Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
215781	7.5	危険	OpenBSD	-	OpenSSH の schnorr.c の hash_buffer 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2014-1692	2014-12-8 17:07	2014-01-29	Show	GitHub Exploit DB Packet Storm

215782	6	警告	OpenBSD	-	OpenSSH の sshd における ForceCommand およびログインシェルの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4548	2014-12-8 17:07	2013-11-7	Show	GitHub Exploit DB Packet Storm

215783	4.3	警告	The PHP Group アップル	-	PHP の OpenSSL モジュール内の openssl.c における任意の SSL サーバになりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2013-4248	2014-12-8 17:00	2013-08-15	Show	GitHub Exploit DB Packet Storm

215784	3.3	注意	LG Electronics	-	LG Electronics 製モバイルアクセスルータにアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-7243	2014-12-8 16:07	2014-12-2	Show	GitHub Exploit DB Packet Storm

215785	7.2	危険	富士通	-	ARROWS Me F-11D における任意の領域にアクセス可能な脆弱性	CWE-DesignError	CVE-2014-7254	2014-12-8 16:06	2014-12-2	Show	GitHub Exploit DB Packet Storm

215786	2.6	注意	株式会社スクウェア・エニックス	-	Android 版拡散性ミリオンアーサーにおける情報管理不備の脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-7259	2014-12-8 16:05	2014-12-4	Show	GitHub Exploit DB Packet Storm

215787	4.3	警告	KENT-WEB	-	KENT-WEB 製 Clip Board におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-7258	2014-12-8 16:02	2014-12-4	Show	GitHub Exploit DB Packet Storm

215788	7.5	危険	Axel Kittenberger	-	lsyncd の default-rsyncssh.lua における任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2014-8990	2014-12-8 16:00	2014-10-29	Show	GitHub Exploit DB Packet Storm

215789	5	警告	Text and software	-	Antiword の wordole.c 内の bGetPPS 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-8123	2014-12-8 16:00	2014-12-1	Show	GitHub Exploit DB Packet Storm

215790	2.1	注意	Nagios Enterprises, LLC	-	Nagios Plugins の lib/parse_ini.c における重要な情報を取得される脆弱性	CWE-59 リンク解釈の問題	CVE-2014-4703	2014-12-8 15:51	2014-06-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294201	-	redhat	enterprise_virtualization_manager	Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.1, when moving disks between storage domains, does not properly wipe-after-delete, which prevents disks from being securely deleted and mig…	CWE-200 Information Exposure	CVE-2012-5516	2024-11-21 10:44	2013-01-5	Show	GitHub Exploit DB Packet Storm

294202	-	torproject	tor	The connection_edge_process_relay_cell function in or/relay.c in Tor before 0.2.3.25 maintains circuits even if an unexpected SENDME cell arrives, which might allow remote attackers to cause a denial…	CWE-399 Resource Management Errors	CVE-2012-5573	2024-11-21 10:44	2013-01-1	Show	GitHub Exploit DB Packet Storm

294203	-	cisco	skinny_client_control_protocol_software unified_ip_phone unified_ip_phone_7906g	The kernel in Cisco Native Unix (CNU) on Cisco Unified IP Phone 7900 series devices (aka TNP phones) with software before 9.3.1-ES10 does not properly validate unspecified system calls, which allows …	CWE-20 Improper Input Validation	CVE-2012-5445	2024-11-21 10:44	2012-12-28	Show	GitHub Exploit DB Packet Storm

294204	-	linux	linux_kernel	The main function in tools/hv/hv_kvp_daemon.c in hypervkvpd, as distributed in the Linux kernel before 3.8-rc1, allows local users to cause a denial of service (daemon exit) via a crafted application…	NVD-CWE-noinfo	CVE-2012-5532	2024-11-21 10:44	2012-12-27	Show	GitHub Exploit DB Packet Storm

294205	-	openstack	grizzly folsom	OpenStack Compute (Nova) Folsom before 2012.2.2 and Grizzly, when using libvirt and LVM backed instances, does not properly clear physical volume (PV) content when reallocating for instances, which a…	CWE-200 Information Exposure	CVE-2012-5625	2024-11-21 10:44	2012-12-27	Show	GitHub Exploit DB Packet Storm

294206	-	openstack	keystone	tools/sample_data.sh in OpenStack Keystone 2012.1.3, when access to Amazon Elastic Compute Cloud (Amazon EC2) is configured, uses world-readable permissions for /etc/keystone/ec2rc, which allows loca…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5483	2024-11-21 10:44	2012-12-27	Show	GitHub Exploit DB Packet Storm

294207	-	citrix	xenapp	The XML Service interface in Citrix XenApp 6.5 and 6.5 Feature Pack 1 allows remote attackers to execute arbitrary code via unspecified vectors.	NVD-CWE-noinfo	CVE-2012-5161	2024-11-21 10:44	2012-12-27	Show	GitHub Exploit DB Packet Storm

294208	-	catalin_florian_radut	zeropoint	Cross-site scripting (XSS) vulnerability in the Zero Point module 6.x-1.x before 6.x-1.18 and 7.x-1.x before 7.x-1.4 for Drupal allows remote attackers to inject arbitrary web script or HTML via the …	CWE-79 Cross-site Scripting	CVE-2012-5591	2024-11-21 10:44	2012-12-27	Show	GitHub Exploit DB Packet Storm

294209	-	scripthead	webmail_plus	SQL injection vulnerability in the Webmail Plus module for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2012-5590	2024-11-21 10:44	2012-12-27	Show	GitHub Exploit DB Packet Storm

294210	-	netgenius	multilink	The MultiLink module 6.x-2.x before 6.x-2.7 and 7.x-2.x before 7.x-2.7 for Drupal does not properly check node permissions when generating an in-content link, which allows remote authenticated users …	CWE-200 Information Exposure	CVE-2012-5589	2024-11-21 10:44	2012-12-27	Show	GitHub Exploit DB Packet Storm