Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
215971 9 危険 VMware - VMware vCloud Automation Center の VMware Remote Console 機能における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8373 2014-12-15 18:22 2014-12-9 Show GitHub Exploit DB Packet Storm
215972 4 警告 VMware - AirWatch by VMware On-Premise における任意のテナントから組織の情報および統計データを取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-8372 2014-12-15 18:21 2014-12-10 Show GitHub Exploit DB Packet Storm
215973 4.3 警告 レッドハット - Red Hat JBoss Portal で使用される JBoss RichFaces におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-7852 2014-12-15 18:21 2014-12-9 Show GitHub Exploit DB Packet Storm
215974 2.1 注意 ヒューレット・パッカード - Windows および Linux 上で稼働する HP Smart Update Manager における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-2608 2014-12-15 18:20 2014-12-9 Show GitHub Exploit DB Packet Storm
215975 4 警告 IBM - IBM WebSphere DataPower XC10 アプライアンスにおけるグリッドデータのアクセス制限を回避される脆弱性 CWE-200
情報漏えい 		CVE-2014-6138 2014-12-15 18:19 2014-12-8 Show GitHub Exploit DB Packet Storm
215976 3.5 注意 IBM - IBM WebSphere DataPower XC10 アプライアンスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6163 2014-12-15 18:18 2014-12-8 Show GitHub Exploit DB Packet Storm
215977 2.1 注意 IBM - IBM WebSphere DataPower XC10 アプライアンスにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-6143 2014-12-15 18:17 2014-12-8 Show GitHub Exploit DB Packet Storm
215978 6 警告 IBM - IBM WebSphere DataPower XC10 アプライアンスにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-3058 2014-12-15 18:17 2014-12-8 Show GitHub Exploit DB Packet Storm
215979 10 危険 Node.js Foundation
IBM		 - IBM Rational Application Developer などの製品で使用される Node.js 用 syntax-error パッケージの index.js における Eval インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2014-7192 2014-12-15 18:16 2014-07-15 Show GitHub Exploit DB Packet Storm
215980 5 警告 IBM - 複数の IBM 製品の Rule Execution Server の Hosted Transparent Decision Service における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2014-6114 2014-12-15 18:16 2014-12-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294731 - novell zenworks_configuration_management Cross-site scripting (XSS) vulnerability in a ZCC page in zenworks-core in Novell ZENworks Configuration Management (ZCM) 11.2 before 11.2.3a Monthly Update 1 allows remote attackers to inject arbitr… CWE-79
Cross-site Scripting 		CVE-2013-1094 2024-11-21 10:48 2013-06-17 Show GitHub Exploit DB Packet Storm
294732 - novell zenworks_configuration_management Open redirect vulnerability in the fwdToURL function in the ZCC login page in zcc-framework.jar in Novell ZENworks Configuration Management (ZCM) 11.2 before 11.2.3a Monthly Update 1 allows remote at… CWE-20
 Improper Input Validation  		CVE-2013-1093 2024-11-21 10:48 2013-06-17 Show GitHub Exploit DB Packet Storm
294733 - rsa authentication_manager EMC RSA Authentication Manager 8.0 before P1 allows local users to discover cleartext operating-system passwords, HTTP plug-in proxy passwords, and SNMP communities by reading a (1) log file or (2) c… CWE-255
Credentials Management 		CVE-2013-0947 2024-11-21 10:48 2013-06-8 Show GitHub Exploit DB Packet Storm
294734 - apple mac_os_x
mac_os_x_server 		CoreMedia Playback in Apple Mac OS X before 10.8.4 does not properly initialize memory during the processing of text tracks, which allows remote attackers to execute arbitrary code or cause a denial … CWE-20
 Improper Input Validation  		CVE-2013-1024 2024-11-21 10:48 2013-06-5 Show GitHub Exploit DB Packet Storm
294735 - apple safari WebKit, as used in Apple Safari before 6.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differ… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1023 2024-11-21 10:48 2013-06-5 Show GitHub Exploit DB Packet Storm
294736 - apple safari XSS Auditor in WebKit in Apple Safari before 6.0.5 does not properly rewrite URLs, which allows remote attackers to trigger unintended form submissions via unspecified vectors. CWE-20
 Improper Input Validation  		CVE-2013-1013 2024-11-21 10:48 2013-06-5 Show GitHub Exploit DB Packet Storm
294737 - apple safari Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 6.0.5 allows remote attackers to inject arbitrary web script or HTML via vectors involving IFRAME elements. CWE-79
Cross-site Scripting 		CVE-2013-1012 2024-11-21 10:48 2013-06-5 Show GitHub Exploit DB Packet Storm
294738 - apple safari WebKit, as used in Apple Safari before 6.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differ… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1009 2024-11-21 10:48 2013-06-5 Show GitHub Exploit DB Packet Storm
294739 - apple mac_os_x_server
mac_os_x 		SMB in Apple Mac OS X before 10.8.4, when file sharing is enabled, allows remote authenticated users to create or modify files outside of a shared directory via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0990 2024-11-21 10:48 2013-06-5 Show GitHub Exploit DB Packet Storm
294740 - apple mac_os_x Disk Management in Apple Mac OS X before 10.8.4 does not properly authenticate attempts to disable FileVault, which allows local users to cause a denial of service (loss of encryption functionality) … CWE-287
Improper Authentication 		CVE-2013-0985 2024-11-21 10:48 2013-06-5 Show GitHub Exploit DB Packet Storm