Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
205311	9.8	緊急 Network	Puppet	-	Puppet Server および Puppet ならびに Puppet Agent の Ruby puppetmaster における auth.conf へのアクセス制限を回避される脆弱性	CWE-Other その他	CVE-2016-2785	2016-06-16 10:10	2016-04-26	Show	GitHub Exploit DB Packet Storm

205312	5.3	警告 Network	KMC Controls	-	KMC Controls BAC-5051E デバイスのファームウェアにおけるアクセス制限を回避される脆弱性	CWE-310 CWE-Other	CVE-2016-4495	2016-06-15 17:28	2016-06-7	Show	GitHub Exploit DB Packet Storm

205313	8.8	重要 Network	Mozilla Foundation	-	Windows 上で稼動する Mozilla Firefox で使用される ANGLE の TSymbolTableLevel クラスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-2824	2016-06-15 17:11	2016-06-7	Show	GitHub Exploit DB Packet Storm

205314	6.5	警告 Network	Apache Software Foundation	-	Apache CloudStack における認証を回避される脆弱性	CWE-287 CWE-Other	CVE-2016-3085	2016-06-15 17:04	2016-06-9	Show	GitHub Exploit DB Packet Storm

205315	7.2	重要 Network	Apache Software Foundation	-	Apache Ranger のポリシー管理ツールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2016-2174	2016-06-15 17:04	2016-06-1	Show	GitHub Exploit DB Packet Storm

205316	5.5	警告 Local	Canonical	-	LXD におけるコンテナディレクトリ内の任意の誰でも読み取り可能なパスにアクセスされる脆弱性	CWE-200 情報漏えい	CVE-2016-1582	2016-06-15 14:51	2016-05-30	Show	GitHub Exploit DB Packet Storm

205317	5.5	警告 Local	Canonical	-	LXD における任意のコンテナからデータをコピーされる脆弱性	CWE-Other その他	CVE-2016-1581	2016-06-15 14:51	2016-05-30	Show	GitHub Exploit DB Packet Storm

205318	5.5	警告 Local	Google	-	Android の ActivityManager における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-2500	2016-06-15 13:36	2016-06-6	Show	GitHub Exploit DB Packet Storm

205319	5.5	警告 Local	Google	-	Android のメディアサーバの libstagefright の AudioSource.cpp における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-2499	2016-06-15 13:36	2016-06-6	Show	GitHub Exploit DB Packet Storm

205320	5.5	警告 Local	Google	-	Nexus 7 (2013) デバイス上で稼動する Android の Qualcomm Wi-Fi ドライバにおけるデータアクセス制限を回避される脆弱性	CWE-200 情報漏えい	CVE-2016-2498	2016-06-15 13:36	2016-06-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
355451	-	securew2	securew2	The SecureW2 3.0 TLS implementation uses weak random number generators (rand and srand from system time) during generation of the pre-master secret (PMS), which makes it easier for attackers to guess…	NVD-CWE-Other	CVE-2005-3087	2008-09-6 05:53	2005-09-28	Show	GitHub Exploit DB Packet Storm

355452	-	mantis	mantis	Cross-site scripting (XSS) vulnerability in Mantis before 1.0.0rc1 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors, as identified by bug#0005751 "thraxisp".	NVD-CWE-Other	CVE-2005-3091	2008-09-6 05:53	2005-09-29	Show	GitHub Exploit DB Packet Storm

355453	-	nokia	3210 7610	Nokia 7610 and 3210 phones allows attackers to cause a denial of service via certain characters in the filename of a Bluetooth OBEX transfer.	NVD-CWE-Other	CVE-2005-3093	2008-09-6 05:53	2005-09-29	Show	GitHub Exploit DB Packet Storm

355454	-	avi_alkalay	contribute.cgi	Directory traversal vulnerability in Avi Alkalay contribute.cgi (aka contribute.pl), dated 16 Jun 2002, allows remote attackers to overwrite arbitrary files via ".." sequences in the contribdir varia…	NVD-CWE-Other	CVE-2005-3097	2008-09-6 05:53	2005-09-29	Show	GitHub Exploit DB Packet Storm

355455	-	astaro	security_linux	Unspecified "PPTP Remote DoS Vulnerability" in Astaro Security Linux 4.027 allows attackers to cause a denial of service.	NVD-CWE-Other	CVE-2005-3100	2008-09-6 05:53	2005-09-29	Show	GitHub Exploit DB Packet Storm

355456	-	six_apart	movable_type	The password reset feature in Movable Type before 3.2 generates different error messages depending on whether a user exists or not, which allows remote attackers to determine valid usernames.	NVD-CWE-Other	CVE-2005-3101	2008-09-6 05:53	2005-09-29	Show	GitHub Exploit DB Packet Storm

355457	-	-	-	The administrative interface in Movable Type allows attackers to upload files with arbitrary extensions under the web root.	NVD-CWE-Other	CVE-2005-3102	2008-09-6 05:53	2005-09-29	Show	GitHub Exploit DB Packet Storm

355458	-	six_apart	movable_type	Cross-site scripting (XSS) vulnerability in Movable Type before 3.2 allows remote attackers to inject arbitrary web script or HTML via the (1) title, (2) category, (3) body, (4) extended body, and (5…	NVD-CWE-Other	CVE-2005-3103	2008-09-6 05:53	2005-09-29	Show	GitHub Exploit DB Packet Storm

355459	-	six_apart	movable_type	mt-comments.cgi in Movable Type before 3.2 allows attackers to redirect users to other web sites via URLs in comments.	NVD-CWE-Other	CVE-2005-3104	2008-09-6 05:53	2005-09-29	Show	GitHub Exploit DB Packet Storm

355460	-	macromedia	breeze	The "reset password" feature in Macromedia Breeze 5.0 stores passwords in plaintext in the database instead of the hash, which allows attackers with access to the database to obtain the passwords.	NVD-CWE-Other	CVE-2005-3112	2008-09-6 05:53	2005-09-30	Show	GitHub Exploit DB Packet Storm