Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216031 4.3 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey の Chrome Object Wrapper の実装における DOM オブジェクト制限を回避される脆弱性 CWE-Other
その他 		CVE-2014-8631 2014-12-12 15:11 2014-12-2 Show GitHub Exploit DB Packet Storm
216032 6.8 警告 Mozilla Foundation - 複数の Mozilla 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-1594 2014-12-12 15:11 2014-12-2 Show GitHub Exploit DB Packet Storm
216033 6.8 警告 Mozilla Foundation - 複数の Mozilla 製品の mozilla::FileBlockCache::Read 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-1593 2014-12-12 15:10 2014-12-2 Show GitHub Exploit DB Packet Storm
216034 6.8 警告 Mozilla Foundation - 複数の Mozilla 製品の xul.dll の nsHtml5TreeOperation 関数における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2014-1592 2014-12-12 15:10 2014-12-2 Show GitHub Exploit DB Packet Storm
216035 4.3 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey における重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2014-1591 2014-12-12 15:09 2014-12-2 Show GitHub Exploit DB Packet Storm
216036 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品の XMLHttpRequest.prototype.send メソッドにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-1590 2014-12-12 15:09 2014-12-2 Show GitHub Exploit DB Packet Storm
216037 6.8 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey におけるアクセス制限を回避される脆弱性 CWE-Other
その他 		CVE-2014-1589 2014-12-12 15:09 2014-12-2 Show GitHub Exploit DB Packet Storm
216038 6.8 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2014-1588 2014-12-12 15:08 2014-12-2 Show GitHub Exploit DB Packet Storm
216039 6.8 警告 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-1587 2014-12-12 15:08 2014-12-2 Show GitHub Exploit DB Packet Storm
216040 3.5 注意 マイクロソフト - Microsoft Exchange Server の Outlook Web App におけるユーザを任意の Web サイトにリダイレクトされる脆弱性 CWE-20
不適切な入力確認 		CVE-2014-6336 2014-12-12 11:19 2014-12-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292031 - saltstack salt Salt (aka SaltStack) 0.15.0 through 0.17.0 allows remote authenticated users who are using external authentication or client ACL to execute restricted routines by embedding the routine in another rou… CWE-287
Improper Authentication 		CVE-2013-4435 2024-11-21 10:55 2013-11-6 Show GitHub Exploit DB Packet Storm
292032 - linux linux_kernel The ipc_rcu_putref function in ipc/util.c in the Linux kernel before 3.10 does not properly manage a reference count, which allows local users to cause a denial of service (memory consumption or syst… CWE-189
Numeric Errors 		CVE-2013-4483 2024-11-21 10:55 2013-11-5 Show GitHub Exploit DB Packet Storm
292033 - linux linux_kernel The Linux kernel before 3.12, when UDP Fragmentation Offload (UFO) is enabled, does not properly initialize certain data structures, which allows local users to cause a denial of service (memory corr… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4470 2024-11-21 10:55 2013-11-5 Show GitHub Exploit DB Packet Storm
292034 - linux
canonical 		linux_kernel
ubuntu_linux 		The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of … CWE-399
 Resource Management Errors 		CVE-2013-4348 2024-11-21 10:55 2013-11-5 Show GitHub Exploit DB Packet Storm
292035 - openstack havana
grizzly 		The LDAP backend in OpenStack Identity (Keystone) Grizzly and Havana, when removing a role on a tenant for a user who does not have that role, adds the role to the user, which allows local users to g… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4477 2024-11-21 10:55 2013-11-3 Show GitHub Exploit DB Packet Storm
292036 - xen xen The Ocaml xenstored implementation (oxenstored) in Xen 4.1.x, 4.2.x, and 4.3.x allows local guest domains to cause a denial of service (domain shutdown) via a large message reply. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4416 2024-11-21 10:55 2013-11-3 Show GitHub Exploit DB Packet Storm
292037 - spice_project
redhat 		spice
enterprise_linux
enterprise_virtualization 		Stack-based buffer overflow in the reds_handle_ticket function in server/reds.c in SPICE 0.12.0 allows remote attackers to cause a denial of service (crash) via a long password in a SPICE ticket. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4282 2024-11-21 10:55 2013-11-3 Show GitHub Exploit DB Packet Storm
292038 - xen
debian 		xen
debian_linux 		Xen before 4.1.x, 4.2.x, and 4.3.x does not take the page_alloc_lock and grant_table.lock in the same order, which allows local guest administrators with access to multiple vcpus to cause a denial of… CWE-20
 Improper Input Validation  		CVE-2013-4494 2024-11-21 10:55 2013-11-3 Show GitHub Exploit DB Packet Storm
292039 - openstack havana
grizzly
folsom 		OpenStack Compute (Nova) Folsom, Grizzly, and Havana, when use_cow_images is set to False, does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (ho… CWE-399
 Resource Management Errors 		CVE-2013-4469 2024-11-21 10:55 2013-11-3 Show GitHub Exploit DB Packet Storm
292040 - thoughtbot cocaine The Cocaine gem 0.4.0 through 0.5.2 for Ruby allows context-dependent attackers to execute arbitrary commands via a crafted has object, related to recursive variable interpolation. CWE-78
OS Command  		CVE-2013-4457 2024-11-21 10:55 2013-11-3 Show GitHub Exploit DB Packet Storm