Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
204741	7.8	重要 Local	Google Linux	-	MSM デバイスなどの製品用 QuIC Android コントリビューションで使用される Linux Kernel の wcnss_wlan デバイスドライバにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-5342	2016-11-17 18:07	2016-08-29	Show	GitHub Exploit DB Packet Storm

204742	9.8	緊急 Network	Google Linux	-	MSM デバイスなどの製品用 QuIC Android コントリビューションで使用される Linux Kernel の MDSS ドライバにおける整数オーバーフローの脆弱性	CWE-Other その他	CVE-2016-5344	2016-11-17 18:07	2016-08-23	Show	GitHub Exploit DB Packet Storm

204743	5.9	警告 Network	アップル	-	Apple iOS および OS X の IDS - Connectivity コンポーネントにおける通話リレーのなりすまし攻撃を実行される脆弱性	CWE-20 不適切な入力確認	CVE-2016-4722	2016-11-17 18:03	2016-09-13	Show	GitHub Exploit DB Packet Storm

204744	6.5	警告 Network	レッドハット libarchive オラクル	-	libarchive の ISO パーサにおける整数オーバーフローの脆弱性	CWE-Other その他	CVE-2016-5844	2016-11-17 17:58	2016-06-20	Show	GitHub Exploit DB Packet Storm

204745	7.5	重要 Network	Squid-cache.org Canonical オラクル	-	Squid の Esi.cc におけるメモリ二重解放の脆弱性	CWE-20 不適切な入力確認	CVE-2016-4556	2016-11-17 17:57	2016-05-6	Show	GitHub Exploit DB Packet Storm

204746	7.5	重要 Network	Squid-cache.org Canonical オラクル	-	Squid の client_side_request.cc におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-4555	2016-11-17 17:57	2016-05-6	Show	GitHub Exploit DB Packet Storm

204747	8.6	重要 Network	Squid-cache.org Canonical	-	Squid の mime_header.cc における同一生成元の制限を回避される脆弱性	CWE-Other その他	CVE-2016-4554	2016-11-17 17:57	2016-05-6	Show	GitHub Exploit DB Packet Storm

204748	8.6	重要 Network	Squid-cache.org Canonical オラクル	-	Squid の client_side.cc におけるキャッシュポイズニング攻撃を実行される脆弱性	CWE-Other その他	CVE-2016-4553	2016-11-17 17:56	2016-05-6	Show	GitHub Exploit DB Packet Storm

204749	9.8	緊急 Network	Haxx Debian openSUSE project	-	libcurl における使用される接続を制御される脆弱性	CWE-Other その他	CVE-2016-5421	2016-11-17 17:39	2016-08-3	Show	GitHub Exploit DB Packet Storm

204750	7.5	重要 Network	Haxx Debian openSUSE project	-	cURL および libcurl における接続認証をハイジャックされる脆弱性	CWE-Other その他	CVE-2016-5420	2016-11-17 17:38	2016-08-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
289961	-	microsoft	windows_server_2008 windows_server_2012 windows_rt windows_8.1 windows_7 windows_rt_8.1 windows_vista windows_8 windows_server_2003	Schannel in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8…	CWE-94 Code Injection	CVE-2014-6321	2024-11-21 11:14	2014-11-12	Show	GitHub Exploit DB Packet Storm

289962	-	microsoft	windows_server_2008 windows_server_2012 windows_rt windows_8.1 windows_7 windows_rt_8.1 windows_vista windows_8 windows_server_2003	Array index error in win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows …	CWE-129 Improper Validation of Array Index	CVE-2014-6317	2024-11-21 11:14	2014-11-12	Show	GitHub Exploit DB Packet Storm

289963	-	microsoft	windows_server_2008 windows_server_2012 windows_rt windows_8.1 windows_8 windows_vista windows_rt_8.1 windows_7	The audit logon feature in Remote Desktop Protocol (RDP) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, an…	CWE-287 Improper Authentication	CVE-2014-6318	2024-11-21 11:14	2014-11-12	Show	GitHub Exploit DB Packet Storm

289964	-	opensuse phpmyadmin	opensuse phpmyadmin	Cross-site scripting (XSS) vulnerability in the micro history implementation in phpMyAdmin 4.0.x before 4.0.10.3, 4.1.x before 4.1.14.4, and 4.2.x before 4.2.8.1 allows remote attackers to inject arb…	CWE-79 Cross-site Scripting	CVE-2014-6300	2024-11-21 11:14	2014-11-8	Show	GitHub Exploit DB Packet Storm

289965	-	arubanetworks	clearpass	Cross-site request forgery (CSRF) vulnerability in the Insight module in Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 allows remote attackers to hijack the authentication of a logged …	CWE-79 Cross-site Scripting	CVE-2014-6623	2024-11-21 11:14	2014-11-8	Show	GitHub Exploit DB Packet Storm

289966	-	arubanetworks	clearpass	Cross-site scripting (XSS) vulnerability in Aruba Networks ClearPass before 6.3.6 and 6.4.x before 6.4.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2014-6620	2024-11-21 11:14	2014-11-8	Show	GitHub Exploit DB Packet Storm

289967	-	exponentcms	exponent_cms	Cross-site scripting (XSS) vulnerability in Exponent CMS 2.3.0 allows remote attackers to inject arbitrary web script or HTML via the src parameter in the search action to index.php.	CWE-79 Cross-site Scripting	CVE-2014-6635	2024-11-21 11:14	2014-10-27	Show	GitHub Exploit DB Packet Storm

289968	-	blackberry	blackberry_world blackberry_os	The BlackBerry World app before 5.0.0.262 on BlackBerry 10 OS 10.2.0, before 5.0.0.263 on BlackBerry 10 OS 10.2.1, and before 5.1.0.53 on BlackBerry 10 OS 10.3.0 does not properly validate download/u…	CWE-20 Improper Input Validation	CVE-2014-6611	2024-11-21 11:14	2014-10-25	Show	GitHub Exploit DB Packet Storm

289969	-	cpuminer_project	cpuminer	Stack-based buffer overflow in CPUMiner before 2.4.1 allows remote attackers to have an unspecified impact by sending a mining.subscribe response with a large nonce2 length, then triggering the overf…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-6251	2024-11-21 11:14	2014-10-25	Show	GitHub Exploit DB Packet Storm

289970	-	mantisbt	mantisbt	gpc_api.php in MantisBT 1.2.17 and earlier allows remote attackers to bypass authenticated via a password starting will a null byte, which triggers an unauthenticated bind.	CWE-287 Improper Authentication	CVE-2014-6387	2024-11-21 11:14	2014-10-22	Show	GitHub Exploit DB Packet Storm