Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
204091	5.3	警告 Local	Fabrice Bellard Canonical	-	QEMU の hw/scsi/megasas.c の megasas_dcmd_set_properties 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-5106	2016-10-28 16:28	2016-05-25	Show	GitHub Exploit DB Packet Storm

204092	4.1	警告 Local	Fabrice Bellard Canonical	-	QEMU の hw/scsi/megasas.c の megasas_dcmd_cfg_read 関数におけるホストメモリを読まれる脆弱性	CWE-200 情報漏えい	CVE-2016-5105	2016-10-28 16:28	2016-05-25	Show	GitHub Exploit DB Packet Storm

204093	5.3	警告 Local	Fabrice Bellard Canonical	-	QEMU におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-4952	2016-10-28 16:28	2016-05-23	Show	GitHub Exploit DB Packet Storm

204094	5.5	警告 Local	Fabrice Bellard Canonical	-	QEMU の hw/scsi/esp.c の get_cmd 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-5238	2016-10-28 16:27	2016-05-31	Show	GitHub Exploit DB Packet Storm

204095	5.5	警告 Local	Fabrice Bellard Canonical	-	QEMU の hw/scsi/megasas.c の megasas_ctrl_get_info 関数における重要なホストメモリ情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-5337	2016-10-28 16:27	2016-06-7	Show	GitHub Exploit DB Packet Storm

204096	7.8	重要 Local	Fabrice Bellard Canonical	-	QEMU の hw/scsi/esp.c の esp_reg_read および esp_reg_write 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-5338	2016-10-28 16:27	2016-06-6	Show	GitHub Exploit DB Packet Storm

204097	7.8	重要 Local	Fabrice Bellard Canonical オラクル	-	QEMU の block/iscsi.c の iscsi_aio_ioctl 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-5126	2016-10-28 16:26	2016-05-24	Show	GitHub Exploit DB Packet Storm

204098	6	警告 Local	Fabrice Bellard Canonical	-	QEMU の hw/display/vmware_vga.c の vmsvga_fifo_read_raw 関数における重要なホストメモリ情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2016-4454	2016-10-28 16:26	2016-05-30	Show	GitHub Exploit DB Packet Storm

204099	4.4	警告 Local	Fabrice Bellard Canonical	-	QEMU の hw/display/vmware_vga.c の vmsvga_fifo_run 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-4453	2016-10-28 16:25	2016-05-30	Show	GitHub Exploit DB Packet Storm

204100	6	警告 Local	Fabrice Bellard Canonical	-	QEMU の 53C9X Fast SCSI Controller サポートの hw/scsi/esp.c の get_cmd 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-4441	2016-10-28 16:25	2016-05-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291371	-		fedoraproject opensuse cacti debian	fedora opensuse cacti debian_linux	Cross-site scripting (XSS) vulnerability in cdef.php in Cacti 0.8.7g, 0.8.8b, and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2014-2326	2024-11-21 11:06	2014-03-28	Show	GitHub Exploit DB Packet Storm

291372	-		openbsd	openssh	The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertific…	CWE-20 Improper Input Validation	CVE-2014-2653	2024-11-21 11:06	2014-03-27	Show	GitHub Exploit DB Packet Storm

291373	-		joshua_peek	rack-ssl	Cross-site scripting (XSS) vulnerability in lib/rack/ssl.rb in the rack-ssl gem before 1.4.0 for Ruby allows remote attackers to inject arbitrary web script or HTML via a URI, which might not be prop…	CWE-79 Cross-site Scripting	CVE-2014-2538	2024-11-21 11:06	2014-03-26	Show	GitHub Exploit DB Packet Storm

291374	6.1	MEDIUM Network	barracudadrive	barracudadrive	Multiple cross-site scripting (XSS) vulnerabilities in BarracudaDrive before 6.7 allow remote attackers to inject arbitrary web script or HTML via the (1) sForumName or (2) sDescription parameter to …	CWE-79 Cross-site Scripting	CVE-2014-2526	2024-11-21 11:06	2014-03-26	Show	GitHub Exploit DB Packet Storm

291375	-		openstack	compute	The VMWare driver in OpenStack Compute (Nova) 2013.2 through 2013.2.2 does not properly put VMs into RESCUE status, which allows remote authenticated users to bypass the quota limit and cause a denia…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-2573	2024-11-21 11:06	2014-03-26	Show	GitHub Exploit DB Packet Storm

291376	-		opensuse icinga	opensuse icinga	Multiple off-by-one errors in Icinga, possibly 1.10.2 and earlier, allow remote attackers to cause a denial of service (crash) via unspecified vectors to the (1) display_nav_table, (2) print_export_l…	CWE-189 Numeric Errors	CVE-2014-2386	2024-11-21 11:06	2014-03-26	Show	GitHub Exploit DB Packet Storm

291377	-		net-snmp	net-snmp	The Linux implementation of the ICMP-MIB in Net-SNMP 5.5 before 5.5.2.1, 5.6.x before 5.6.2.1, and 5.7.x before 5.7.2.1 does not properly validate input, which allows remote attackers to cause a deni…	CWE-20 Improper Input Validation	CVE-2014-2284	2024-11-21 11:06	2014-03-25	Show	GitHub Exploit DB Packet Storm

291378	-		linux canonical	linux_kernel ubuntu_linux	Use-after-free vulnerability in the nfqnl_zcopy function in net/netfilter/nfnetlink_queue_core.c in the Linux kernel through 3.13.6 allows attackers to obtain sensitive information from kernel memory…	CWE-416 Use After Free	CVE-2014-2568	2024-11-21 11:06	2014-03-25	Show	GitHub Exploit DB Packet Storm

291379	-		linux canonical	linux_kernel ubuntu_linux	net/netfilter/nf_conntrack_proto_dccp.c in the Linux kernel through 3.13.6 uses a DCCP header pointer incorrectly, which allows remote attackers to cause a denial of service (system crash) or possibl…	CWE-20 Improper Input Validation	CVE-2014-2523	2024-11-21 11:06	2014-03-25	Show	GitHub Exploit DB Packet Storm

291380	-		sonicwall	nsa_2400	Cross-site scripting (XSS) vulnerability in the Dashboard Backend service (stats/dashboard.jsp) in SonicWall Network Security Appliance (NSA) 2400 allows remote attackers to inject arbitrary web scri…	CWE-79 Cross-site Scripting	CVE-2014-2589	2024-11-21 11:06	2014-03-25	Show	GitHub Exploit DB Packet Storm