Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
204391	5.5	警告 Local	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルにおける権限昇格の脆弱性	CWE-200 情報漏えい	CVE-2016-0075	2016-10-18 18:10	2016-10-11	Show	GitHub Exploit DB Packet Storm

204392	5	警告 Local	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルにおける権限昇格の脆弱性	CWE-200 情報漏えい	CVE-2016-0073	2016-10-18 18:10	2016-10-11	Show	GitHub Exploit DB Packet Storm

204393	5.5	警告 Local	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルにおける権限昇格の脆弱性	CWE-200 情報漏えい	CVE-2016-0070	2016-10-18 18:10	2016-10-11	Show	GitHub Exploit DB Packet Storm

204394	7.8	重要 Local	マイクロソフト	-	複数の Microsoft Windows 製品のビデオコントロールにおける任意のコードを実行される脆弱性	CWE-119 CWE-Other	CVE-2016-0142	2016-10-18 17:43	2016-10-11	Show	GitHub Exploit DB Packet Storm

204395	7.8	重要 Local	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-7193	2016-10-18 17:42	2016-10-11	Show	GitHub Exploit DB Packet Storm

204396	5.3	警告 Network	マイクロソフト	-	Microsoft Internet Explorer および Microsoft Edge における資格情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3391	2016-10-18 16:58	2016-10-11	Show	GitHub Exploit DB Packet Storm

204397	7.5	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 11 および Microsoft Edge のスクリプトエンジンにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-3390	2016-10-18 16:58	2016-10-11	Show	GitHub Exploit DB Packet Storm

204398	5.3	警告 Network	マイクロソフト	-	Microsoft Internet Explorer 10 および 11 ならびに Microsoft Edge 権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3388	2016-10-18 16:58	2016-10-11	Show	GitHub Exploit DB Packet Storm

204399	7.5	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 10 および 11 ならびに Microsoft Edge における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3387	2016-10-18 16:58	2016-10-11	Show	GitHub Exploit DB Packet Storm

204400	7.5	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 のスクリプトエンジンにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-3385	2016-10-18 16:58	2016-10-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291681	-	pearson	esis_enterprise_student_information_system	Cross-site scripting (XSS) vulnerability in aal/loginverification.aspx in Pearson eSIS Enterprise Student Information System allows remote attackers to inject arbitrary web script or HTML via unspeci…	CWE-79 Cross-site Scripting	CVE-2014-1942	2024-11-21 11:05	2014-04-2	Show	GitHub Exploit DB Packet Storm

291682	-	posh_project	posh	The remember me feature in portal/scr_authentif.php in POSH (aka Posh portal or Portaneo) 3.0, 3.2.1, 3.3.0, and earlier stores the username and MD5 digest of the password in cleartext in a cookie, w…	CWE-255 Credentials Management	CVE-2014-2212	2024-11-21 11:05	2014-04-2	Show	GitHub Exploit DB Packet Storm

291683	-	openstack	keystone	The memcache token backend in OpenStack Identity (Keystone) 2013.1 through 2.013.1.4, 2013.2 through 2013.2.2, and icehouse before icehouse-3, when issuing a trust token with impersonation enabled, d…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-2237	2024-11-21 11:05	2014-04-1	Show	GitHub Exploit DB Packet Storm

291684	-	xen	xen	The (1) do_send and (2) do_recv functions in io.c in libvchan in Xen 4.2.x, 4.3.x, and 4.4-RC series allows local guests to cause a denial of service or possibly gain privileges via crafted xenstore …	CWE-20 Improper Input Validation	CVE-2014-1896	2024-11-21 11:05	2014-04-1	Show	GitHub Exploit DB Packet Storm

291685	-	xen	xen	Off-by-one error in the flask_security_avc_cachestats function in xsm/flask/flask_op.c in Xen 4.2.x and 4.3.x, when the maximum number of physical CPUs are in use, allows local users to cause a denia…	CWE-189 Numeric Errors	CVE-2014-1895	2024-11-21 11:05	2014-04-1	Show	GitHub Exploit DB Packet Storm

291686	-	xen	xen	Multiple integer overflows in unspecified suboperations in the flask hypercall in Xen 3.2.x and earlier, when XSM is enabled, allow local users to cause a denial of service (processor fault) via unsp…	CWE-189 Numeric Errors	CVE-2014-1894	2024-11-21 11:05	2014-04-1	Show	GitHub Exploit DB Packet Storm

291687	-	xen	xen	Multiple integer overflows in the (1) FLASK_GETBOOL and (2) FLASK_SETBOOL suboperations in the flask hypercall in Xen 4.1.x, 3.3.x, 3.2.x, and earlier, when XSM is enabled, allow local users to cause…	CWE-189 Numeric Errors	CVE-2014-1893	2024-11-21 11:05	2014-04-1	Show	GitHub Exploit DB Packet Storm

291688	-	xen	xen	Xen 3.3 through 4.1, when XSM is enabled, allows local users to cause a denial of service via vectors related to a "large memory allocation," a different vulnerability than CVE-2014-1891, CVE-2014-18…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-1892	2024-11-21 11:05	2014-04-1	Show	GitHub Exploit DB Packet Storm

291689	-	xen	xen	Multiple integer overflows in the (1) FLASK_GETBOOL, (2) FLASK_SETBOOL, (3) FLASK_USER, and (4) FLASK_CONTEXT_TO_SID suboperations in the flask hypercall in Xen 4.3.x, 4.2.x, 4.1.x, 3.2.x, and earlie…	CWE-189 Numeric Errors	CVE-2014-1891	2024-11-21 11:05	2014-04-1	Show	GitHub Exploit DB Packet Storm

291690	-	sonatype	nexus	Unspecified vulnerability in Sonatype Nexus OSS and Pro 2.4.0 through 2.7.1 allows attackers to create arbitrary user accounts via unknown vectors related to "an unauthenticated execution path."	NVD-CWE-noinfo	CVE-2014-2034	2024-11-21 11:05	2014-04-1	Show	GitHub Exploit DB Packet Storm