Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216571 6.5 警告 レッドハット - Red Hat OpenShift Enterprise および OpenShift Origin における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-0233 2014-11-18 15:06 2013-05-21 Show GitHub Exploit DB Packet Storm
216572 6.4 警告 Zend Technologies Ltd. - ZendOpenId の Consumer コンポーネントの GenericConsumer クラスおよび Zend Framework の Zend_OpenId_Consumer クラスにおける認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2684 2014-11-18 12:47 2014-04-3 Show GitHub Exploit DB Packet Storm
216573 5 警告 Zend Technologies Ltd. - 複数の Zend 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-2683 2014-11-18 12:46 2014-04-3 Show GitHub Exploit DB Packet Storm
216574 6.8 警告 Zend Technologies Ltd. - 複数の Zend 製品における XML 外部エンティティ攻撃を実行される脆弱性 CWE-Other
その他 		CVE-2014-2682 2014-11-18 12:46 2014-04-3 Show GitHub Exploit DB Packet Storm
216575 6.4 警告 Zend Technologies Ltd. - 複数の Zend 製品における任意のファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2014-2681 2014-11-18 12:46 2014-04-3 Show GitHub Exploit DB Packet Storm
216576 6.1 警告 シスコシステムズ - Cisco Aironet アクセスポイント上で稼働する Cisco IOS の DHCP の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-7997 2014-11-18 11:38 2014-11-17 Show GitHub Exploit DB Packet Storm
216577 7.1 危険 シスコシステムズ - Cisco Aironet アクセスポイント上で稼働する Cisco IOS におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-7998 2014-11-18 11:37 2014-11-17 Show GitHub Exploit DB Packet Storm
216578 4.6 警告 Fabrice Bellard - QEMU の ACPI PCI hotplug インターフェースの pci_read 関数における重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2014-5388 2014-11-18 10:37 2014-08-24 Show GitHub Exploit DB Packet Storm
216579 4.3 警告 IBM - IBM Security Access Manager for Web および Security Access Manager for Mobile におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6079 2014-11-17 16:54 2014-09-29 Show GitHub Exploit DB Packet Storm
216580 3.5 注意 IBM - IBM FileNet Content Manager および Content Foundation におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-4763 2014-11-17 16:53 2014-08-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291471 7.8 HIGH
Local 		redhat openshift (1) oo-analytics-export and (2) oo-analytics-import in the openshift-origin-broker-util package in Red Hat OpenShift Enterprise 1 and 2 allow local users to have unspecified impact via a symlink atta… CWE-59
Link Following 		CVE-2013-4364 2024-11-21 10:55 2018-01-9 Show GitHub Exploit DB Packet Storm
291472 5.3 MEDIUM
Network 		oracle jre
jdk 		jarsigner in OpenJDK and Oracle Java SE before 7u51 allows remote attackers to bypass a code-signing protection mechanism and inject unsigned bytecode into a signed JAR file by leveraging improper fi… CWE-74
Injection 		CVE-2013-4578 2024-11-21 10:55 2017-12-30 Show GitHub Exploit DB Packet Storm
291473 9.8 CRITICAL
Network 		apache httpclient http/impl/client/HttpClientBuilder.java in Apache HttpClient 4.3.x before 4.3.1 does not ensure that X509HostnameVerifier is not null, which allows attackers to have unspecified impact via vectors in… CWE-20
 Improper Input Validation  		CVE-2013-4366 2024-11-21 10:55 2017-10-31 Show GitHub Exploit DB Packet Storm
291474 8.8 HIGH
Network 		apache subversion libsvn_fs_fs/fs_fs.c in Apache Subversion 1.8.x before 1.8.2 might allow remote authenticated users with commit access to corrupt FSFS repositories and cause a denial of service or obtain sensitive i… CWE-284
Improper Access Control 		CVE-2013-4246 2024-11-21 10:55 2017-10-30 Show GitHub Exploit DB Packet Storm
291475 6.2 MEDIUM
Local 		oracle
linux 		linux
linux_kernel 		The Linux kernel before 4.4.1 allows local users to bypass file-descriptor limits and cause a denial of service (memory consumption) by sending each descriptor over a UNIX socket before closing it, r… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4312 2024-11-21 10:55 2016-02-8 Show GitHub Exploit DB Packet Storm
291476 - pwgen_project pwgen Password Generator (aka Pwgen) before 2.07 uses weak pseudo generated numbers when /dev/urandom is unavailable, which makes it easier for context-dependent attackers to guess the numbers. CWE-310
Cryptographic Issues 		CVE-2013-4442 2024-11-21 10:55 2014-12-20 Show GitHub Exploit DB Packet Storm
291477 - pwgen_project pwgen Password Generator (aka Pwgen) before 2.07 generates weak non-tty passwords, which makes it easier for context-dependent attackers to guess the password via a brute-force attack. CWE-255
Credentials Management 		CVE-2013-4440 2024-11-21 10:55 2014-12-20 Show GitHub Exploit DB Packet Storm
291478 - redhat libvirt The remoteClientFreeFunc function in daemon/remote.c in libvirt before 1.1.3, when ACLs are used, does not set an identity, which causes event handler removal to be denied and remote attackers to cau… NVD-CWE-Other
CVE-2013-4399 2024-11-21 10:55 2014-12-13 Show GitHub Exploit DB Packet Storm
291479 - qemu qemu The virtio_scsi_load_request function in hw/scsi/scsi-bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, which triggers an out-of-bounds arr… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4542 2024-11-21 10:55 2014-11-5 Show GitHub Exploit DB Packet Storm
291480 - qemu qemu The usb_device_post_load function in hw/usb/bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, related to a negative setup_len or setup_inde… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4541 2024-11-21 10:55 2014-11-5 Show GitHub Exploit DB Packet Storm