Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
209801	9.3	危険	アップル	-	Apple iOS および tvOS の MobileStorageMounter における特権付きコンテキスト内で任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-7051	2015-12-14 17:39	2015-12-8	Show	GitHub Exploit DB Packet Storm

209802	6.8	警告	アップル	-	複数の Apple 製品の ASN.1 デコーダにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2015-7061	2015-12-14 16:50	2015-12-8	Show	GitHub Exploit DB Packet Storm

209803	6.8	警告	アップル	-	複数の Apple 製品の ASN.1 デコーダにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2015-7060	2015-12-14 16:50	2015-12-8	Show	GitHub Exploit DB Packet Storm

209804	6.8	警告	アップル	-	複数の Apple 製品の ASN.1 デコーダにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2015-7059	2015-12-14 16:50	2015-12-8	Show	GitHub Exploit DB Packet Storm

209805	4.3	警告	アップル	-	Apple iOS および Safari などで使用される WebKit における重要な閲覧履歴情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-7050	2015-12-14 16:12	2015-12-8	Show	GitHub Exploit DB Packet Storm

209806	2.6	注意	アップル	-	複数の Apple 製品の xnu のサンドボックス機能における ASLR 保護メカニズムを回避される脆弱性	CWE-200 情報漏えい	CVE-2015-7046	2015-12-14 16:12	2015-12-8	Show	GitHub Exploit DB Packet Storm

209807	6.8	警告	アップル	-	複数の Apple 製品の AppSandbox における Contacts へのアクセスの取り消しを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-7001	2015-12-14 16:12	2015-12-8	Show	GitHub Exploit DB Packet Storm

209808	9.3	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR のシェーダーフィルタの実装における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2015-8445	2015-12-14 10:29	2015-12-8	Show	GitHub Exploit DB Packet Storm

209809	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-8457	2015-12-14 10:03	2015-12-8	Show	GitHub Exploit DB Packet Storm

209810	9.3	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2015-8456	2015-12-14 10:03	2015-12-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
297921	-		acquia	commons commons_group	The Commons Group module before 7.x-3.1 for Drupal, as used in the Commons module before 7.x-3.1, does not properly restrict access to groups, which allows remote attackers to post arbitrary content …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1907	2024-11-21 10:50	2013-07-17	Show	GitHub Exploit DB Packet Storm

297922	7.8	HIGH Local	linux redhat canonical	linux_kernel enterprise_linux enterprise_linux_eus ubuntu_linux	The KVM subsystem in the Linux kernel before 3.0 does not check whether kernel addresses are specified during allocation of memory slots for use in a guest's physical address space, which allows loca…	CWE-20 Improper Input Validation	CVE-2013-1943	2024-11-21 10:50	2013-07-16	Show	GitHub Exploit DB Packet Storm

297923	-		redhat	enterprise_linux	A certain Red Hat patch to the KVM subsystem in the kernel package before 2.6.32-358.11.1.el6 on Red Hat Enterprise Linux (RHEL) 6 does not properly implement the PV EOI feature, which allows guest O…	CWE-362 Race Condition	CVE-2013-1935	2024-11-21 10:50	2013-07-16	Show	GitHub Exploit DB Packet Storm

297924	-		ibm apache	websphere_application_server geronimo	The JMX Remoting functionality in Apache Geronimo 3.x before 3.0.1, as used in IBM WebSphere Application Server (WAS) Community Edition 3.0.0.3 and other products, does not properly implement the RMI…	CWE-94 Code Injection	CVE-2013-1777	2024-11-21 10:50	2013-07-12	Show	GitHub Exploit DB Packet Storm

297925	-		apache	openjpa	The BrokerFactory functionality in Apache OpenJPA 1.x before 1.2.3 and 2.x before 2.2.2 creates local executable JSP files containing logging trace data produced during deserialization of certain cra…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1768	2024-11-21 10:50	2013-07-12	Show	GitHub Exploit DB Packet Storm

297926	-		apache redhat canonical opensuse	http_server jboss_enterprise_application_platform enterprise_linux_server enterprise_linux_workstation enterprise_linux_server_aus enterprise_linux_desktop enterprise_linux_eus u…	mod_dav.c in the Apache HTTP Server before 2.2.25 does not properly determine whether DAV is enabled for a URI, which allows remote attackers to cause a denial of service (segmentation fault) via a M…	NVD-CWE-noinfo	CVE-2013-1896	2024-11-21 10:50	2013-07-11	Show	GitHub Exploit DB Packet Storm

297927	-		apache	struts	Apache Struts 2 before 2.3.14.2 allows remote attackers to execute arbitrary OGNL code via a crafted request that is not properly handled when using the includeParams attribute in the (1) URL or (2) …	CWE-94 Code Injection	CVE-2013-1966	2024-11-21 10:50	2013-07-11	Show	GitHub Exploit DB Packet Storm

297928	-		apache	struts struts2-showcase	Apache Struts Showcase App 2.0.0 through 2.3.13, as used in Struts 2 before 2.3.14.3, allows remote attackers to execute arbitrary OGNL code via a crafted parameter name that is not properly handled …	CWE-94 Code Injection	CVE-2013-1965	2024-11-21 10:50	2013-07-11	Show	GitHub Exploit DB Packet Storm

297929	-		videolan	vlc_media_player	The ASF Demuxer (modules/demux/asf/asf.c) in VideoLAN VLC media player 2.0.5 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-1954	2024-11-21 10:50	2013-07-11	Show	GitHub Exploit DB Packet Storm

297930	-		videolan	vlc_media_player	Multiple buffer overflows in VideoLAN VLC media player 2.0.4 and earlier allow remote attackers to cause a denial of service (crash) and execute arbitrary code via vectors related to the (1) freetype…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-1868	2024-11-21 10:50	2013-07-11	Show	GitHub Exploit DB Packet Storm