Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 2:21 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217381 7.8 危険 Google - 複数の OS 上で稼働する Google Chrome で使用される Google V8 におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1730 2014-04-30 15:02 2014-04-24 Show GitHub Exploit DB Packet Storm
217382 4 警告 シスコシステムズ - Cisco Unified Communications Manager の Call Detail Records Management コンポーネントにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-2185 2014-04-30 14:29 2014-04-29 Show GitHub Exploit DB Packet Storm
217383 5 警告 シスコシステムズ - Cisco Unified Communications Manager の IP Manager Assistant コンポーネントにおける重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2184 2014-04-30 14:27 2014-04-29 Show GitHub Exploit DB Packet Storm
217384 6.3 警告 シスコシステムズ - ASR 1000 ルータ上で稼働する Cisco IOS XE の L2TP モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2183 2014-04-30 14:26 2014-04-28 Show GitHub Exploit DB Packet Storm
217385 6.1 警告 シスコシステムズ - Cisco Adaptive Security Appliance ソフトウェアにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2182 2014-04-30 14:25 2014-04-29 Show GitHub Exploit DB Packet Storm
217386 4 警告 シスコシステムズ - Cisco Unified Contact Center Express の Document Management コンポーネントにおけるファイルをアップロードされる脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2180 2014-04-30 14:24 2014-04-29 Show GitHub Exploit DB Packet Storm
217387 5.8 警告 シーメンス - Siemens SIMATIC S7-1200 CPU デバイスの統合 Web サーバにおける CRLF インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2014-2909 2014-04-28 18:47 2014-04-24 Show GitHub Exploit DB Packet Storm
217388 4.3 警告 シーメンス - Siemens SIMATIC S7-1200 CPU デバイスの統合 Web サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2908 2014-04-28 18:46 2014-04-24 Show GitHub Exploit DB Packet Storm
217389 6.8 警告 Debian - ppthtml の __OLEdecode 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4565 2014-04-28 18:26 2013-11-11 Show GitHub Exploit DB Packet Storm
217390 3.5 注意 ネットギア - NETGEAR WNDR4700 のファームウェアにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3069 2014-04-28 18:25 2013-07-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292151 - apple iphone_os Mail in Apple iOS before 6 does not properly handle reuse of Content-ID header values, which allows remote attackers to spoof attachments via a header value that was also used in a previous e-mail me… NVD-CWE-Other
CVE-2012-3730 2024-11-21 10:41 2012-09-21 Show GitHub Exploit DB Packet Storm
292152 - apple iphone_os The Berkeley Packet Filter (BPF) interpreter implementation in the kernel in Apple iOS before 6 accesses uninitialized memory locations, which allows local users to obtain sensitive information about… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3729 2024-11-21 10:41 2012-09-21 Show GitHub Exploit DB Packet Storm
292153 - apple iphone_os The kernel in Apple iOS before 6 dereferences invalid pointers during the handling of packet-filter data structures, which allows local users to gain privileges via a crafted program that makes packe… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3728 2024-11-21 10:41 2012-09-21 Show GitHub Exploit DB Packet Storm
292154 - apple iphone_os Buffer overflow in the IPsec component in Apple iOS before 6 allows remote attackers to execute arbitrary code via a crafted racoon configuration file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3727 2024-11-21 10:41 2012-09-21 Show GitHub Exploit DB Packet Storm
292155 - apple iphone_os Double free vulnerability in ImageIO in Apple iOS before 6 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JPEG image. CWE-399
 Resource Management Errors 		CVE-2012-3726 2024-11-21 10:41 2012-09-21 Show GitHub Exploit DB Packet Storm
292156 - apple iphone_os The DNAv4 protocol implementation in the DHCP component in Apple iOS before 6 sends Wi-Fi packets containing a MAC address of a host on a previously used network, which might allow remote attackers t… CWE-200
Information Exposure 		CVE-2012-3725 2024-11-21 10:41 2012-09-21 Show GitHub Exploit DB Packet Storm
292157 - apple iphone_os CFNetwork in Apple iOS before 6 does not properly identify the host portion of a URL, which allows remote attackers to obtain sensitive information by leveraging the construction of an HTTP request w… CWE-200
Information Exposure 		CVE-2012-3724 2024-11-21 10:41 2012-09-21 Show GitHub Exploit DB Packet Storm
292158 - apple mac_os_x
mac_os_x_server 		Apple Mac OS X before 10.7.5 does not properly handle the bNbrPorts field of a USB hub descriptor, which allows physically proximate attackers to execute arbitrary code or cause a denial of service (… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3723 2024-11-21 10:41 2012-09-21 Show GitHub Exploit DB Packet Storm
292159 - apple mac_os_x
mac_os_x_server
iphone_os 		The Sorenson codec in QuickTime in Apple Mac OS X before 10.7.5, and in CoreMedia in iOS before 6, accesses uninitialized memory locations, which allows remote attackers to execute arbitrary code or … CWE-399
 Resource Management Errors 		CVE-2012-3722 2024-11-21 10:41 2012-09-21 Show GitHub Exploit DB Packet Storm
292160 - apple mac_os_x Profile Manager in Apple Mac OS X before 10.7.5 does not properly perform authentication for the Device Management private interface, which allows attackers to enumerate managed devices via unspecifi… CWE-287
Improper Authentication 		CVE-2012-3721 2024-11-21 10:41 2012-09-21 Show GitHub Exploit DB Packet Storm