Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
204861	7.5	重要 Network	Google サムスン	-	Samsung Galaxy デバイスにおける未承認の WAP Push SMS メッセージが受理される脆弱性	CWE-Other その他	CVE-2016-7991	2016-11-4 15:47	2016-06-21	Show	GitHub Exploit DB Packet Storm

204862	7.5	重要 Network	Google サムスン	-	Samsung Galaxy デバイスの wifi-service.jar の WifiServiceImpl クラスの実装における ArrayIndexOutOfBoundsException の非処理を誘発される脆弱性	CWE-Other その他	CVE-2016-7989	2016-11-4 15:05	2016-06-21	Show	GitHub Exploit DB Packet Storm

204863	6.5	警告 Network	Foxit Software Inc	-	Windows 上で稼動する Foxit Reader および PhantomPDF の thumbnail シェルエクステンションプラグインにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-8879	2016-11-4 12:34	2016-10-18	Show	GitHub Exploit DB Packet Storm

204864	8.8	重要 Network	Foxit Software Inc	-	Windows 上で稼動する Foxit Reader および PhantomPDF における境界外読み取りの脆弱性	CWE-Other その他	CVE-2016-8878	2016-11-4 12:34	2016-10-18	Show	GitHub Exploit DB Packet Storm

204865	8.8	重要 Network	Foxit Software Inc	-	Windows 上で稼動する Foxit Reader および PhantomPDF におけるヒープベースのバッファオーバーフローの脆弱性	CWE-Other その他	CVE-2016-8877	2016-11-4 12:34	2016-10-18	Show	GitHub Exploit DB Packet Storm

204866	7.5	重要 Network	Foxit Software Inc	-	Windows 上で稼動する Foxit Reader および PhantomPDF におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-8876	2016-11-4 12:34	2016-10-18	Show	GitHub Exploit DB Packet Storm

204867	5.3	警告 Network	Foxit Software Inc	-	Windows 上で稼動する Foxit Reader および PhantomPDF の ConvertToPDF プラグインにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-8875	2016-11-4 12:34	2016-10-18	Show	GitHub Exploit DB Packet Storm

204868	7.8	重要 Local	Foxit Software Inc	-	Mac および Linux 用 Foxit Reader における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2016-8856	2016-11-4 12:34	2016-10-18	Show	GitHub Exploit DB Packet Storm

204869	6.2	警告 Local	Botan project	-	Botan の特定のパディングオプションを持つ RSA 暗号解読における平文に復元される脆弱性	CWE-200 情報漏えい	CVE-2016-8871	2016-11-4 12:31	2016-10-28	Show	GitHub Exploit DB Packet Storm

204870	4	警告 Local	docker2aci project	-	docker2aci におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 CWE-399	CVE-2016-8579	2016-11-4 11:22	2016-10-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290321	-	opensuse apache canonical apple redhat	opensuse subversion ubuntu_linux xcode enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server_eus enterprise_linux_server enterprise_linux_hpc_node	Apache Subversion 1.0.0 through 1.7.x before 1.7.17 and 1.8.x before 1.8.10 uses an MD5 hash of the URL and authentication realm to store cached credentials, which makes it easier for remote servers …	CWE-255 Credentials Management	CVE-2014-3528	2024-11-21 11:08	2014-08-20	Show	GitHub Exploit DB Packet Storm

290322	-	apache opensuse canonical apple	subversion opensuse ubuntu_linux xcode	The Serf RA layer in Apache Subversion 1.4.0 through 1.7.x before 1.7.18 and 1.8.x before 1.8.10 does not properly handle wildcards in the Common Name (CN) or subjectAltName field of the X.509 certif…	CWE-297 Improper Validation of Certificate with Host Mismatch	CVE-2014-3522	2024-11-21 11:08	2014-08-20	Show	GitHub Exploit DB Packet Storm

290323	-	apache canonical serf_project	subversion ubuntu_linux serf	The (1) serf_ssl_cert_issuer, (2) serf_ssl_cert_subject, and (3) serf_ssl_cert_certificate functions in Serf 0.2.0 through 1.3.x before 1.3.7 does not properly handle a NUL byte in a domain name in t…	NVD-CWE-Other	CVE-2014-3504	2024-11-21 11:08	2014-08-20	Show	GitHub Exploit DB Packet Storm

290324	-	redhat	resteasy jboss_enterprise_application_platform	RESTEasy 2.3.1 before 2.3.8.SP2 and 3.x before 3.0.9, as used in Red Hat JBoss Enterprise Application Platform (EAP) 6.3.0, does not disable external entities when the resteasy.document.expand.entity…	NVD-CWE-Other	CVE-2014-3490	2024-11-21 11:08	2014-08-20	Show	GitHub Exploit DB Packet Storm

290325	-	redhat	jboss_enterprise_application_platform	The isCallerInRole function in SimpleSecurityManager in JBoss Application Server (AS) 7, as used in Red Hat JBoss Enterprise Application Platform (JBEAP) 6.3.0, does not properly check caller roles, …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-3472	2024-11-21 11:08	2014-08-20	Show	GitHub Exploit DB Packet Storm

290326	-	redhat	jboss_enterprise_application_platform	The EJB invocation handler implementation in Red Hat JBossWS, as used in JBoss Enterprise Application Platform (EAP) 6.2.0 and 6.3.0, does not properly enforce the method level restrictions for outbo…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-3464	2024-11-21 11:08	2014-08-20	Show	GitHub Exploit DB Packet Storm

290327	-	openssl	openssl	Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service (application crash) or possibly have uns…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-3512	2024-11-21 11:08	2014-08-14	Show	GitHub Exploit DB Packet Storm

290328	-	openssl	openssl	The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows man-in-the-middle attackers to force the use of TLS 1.0 by triggering ClientHello message fragmentation in comm…	NVD-CWE-noinfo	CVE-2014-3511	2024-11-21 11:08	2014-08-14	Show	GitHub Exploit DB Packet Storm

290329	-	openssl	openssl	The ssl3_send_client_key_exchange function in s3_clnt.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i allows remote DTLS servers to cause a denial of service (NULL poi…	NVD-CWE-Other	CVE-2014-3510	2024-11-21 11:08	2014-08-14	Show	GitHub Exploit DB Packet Storm

290330	-	openssl	openssl	Race condition in the ssl_parse_serverhello_tlsext function in t1_lib.c in OpenSSL 1.0.0 before 1.0.0n and 1.0.1 before 1.0.1i, when multithreading and session resumption are used, allows remote SSL …	CWE-362 Race Condition	CVE-2014-3509	2024-11-21 11:08	2014-08-14	Show	GitHub Exploit DB Packet Storm