Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218351 7.5 危険 PaperThin - PaperThin CommonSpot におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2859 2014-04-21 19:01 2014-04-14 Show GitHub Exploit DB Packet Storm
218352 4 警告 コクヨS&T株式会社 - Android 版 CamiApp における Content Provider のアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1986 2014-04-21 18:31 2014-04-14 Show GitHub Exploit DB Packet Storm
218353 2.1 注意 PackageKit Project - PackageKit の Zypper バックエンドにおけるパッケージをダウングレードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1764 2014-04-21 18:28 2013-05-8 Show GitHub Exploit DB Packet Storm
218354 4.6 警告 bzip.org - bzip2 の bzexe コマンドにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4089 2014-04-21 17:56 2011-12-4 Show GitHub Exploit DB Packet Storm
218355 7.5 危険 Novell - SUSE Studio Onsite および SUSE Studio Extension for System z で使用される KIWI における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2011-4195 2014-04-21 17:27 2011-12-15 Show GitHub Exploit DB Packet Storm
218356 4.3 警告 Novell - SUSE Studio Onsite および SUSE Studio Extension for System z のオーバーレイファイルタブにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4193 2014-04-21 17:25 2011-12-15 Show GitHub Exploit DB Packet Storm
218357 7.5 危険 Novell - SUSE Studio Onsite および SUSE Studio Extension for System z で使用される KIWI における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2011-4192 2014-04-21 17:24 2011-12-15 Show GitHub Exploit DB Packet Storm
218358 7.5 危険 Novell - SUSE Studio Onsite および SUSE Studio Extension for System z で使用される KIWI における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2011-3180 2014-04-21 17:23 2011-12-15 Show GitHub Exploit DB Packet Storm
218359 2.1 注意 Novell - SUSE Lifecycle Management Server における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-0993 2014-04-21 17:22 2011-04-19 Show GitHub Exploit DB Packet Storm
218360 5 警告 Eucalyptus Systems - Eucalyptus の Web サービス API におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4768 2014-04-21 15:52 2014-02-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291621 - xen xen The do_hvm_op function in xen/arch/x86/hvm/hvm.c in Xen 4.2.x on the x86_32 platform does not prevent HVM_PARAM_NESTEDHVM (aka nested virtualization) operations, which allows guest OS users to cause … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0151 2024-11-21 10:46 2013-03-7 Show GitHub Exploit DB Packet Storm
291622 - ryan_davis ruby_parser The diff_pp function in lib/gauntlet_rubyparser.rb in the ruby_parser gem 3.1.1 and earlier for Ruby allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a pr… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0162 2024-11-21 10:46 2013-03-1 Show GitHub Exploit DB Packet Storm
291623 - redhat openshift
openshift_origin 		The lockwrap function in port-proxy/bin/openshift-port-proxy-cfg in Red Hat OpenShift Origin before 1.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0164 2024-11-21 10:46 2013-02-25 Show GitHub Exploit DB Packet Storm
291624 - cloudbees
jenkins 		jenkins Unspecified vulnerability in Jenkins before 1.498, Jenkins LTS before 1.480.2, and Jenkins Enterprise 1.447.x before 1.447.6.1 and 1.466.x before 1.466.12.1, when a slave is attached and anonymous re… NVD-CWE-noinfo
CVE-2013-0158 2024-11-21 10:46 2013-02-25 Show GitHub Exploit DB Packet Storm
291625 - dell powerconnect_6248p The web interface on Dell PowerConnect 6248P switches allows remote attackers to cause a denial of service (device crash) via a malformed request. CWE-20
 Improper Input Validation  		CVE-2013-0120 2024-11-21 10:46 2013-02-24 Show GitHub Exploit DB Packet Storm
291626 - cs-cart cs-cart CS-Cart before 3.0.6, when PayPal Standard Payments is configured, allows remote attackers to set the payment recipient via a modified value of the merchant's e-mail address, as demonstrated by setti… CWE-16
Configuration 		CVE-2013-0118 2024-11-21 10:46 2013-02-24 Show GitHub Exploit DB Packet Storm
291627 - nuance pdf_reader
pdf_reader_plus 		Nuance PDF Reader 7.0 and PDF Viewer Plus 7.1 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-0113 2024-11-21 10:46 2013-02-24 Show GitHub Exploit DB Packet Storm
291628 - honeywell enterprise_buildings_integrator
symmetre
comfortpoint_open_manager_station 		An ActiveX control in HscRemoteDeploy.dll in Honeywell Enterprise Buildings Integrator (EBI) R310, R400.2, R410.1, and R410.2; SymmetrE R310, R410.1, and R410.2; ComfortPoint Open Manager (aka CPO-M)… CWE-94
Code Injection 		CVE-2013-0108 2024-11-21 10:46 2013-02-24 Show GitHub Exploit DB Packet Storm
291629 - vmware vcenter_server
vcenter_server_appliance 		VMware vCenter Server 4.1 before Update 3 and 5.0 before Update 2, and vCSA 5.0 before Update 2, allows remote attackers to cause a denial of service (disk consumption) via vectors that trigger large… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-6326 2024-11-21 10:46 2013-02-23 Show GitHub Exploit DB Packet Storm
291630 - ibm maximo_asset_management_essentials
smartcloud_control_desk
maximo_asset_management 		IBM Maximo Asset Management 7.5, Maximo Asset Management Essentials 7.5, and SmartCloud Control Desk 7.5 allow remote authenticated users to gain privileges and bypass intended restrictions on asset-… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-6357 2024-11-21 10:46 2013-02-20 Show GitHub Exploit DB Packet Storm