Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216301 5 警告 マイクロソフト - Microsoft Lync Server 2013 のサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-4071 2014-09-11 11:10 2014-09-9 Show GitHub Exploit DB Packet Storm
216302 4.3 警告 マイクロソフト - Microsoft Lync Server 2013 の Web コンポーネントサーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4070 2014-09-11 11:10 2014-09-9 Show GitHub Exploit DB Packet Storm
216303 5 警告 マイクロソフト - Microsoft Lync Server 2010 および 2013 におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-4068 2014-09-11 11:09 2014-09-9 Show GitHub Exploit DB Packet Storm
216304 6.8 警告 マイクロソフト - 複数の Microsoft Windows 製品のタスクスケジューラにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-4074 2014-09-11 10:41 2014-09-9 Show GitHub Exploit DB Packet Storm
216305 5 警告 マイクロソフト - Microsoft .NET Framework におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-4072 2014-09-11 10:41 2014-09-9 Show GitHub Exploit DB Packet Storm
216306 4.3 警告 oVirt - oVirt の REST API における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-0153 2014-09-10 12:28 2014-04-16 Show GitHub Exploit DB Packet Storm
216307 6.8 警告 oVirt - oVirt の Web 管理インターフェースにおける Web セッションをハイジャックされる脆弱性 CWE-Other
その他 		CVE-2014-0152 2014-09-10 12:20 2014-04-8 Show GitHub Exploit DB Packet Storm
216308 7.5 危険 TIBCO Software - TIBCO Spotfire Server の Authentication モジュールにおける権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-5285 2014-09-9 16:25 2014-09-3 Show GitHub Exploit DB Packet Storm
216309 5 警告 ARRIS Group - Arris 製ケーブルモデム Touchstone DG950A に情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2014-4863 2014-09-9 16:22 2014-09-4 Show GitHub Exploit DB Packet Storm
216310 5 警告 Netmaster - Netmaster 製ケーブルモデム CBW700N における情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2014-4862 2014-09-9 16:22 2014-09-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294971 - thekelleys
redhat 		dnsmasq
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation 		Dnsmasq before 2.63test1, when used with certain libvirt configurations, replies to requests from prohibited interfaces, which allows remote attackers to cause a denial of service (traffic amplificat… CWE-20
 Improper Input Validation  		CVE-2012-3411 2024-11-21 10:40 2013-03-6 Show GitHub Exploit DB Packet Storm
294972 - ibm change_and_configuration_management_database
tivoli_service_request_manager
tivoli_asset_management_for_it
maximo_asset_management
maximo_asset_management_essentials 		Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1, Maximo Asset Management Essentials 7.1, Tivoli Asset Management for IT 7.1 and 7.2, Tivoli Service Request Manager 7.1 and… CWE-79
Cross-site Scripting 		CVE-2012-3328 2024-11-21 10:40 2013-02-20 Show GitHub Exploit DB Packet Storm
294973 - ibm smartcloud_control_desk IBM SmartCloud Control Desk 7.5 allows remote authenticated users to bypass intended access restrictions via vectors involving an expired password. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3321 2024-11-21 10:40 2013-02-20 Show GitHub Exploit DB Packet Storm
294974 - ibm maximo_asset_management
maximo_asset_management_essentials
tivoli_asset_management_for_it
tivoli_service_request_manager
maximo_service_desk
change_and_configuration_management_databas… 		Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 6.2 through 7.5, Maximo Asset Management Essentials 6.2 through 7.5, Tivoli Asset Management for IT 6.2 through 7.2, Tivoli Ser… CWE-79
Cross-site Scripting 		CVE-2012-3327 2024-11-21 10:40 2013-02-20 Show GitHub Exploit DB Packet Storm
294975 - ibm maximo_asset_management
maximo_asset_management_essentials
tivoli_asset_management_for_it
tivoli_service_request_manager
maximo_service_desk
change_and_configuration_management_databas… 		Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 6.2 through 7.5, Maximo Asset Management Essentials 6.2 through 7.5, Tivoli Asset Management for IT 6.2 through 7.2, Tivoli Ser… CWE-79
Cross-site Scripting 		CVE-2012-3322 2024-11-21 10:40 2013-02-20 Show GitHub Exploit DB Packet Storm
294976 - ibm maximo_asset_management
maximo_asset_management_essentials
tivoli_asset_management_for_it
tivoli_service_request_manager
maximo_service_desk
change_and_configuration_management_databas… 		Cross-site scripting (XSS) vulnerability in the Tivoli Process Automation Engine (TPAE) in IBM Maximo Asset Management 6.2 through 7.5, Maximo Asset Management Essentials 6.2 through 7.5, Tivoli Asse… CWE-79
Cross-site Scripting 		CVE-2012-3316 2024-11-21 10:40 2013-02-20 Show GitHub Exploit DB Packet Storm
294977 - hp arcsight_connector_appliance_firmware
arcsight_connector_appliance
arcsight_logger 		Unspecified vulnerability in HP ArcSight Connector Appliance 6.3 and earlier and ArcSight Logger 5.2 and earlier allows remote authenticated users to obtain sensitive information, modify data, or cau… NVD-CWE-noinfo
CVE-2012-3286 2024-11-21 10:40 2013-02-17 Show GitHub Exploit DB Packet Storm
294978 - hp nonstop_server_software
nonstop_server 		Multiple unspecified vulnerabilities on HP NonStop Servers H06.x and J06.x allow remote authenticated users to obtain sensitive information, modify data, or cause a denial of service via an OSS Remot… NVD-CWE-noinfo
CVE-2012-3280 2024-11-21 10:40 2013-02-14 Show GitHub Exploit DB Packet Storm
294979 9.1 CRITICAL
Network 		zend
fedoraproject
debian 		zend_framework
fedora
debian_linux 		Zend_XmlRpc in Zend Framework 1.x before 1.11.12 and 1.12.x before 1.12.0 does not properly handle SimpleXMLElement classes, which allows remote attackers to read arbitrary files or create TCP connec… CWE-611
XXE 		CVE-2012-3363 2024-11-21 10:40 2013-02-14 Show GitHub Exploit DB Packet Storm
294980 - hp san\/iq
lefthand_p4000_virtual_san_appliance 		Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1513. NVD-CWE-noinfo
CVE-2012-3285 2024-11-21 10:40 2013-02-6 Show GitHub Exploit DB Packet Storm