Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
204691 7.8 重要
Local
FFmpeg - FFmpeg の libavcodec/rawdec.c の raw_decode 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2016-6671 2017-01-5 16:53 2016-08-12 Show GitHub Exploit DB Packet Storm
204692 7.5 重要
Network
NetApp - NetApp Snap Creator Framework における重要な情報を公開される脆弱性 CWE-200
情報漏えい
CVE-2016-7172 2017-01-5 15:32 2016-12-20 Show GitHub Exploit DB Packet Storm
204693 8.8 重要
Network
python-openxml - python-docx における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限
CVE-2016-5851 2017-01-5 15:27 2016-06-22 Show GitHub Exploit DB Packet Storm
204694 7.5 重要
Network
BMC Software - BMC Remedy の Remedy AR System Server における任意のパスワードをリセットされる脆弱性 CWE-640
パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み
CVE-2016-2349 2017-01-5 15:23 2016-12-21 Show GitHub Exploit DB Packet Storm
204695 7.8 重要
Local
インテル - Windows 上で稼動するインテル グラフィックス・ドライバーの igdkmd64 モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2016-5647 2017-01-5 14:18 2016-07-11 Show GitHub Exploit DB Packet Storm
204696 5.5 警告
Local
Google - Samsung Galaxy S6 Edge デバイス上で稼動する Android におけるユーザ通知のテキストを取得される脆弱性 CWE-200
情報漏えい
CVE-2016-6910 2017-01-4 18:11 2016-12-23 Show GitHub Exploit DB Packet Storm
204697 5.4 警告
Network
Rapid7 - Rapid7 Nexpose ユーザインターフェースのタグ作成ページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-9757 2017-01-4 17:54 2016-12-21 Show GitHub Exploit DB Packet Storm
204698 8 重要
Adjacent
Technicolor - Technicolor TC DPC3941T デバイスのファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2016-7454 2017-01-4 17:54 2016-12-12 Show GitHub Exploit DB Packet Storm
204699 6.1 警告
Network
Horde - Horde Groupware および Horde Groupware Webmail Edition の Horde Text Filter API におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-5303 2017-01-4 17:54 2016-08-16 Show GitHub Exploit DB Packet Storm
204700 6.1 警告
Network
Roundcube.net - Roundcube Webmail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-4552 2017-01-4 17:54 2016-05-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290191 - foxitsoftware foxit_mobilepdf_-_pdf_reader The Foxit MobilePDF - PDF Reader (aka com.foxit.mobile.pdf.lite) application 2.2.0.0616 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to sp… CWE-310
Cryptographic Issues
CVE-2014-6853 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290192 - automon ledline.gr_official The LedLine.gr Official (aka com.automon.ledline.gr) application 1.4.0.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and… CWE-310
Cryptographic Issues
CVE-2014-6852 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290193 - nbcfc new_beginnings_cfc The New Beginnings CFC (aka com.goodbarber.nbcfc) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain… CWE-310
Cryptographic Issues
CVE-2014-6851 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290194 - starkvilleelectric sed_account The SED Account (aka com.starkville.smartapps) application 1.153.0034 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and ob… CWE-310
Cryptographic Issues
CVE-2014-6850 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290195 - synology ds_file The DS file (aka com.synology.DSfile) application 4.1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive… CWE-310
Cryptographic Issues
CVE-2014-6848 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290196 - horoscopesanddreams horoscopes_and_dreams The Horoscopes and Dreams (aka com.horoscopesanddreams) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers an… CWE-310
Cryptographic Issues
CVE-2014-6847 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290197 - intelitycorp four_seasons_beverly_hills The Four Seasons Beverly Hills (aka com.intelitycorp.FourSeasons.android.ice) application @7F050007 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle att… CWE-310
Cryptographic Issues
CVE-2014-6846 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290198 - mediafire mediafire The MediaFire (aka com.mediafire.android) application 1.1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensi… CWE-310
Cryptographic Issues
CVE-2014-6845 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290199 - tabtale abc_song The ABC Song (aka com.tabtale.abcsingalong) application 1.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sen… CWE-310
Cryptographic Issues
CVE-2014-6844 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm
290200 - orderingapps sweatshop The Sweatshop (aka com.orderingapps.sweatshop) application 2.96 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain s… CWE-310
Cryptographic Issues
CVE-2014-6843 2024-11-21 11:15 2014-10-1 Show GitHub Exploit DB Packet Storm