Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216061 7.2 危険 Fabrice Bellard
Canonical		 - QEMU の vmware-vga ドライバにおける qemu メモリロケーションに書き込まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3689 2014-11-17 16:34 2014-10-15 Show GitHub Exploit DB Packet Storm
216062 4.3 警告 シスコシステムズ - Cisco Unified Communications Manager の Remote Mobile Access Subsystem における VCS core デバイスを偽造される脆弱性 CWE-310
暗号の問題 		CVE-2014-7991 2014-11-17 14:37 2014-11-11 Show GitHub Exploit DB Packet Storm
216063 7.5 危険 Rockwell Automation - Rockwell Automation Connected Components Workbench におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-5424 2014-11-17 14:28 2014-11-11 Show GitHub Exploit DB Packet Storm
216064 10 危険 ヒューレット・パッカード - HP Helion Cloud Development Platform の Application Lifecycle Service における任意のコードを実行される脆弱性 CWE-310
暗号の問題 		CVE-2014-7878 2014-11-17 14:24 2014-11-10 Show GitHub Exploit DB Packet Storm
216065 9 危険 Magmi project - Magento Community Edition 用 MAGMI プラグインの magmi/web/magmi.php における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-8770 2014-11-17 14:07 2014-10-24 Show GitHub Exploit DB Packet Storm
216066 5 警告 GNU Project - GnuTLS の gnutls_ecc.c 内の _gnutls_ecc_ansi_x963_expor 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-310
暗号の問題 		CVE-2014-8564 2014-11-17 13:48 2014-11-10 Show GitHub Exploit DB Packet Storm
216067 4.3 警告 Jexperts - JExperts Channel Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8557 2014-11-17 12:30 2014-10-27 Show GitHub Exploit DB Packet Storm
216068 7.5 危険 MantisBT Group - MantisBT の api/soap/mc_project_api.php の mc_project_get_attachments 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-8554 2014-11-17 12:29 2014-10-30 Show GitHub Exploit DB Packet Storm
216069 2.1 注意 FreeBSD - FreeBSD の setlogin 関数におけるカーネルメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-8476 2014-11-17 12:28 2014-11-4 Show GitHub Exploit DB Packet Storm
216070 5 警告 Open Atrium project - Drupal 用 Open Atrium Core モジュールにおけるアクセス制限を回避される脆弱性 CWE-200
情報漏えい 		CVE-2014-8736 2014-11-14 16:30 2014-10-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294281 - mariadb
oracle 		mariadb
mysql 		MySQL 5.5.19 and possibly other versions, and MariaDB 5.5.28a and possibly other versions, when configured to assign the FILE privilege to users who should not have administrative privileges, allows … CWE-16
Configuration 		CVE-2012-5613 2024-11-21 10:44 2012-12-3 Show GitHub Exploit DB Packet Storm
294282 - mariadb
oracle
suse
canonical 		mariadb
mysql
linux_enterprise_desktop
linux_enterprise_server
linux_enterprise_software_development_kit
ubuntu_linux 		Heap-based buffer overflow in Oracle MySQL 5.5.19 and other versions through 5.5.28, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (m… CWE-787
 Out-of-bounds Write 		CVE-2012-5612 2024-11-21 10:44 2012-12-3 Show GitHub Exploit DB Packet Storm
294283 - apache
opensuse 		tomcat
opensuse 		Apache Tomcat through 7.0.x allows remote attackers to cause a denial of service (daemon outage) via partial HTTP requests, as demonstrated by Slowloris. NVD-CWE-noinfo
CVE-2012-5568 2024-11-21 10:44 2012-12-1 Show GitHub Exploit DB Packet Storm
294284 - kyocera ah-k3001v
xw300k
xw320kr
xw320k
xw310k
ah-k3002v 		The KYOCERA AH-K3001V, AH-K3002V, WX300K, WX310K, WX320K, and WX320KR devices allow remote attackers to cause a denial of service (persistent reboot) via an e-mail message in an invalid format. NVD-CWE-noinfo
CVE-2012-5174 2024-11-21 10:44 2012-11-30 Show GitHub Exploit DB Packet Storm
294285 - sgi performance_co-pilot The (1) pcmd and (2) pmlogger init scripts in Performance Co-Pilot (PCP) before 3.6.10 allow local users to overwrite arbitrary files via a symlink attack on a /var/tmp/##### temporary file. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5530 2024-11-21 10:44 2012-11-29 Show GitHub Exploit DB Packet Storm
294286 - oracle jdk
jre
openjdk 		Oracle Java SE 7 and earlier, and OpenJDK 7 and earlier, computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers… CWE-310
Cryptographic Issues 		CVE-2012-5373 2024-11-21 10:44 2012-11-28 Show GitHub Exploit DB Packet Storm
294287 - rubinius rubinius Rubinius computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) … CWE-310
Cryptographic Issues 		CVE-2012-5372 2024-11-21 10:44 2012-11-28 Show GitHub Exploit DB Packet Storm
294288 - ruby-lang ruby Ruby (aka CRuby) 1.9 before 1.9.3-p327 and 2.0 before r37575 computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attac… CWE-310
Cryptographic Issues 		CVE-2012-5371 2024-11-21 10:44 2012-11-28 Show GitHub Exploit DB Packet Storm
294289 - jruby jruby JRuby computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via… CWE-310
Cryptographic Issues 		CVE-2012-5370 2024-11-21 10:44 2012-11-28 Show GitHub Exploit DB Packet Storm
294290 - google
opensuse 		chrome
opensuse 		Google Chrome before 23.0.1271.91 does not properly perform a cast of an unspecified variable during handling of the INPUT element, which allows remote attackers to cause a denial of service or possi… CWE-20
 Improper Input Validation  		CVE-2012-5136 2024-11-21 10:44 2012-11-28 Show GitHub Exploit DB Packet Storm