB Packet Storm
290774 - qemu qemu Heap-based buffer overflow in the virtio_load function in hw/virtio/virtio.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted config length in a savevm image. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-0182 2024-11-21 11:01 2014-11-5 Show GitHub Exploit DB Packet Storm
290775 - openstack keystone OpenStack Identity (Keystone) before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges th… CWE-269
 Improper Privilege Management 		CVE-2014-0204 2024-11-21 11:01 2014-11-4 Show GitHub Exploit DB Packet Storm
290776 - redhat cloudforms_3.0_management_engine The (1) get and (2) log methods in the AgentController in Red Hat CloudForms 3.0 Management Engine (CFME) 5.x allow remote attackers to insert arbitrary text into log files via unspecified vectors. CWE-20
 Improper Input Validation  		CVE-2014-0136 2024-11-21 11:01 2014-10-27 Show GitHub Exploit DB Packet Storm
290777 - jolokia jolokia Cross-site request forgery (CSRF) vulnerability in Jolokia before 1.2.1 allows remote attackers to hijack the authentication of users for requests that execute MBeans methods via a crafted web page. CWE-352
 Origin Validation Error 		CVE-2014-0168 2024-11-21 11:01 2014-10-6 Show GitHub Exploit DB Packet Storm
290778 - redhat cloudforms_3.0.5_management_engine
cloudforms_3.0.4_management_engine
cloudforms_3.0.3_management_engine
cloudforms_3.0.2_management_engine
cloudforms_3.0.1_management_engine
cloudform… 		Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to access sensitive controllers and actions via a direct HTTP or HTTPS request. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-0140 2024-11-21 11:01 2014-10-6 Show GitHub Exploit DB Packet Storm
290779 - apache shiro Apache Shiro 1.x before 1.2.3, when using an LDAP server with unauthenticated bind enabled, allows remote attackers to bypass authentication via an empty (1) username or (2) password. CWE-287
Improper Authentication 		CVE-2014-0074 2024-11-21 11:01 2014-10-6 Show GitHub Exploit DB Packet Storm
290780 - redhat
jboss 		jboss_data_virtualization
teiid 		Teiid before 8.4.3 and before 8.7 and Red Hat JBoss Data Virtualization 6.0.0 before patch 3 allows remote attackers to read arbitrary files via a crafted request to a REST endpoint, related to an XM… NVD-CWE-Other
CVE-2014-0170 2024-11-21 11:01 2014-09-30 Show GitHub Exploit DB Packet Storm