Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217361	5	警告	Zarafa	-	Zarafa の provider/libserver/ECSession.cpp の ValidateUserLogon 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-0037	2014-05-1 15:01	2014-01-30	Show	GitHub Exploit DB Packet Storm

217362	2.1	注意	dkorunic	-	PAM S/Key モジュール用の特定の Gentoo パッチにおける重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-4285	2014-05-1 14:51	2013-06-12	Show	GitHub Exploit DB Packet Storm

217363	4.4	警告	zlib.org	-	pigz におけるアクセス権限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0296	2014-05-1 14:17	2013-02-15	Show	GitHub Exploit DB Packet Storm

217364	4.4	警告	Litech Systems Design	-	router advertisement daemon における radvd デーモンを root として実行される脆弱性	CWE-DesignError	CVE-2011-3603	2014-05-1 13:54	2011-10-6	Show	GitHub Exploit DB Packet Storm

217365	6.4	警告	Litech Systems Design	-	router advertisement daemon の device-linux.c におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-3602	2014-05-1 10:00	2011-10-4	Show	GitHub Exploit DB Packet Storm

217366	6.4	警告	OpenJPEG project	-	OpenJPEG におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-6887	2014-04-30 19:20	2013-12-4	Show	GitHub Exploit DB Packet Storm

217367	5	警告	OpenJPEG project	-	OpenJPEG における重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2013-6053	2014-04-30 19:20	2013-12-2	Show	GitHub Exploit DB Packet Storm

217368	10	危険	Fredrik Lundh Python Software Foundation	-	Python Image Library および Pillow における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2014-3007	2014-04-30 18:51	2014-01-29	Show	GitHub Exploit DB Packet Storm

217369	10	危険	Acunetix	-	Acunetix Web Vulnerability Scanner におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-2994	2014-04-30 18:50	2014-04-24	Show	GitHub Exploit DB Packet Storm

217370	6.4	警告	Arti Teknoloji	-	Android 用 Misli.com アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-2992	2014-04-30 18:47	2014-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292001	-	openfabrics	ibacm	ibacm 1.0.7 creates files with world-writable permissions, which allows local users to overwrite the ib_acm daemon log or ibacm.port file.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4518	2024-11-21 10:43	2012-10-23	Show	GitHub Exploit DB Packet Storm

292002	-	openfabrics	ibacm	ibacm before 1.0.6 does not properly manage reference counts for multicast connections, which allows remote attackers to cause a denial of service (ibacm service crash) via a crafted join response.	CWE-399 Resource Management Errors	CVE-2012-4517	2024-11-21 10:43	2012-10-23	Show	GitHub Exploit DB Packet Storm

292003	-	openfabrics	librdmacm	librdmacm 1.0.16, when ibacm.port is not specified, connects to port 6125, which allows remote attackers to specify the address resolution information for the application via a malicious ib_acm servi…	NVD-CWE-Other	CVE-2012-4516	2024-11-21 10:43	2012-10-23	Show	GitHub Exploit DB Packet Storm

292004	-	gnome	libsocialweb	services/flickr/flickr.c in libsocialweb before 0.25.21 automatically connects to Flickr when no Flickr account is set, which might allow remote attackers to obtain sensitive information via a man-in…	CWE-200 Information Exposure	CVE-2012-4511	2024-11-21 10:43	2012-10-23	Show	GitHub Exploit DB Packet Storm

292005	-	claws-mail	claws-mail	The strchr function in procmime.c in Claws Mail (aka claws-mail) 3.8.1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted email.	NVD-CWE-Other	CVE-2012-4507	2024-11-21 10:43	2012-10-23	Show	GitHub Exploit DB Packet Storm

292006	-	sitaram_chamarty gitolite	gitolite	Directory traversal vulnerability in gitolite 3.x before 3.1, when wild card repositories and a pattern matching "../" are enabled, allows remote authenticated users to create arbitrary repositories …	CWE-22 Path Traversal	CVE-2012-4506	2024-11-21 10:43	2012-10-23	Show	GitHub Exploit DB Packet Storm

292007	-	otrs	otrs	Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) Help Desk 2.4.x before 2.4.15, 3.0.x before 3.0.17, and 3.1.x before 3.1.11 allows remote attackers to inject arbitrary w…	CWE-79 Cross-site Scripting	CVE-2012-4751	2024-11-21 10:43	2012-10-23	Show	GitHub Exploit DB Packet Storm

292008	-	novell	zenworks_asset_management	The rtrlet web application in the Web Console in Novell ZENworks Asset Management (ZAM) 7.5 uses a hard-coded username of Ivanhoe and a hard-coded password of Scott for the (1) GetFile_Password and (…	CWE-255 Credentials Management	CVE-2012-4933	2024-11-21 10:43	2012-10-21	Show	GitHub Exploit DB Packet Storm

292009	-	ibm	aix vios	The FTP client in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly manage privileges in an RBAC environment, which allows attackers to bypass intended file-read restrictions by le…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4845	2024-11-21 10:43	2012-10-20	Show	GitHub Exploit DB Packet Storm

292010	-	ibm	db2	Stack-based buffer overflow in the SQL/PSM (aka SQL Persistent Stored Module) Stored Procedure (SP) infrastructure in IBM DB2 9.1, 9.5, 9.7 before FP7, 9.8, and 10.1 might allow remote authenticated …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-4826	2024-11-21 10:43	2012-10-20	Show	GitHub Exploit DB Packet Storm