Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
204381	6.5	警告 Network	フォーティネット	-	Fortinet FortiWan における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-4967	2016-09-27 16:46	2016-09-7	Show	GitHub Exploit DB Packet Storm

204382	6.5	警告 Network	フォーティネット	-	Fortinet FortiWan の diagnosis_control.php ページにおける PCAP ファイルをダウンロードされる脆弱性	CWE-287 不適切な認証	CVE-2016-4966	2016-09-27 16:46	2016-09-7	Show	GitHub Exploit DB Packet Storm

204383	8.8	重要 Network	フォーティネット	-	Fortinet FortiWan における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2016-4965	2016-09-27 16:45	2016-09-7	Show	GitHub Exploit DB Packet Storm

204384	5.4	警告 Network	DELL EMC (旧 EMC Corporation)	-	EMC RSA Adaptive Authentication の Case Management アプリケーションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-0925	2016-09-27 15:51	2016-09-20	Show	GitHub Exploit DB Packet Storm

204385	6.5	警告 Local	DELL EMC (旧 EMC Corporation)	-	EMC Avamar Server の Avamar Data Store および Avamar Virtual Edition における root アクセス権を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-0921	2016-09-27 15:51	2016-09-19	Show	GitHub Exploit DB Packet Storm

204386	7.8	重要 Local	DELL EMC (旧 EMC Corporation)	-	EMC Avamar Server の Avamar Data Store および Avamar Virtual Edition における root アクセス権を取得される脆弱性	CWE-Other その他	CVE-2016-0920	2016-09-27 15:51	2016-09-19	Show	GitHub Exploit DB Packet Storm

204387	9.8	緊急 Network	DELL EMC (旧 EMC Corporation)	-	複数の EMC VNX 製品の SMB サービスにおける任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-0917	2016-09-27 15:51	2016-09-19	Show	GitHub Exploit DB Packet Storm

204388	6.7	警告 Local	DELL EMC (旧 EMC Corporation)	-	EMC Avamar Server の Avamar Data Store および Avamar Virtual Edition における root 権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-0905	2016-09-27 15:51	2016-09-19	Show	GitHub Exploit DB Packet Storm

204389	8.6	重要 Network	DELL EMC (旧 EMC Corporation)	-	EMC Avamar Server の Avamar Data Store および Avamar Virtual Edition における暗号保護メカニズムを破られる脆弱性	CWE-200 CWE-310	CVE-2016-0904	2016-09-27 15:51	2016-09-19	Show	GitHub Exploit DB Packet Storm

204390	9.1	緊急 Network	DELL EMC (旧 EMC Corporation)	-	EMC Avamar Server の Avamar Data Store および Avamar Virtual Edition におけるクライアントになりすまされる脆弱性	CWE-200 情報漏えい	CVE-2016-0903	2016-09-27 15:51	2016-09-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290341	-	freebsd	freebsd	The device file system (aka devfs) in FreeBSD 10.0 before p2 does not load default rulesets when booting, which allows context-dependent attackers to bypass intended restrictions by leveraging a jail…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-3001	2024-11-21 11:07	2014-05-2	Show	GitHub Exploit DB Packet Storm

290342	-	freebsd	freebsd	The TCP reassembly function in the inet module in FreeBSD 8.3 before p16, 8.4 before p9, 9.1 before p12, 9.2 before p5, and 10.0 before p2 allows remote attackers to cause a denial of service (undefi…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-3000	2024-11-21 11:07	2014-05-2	Show	GitHub Exploit DB Packet Storm

290343	-	fishshell	fish	fish (aka fish-shell) 1.16.0 before 2.1.1 does not properly check the credentials, which allows local users to gain privileges via the universal variable socket, related to /tmp/fishd.socket.user per…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-2905	2024-11-21 11:07	2014-05-2	Show	GitHub Exploit DB Packet Storm

290344	-	unitrends	enterprise_backup	recoveryconsole/bpl/snmpd.php in Unitrends Enterprise Backup 7.3.0 allows remote attackers to bypass authentication by setting the auth parameter to a certain string.	CWE-287 Improper Authentication	CVE-2014-3139	2024-11-21 11:07	2014-05-2	Show	GitHub Exploit DB Packet Storm

290345	-	xerox	docushare	SQL injection vulnerability in Xerox DocuShare before 6.53 Patch 6 Hotfix 2, 6.6.1 Update 1 before Hotfix 24, and 6.6.1 Update 2 before Hotfix 3 allows remote authenticated users to execute arbitrary…	CWE-89 SQL Injection	CVE-2014-3138	2024-11-21 11:07	2014-05-2	Show	GitHub Exploit DB Packet Storm

290346	-	citrix	netscaler_access_gateway_firmware netscaler_application_delivery_controller_firmware netscaler_access_gateway netscaler_application_delivery_controller	Unspecified vulnerability in the management GUI in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 9.3-66.5 and 10.x before 10.1-122.17 has unspecified impact and …	NVD-CWE-noinfo	CVE-2014-2882	2024-11-21 11:07	2014-05-2	Show	GitHub Exploit DB Packet Storm

290347	-	citrix	netscaler_access_gateway_firmware netscaler_application_delivery_controller_firmware netscaler_application_delivery_controller netscaler_access_gateway	Unspecified vulnerability in the Diffie-Hellman key agreement implementation in the management GUI Java applet in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 9…	NVD-CWE-noinfo	CVE-2014-2881	2024-11-21 11:07	2014-05-2	Show	GitHub Exploit DB Packet Storm

290348	-	vbulletin	vbulletin	Multiple cross-site scripting (XSS) vulnerabilities in vBulletin 5.1.1 Alpha 9 allow remote attackers to inject arbitrary web script or HTML via (1) the PATH_INFO to privatemessage/new/, (2) the fold…	CWE-79 Cross-site Scripting	CVE-2014-3135	2024-11-21 11:07	2014-04-30	Show	GitHub Exploit DB Packet Storm

290349	-	sap	businessobjects	Cross-site scripting (XSS) vulnerability in the InfoView application in SAP BusinessObjects allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2014-3134	2024-11-21 11:07	2014-04-30	Show	GitHub Exploit DB Packet Storm

290350	-	sap	netweaver_java_application_server	SAP Netweaver Java Application Server does not properly restrict access, which allows remote attackers to obtain the list of SAP systems registered on an SLD via an unspecified webdynpro, related to …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-3133	2024-11-21 11:07	2014-04-30	Show	GitHub Exploit DB Packet Storm