Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218971 5 警告 SAP - SAP NetWeaver の Portal WebDynPro における重要なパス情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-1961 2014-02-19 13:50 2014-01-25 Show GitHub Exploit DB Packet Storm
218972 5 警告 SAP - SAP NetWeaver の Solution Manager における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1960 2014-02-19 13:49 2014-01-25 Show GitHub Exploit DB Packet Storm
218973 5.8 警告 Ryan O'Hara - Piranha の Piranha Configuration Tool における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6492 2014-02-19 13:36 2013-12-13 Show GitHub Exploit DB Packet Storm
218974 7.2 危険 Linux Containers - LXC の lxc-sshd テンプレートにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6441 2014-02-19 12:18 2013-12-18 Show GitHub Exploit DB Packet Storm
218975 4.3 警告 Django Software Foundation - Django の utils/http.py 内の is_safe_url 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6044 2014-02-18 18:16 2013-08-13 Show GitHub Exploit DB Packet Storm
218976 5 警告 IBM
オラクル		 - Oracle Java SE および Java SE Embedded における JAXP に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-5851 2014-02-18 18:14 2013-10-15 Show GitHub Exploit DB Packet Storm
218977 4 警告 Linux - Linux Kernel の virt/kvm/kvm_main.c の __kvm_set_memory_region 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-4592 2014-02-18 18:13 2013-11-18 Show GitHub Exploit DB Packet Storm
218978 4.3 警告 レッドハット - Red Hat JBoss Fuse および JBoss A-MQ におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4372 2014-02-18 18:03 2013-09-26 Show GitHub Exploit DB Packet Storm
218979 1.5 注意 Xen プロジェクト - Xen におけるハイパーバイザのスタックメモリを取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-4355 2014-02-18 17:53 2013-09-30 Show GitHub Exploit DB Packet Storm
218980 5.8 警告 Linux
Fedora Project
レッドハット		 - Linux Kernel の crypto/ansi_cprng.c の get_prng_bytes 関数における暗号保護メカニズムを破られる脆弱性 CWE-189
数値処理の問題 		CVE-2013-4345 2014-02-18 17:48 2013-09-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295191 - apple mac_os_x
mac_os_x_server 		Integer overflow in QuickTime in Apple Mac OS X before 10.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MPEG file. CWE-189
Numeric Errors 		CVE-2012-0659 2024-11-21 10:35 2012-05-11 Show GitHub Exploit DB Packet Storm
295192 - apple mac_os_x
mac_os_x_server 		Buffer overflow in QuickTime in Apple Mac OS X before 10.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted audio sample tables in a mo… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-0658 2024-11-21 10:35 2012-05-11 Show GitHub Exploit DB Packet Storm
295193 - apple mac_os_x
mac_os_x_server 		Quartz Composer in Apple Mac OS X before 10.7.4, when the RSS Visualizer screensaver is enabled, allows physically proximate attackers to bypass screen locking and launch a Safari process via unspeci… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-0657 2024-11-21 10:35 2012-05-11 Show GitHub Exploit DB Packet Storm
295194 - apple mac_os_x Race condition in LoginUIFramework in Apple Mac OS X 10.7.x before 10.7.4, when the Guest account is enabled, allows physically proximate attackers to login to arbitrary accounts by entering the acco… CWE-362
Race Condition 		CVE-2012-0656 2024-11-21 10:35 2012-05-11 Show GitHub Exploit DB Packet Storm
295195 - apple mac_os_x
mac_os_x_server 		libsecurity in Apple Mac OS X before 10.7.4 does not properly restrict the length of RSA keys within X.509 certificates, which makes it easier for remote attackers to defeat cryptographic protection … CWE-310
Cryptographic Issues 		CVE-2012-0655 2024-11-21 10:35 2012-05-11 Show GitHub Exploit DB Packet Storm
295196 - apple mac_os_x
mac_os_x_server 		libsecurity in Apple Mac OS X before 10.7.4 accesses uninitialized memory locations during the processing of X.509 certificates, which allows remote attackers to execute arbitrary code or cause a den… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-0654 2024-11-21 10:35 2012-05-11 Show GitHub Exploit DB Packet Storm
295197 - apple mac_os_x Login Window in Apple Mac OS X 10.7.3, when Legacy File Vault or networked home directories are enabled, does not properly restrict what is written to the system log for network logins, which allows … CWE-200
Information Exposure 		CVE-2012-0652 2024-11-21 10:35 2012-05-11 Show GitHub Exploit DB Packet Storm
295198 - apple mac_os_x
mac_os_x_server 		The directory server in Directory Service in Apple Mac OS X 10.6.8 allows remote attackers to obtain sensitive information from process memory via a crafted message. CWE-200
Information Exposure 		CVE-2012-0651 2024-11-21 10:35 2012-05-11 Show GitHub Exploit DB Packet Storm
295199 - apple mac_os_x
mac_os_x_server 		Race condition in the initialization routine in blued in Bluetooth in Apple Mac OS X before 10.7.4 allows local users to gain privileges via vectors involving a temporary file. CWE-362
Race Condition 		CVE-2012-0649 2024-11-21 10:35 2012-05-11 Show GitHub Exploit DB Packet Storm
295200 - xnview xnview Integer overflow in XnViewer (aka XnView) before 1.98.5 allows remote attackers to execute arbitrary code via a crafted file containing PSD record types, a different vulnerability than CVE-2012-0684. CWE-189
Numeric Errors 		CVE-2012-0685 2024-11-21 10:35 2012-05-9 Show GitHub Exploit DB Packet Storm