Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219361	4.3	警告	Open-Xchange	-	Open-Xchange AppSuite のパスワードリカバリサービスにおける潜在的に有用なパスワードパターンの情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-2391	2014-04-28 15:06	2014-04-8	Show	GitHub Exploit DB Packet Storm

219362	5.5	警告	Xen プロジェクト	-	Xen におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-2915	2014-04-28 14:56	2014-04-22	Show	GitHub Exploit DB Packet Storm

219363	7.5	危険	MODX	-	MODX Revolution における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-2736	2014-04-28 14:43	2014-04-4	Show	GitHub Exploit DB Packet Storm

219364	7.5	危険	レッドハット	-	Red Hat OpenShift Enterprise の openshift-origin-broker における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2014-0188	2014-04-28 14:36	2014-04-23	Show	GitHub Exploit DB Packet Storm

219365	5	警告	Sixnet	-	Sixnet SixView Manager におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-2976	2014-04-28 14:24	2014-04-22	Show	GitHub Exploit DB Packet Storm

219366	6.1	警告	シスコシステムズ	-	Cisco ASR 1000 シリーズのデバイスのソフトウェアにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-5723	2014-04-28 13:58	2012-11-2	Show	GitHub Exploit DB Packet Storm

219367	5	警告	シスコシステムズ	-	Cisco IOS におけるインターフェース ACL 制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3946	2014-04-28 13:58	2012-07-10	Show	GitHub Exploit DB Packet Storm

219368	5	警告	シスコシステムズ	-	Cisco Adaptive Security Appliance ソフトウェアの SIP 検査エンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-2154	2014-04-28 13:57	2014-04-23	Show	GitHub Exploit DB Packet Storm

219369	6.4	警告	Applied Informatics Software Engineering GmbH	-	POCO C++ Libraries の NetSSL ライブラリにおけるワイルドカード証明書を適切に検証しない脆弱性	-	CVE-2014-0350	2014-04-28 12:53	2014-04-24	Show	GitHub Exploit DB Packet Storm

219370	4.3	警告	OTRS プロジェクト Novell	-	OTRS におけるクリックジャッキング攻撃を実行される脆弱性	CWE-20 不適切な入力確認	CVE-2014-2554	2014-04-28 12:03	2014-04-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291941	-	microsoft	word_viewer word	Microsoft Word 2003 SP3 and Word Viewer allow remote attackers to execute arbitrary code via crafted shape data in a Word document, aka "Word Shape Corruption Vulnerability."	CWE-94 Code Injection	CVE-2013-1335	2024-11-21 10:49	2013-05-15	Show	GitHub Exploit DB Packet Storm

291942	-	microsoft	windows_server_2008 windows_rt windows_xp windows_8 windows_7 windows_server_2003 windows_vista windows_server_2012	win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 201…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-1334	2024-11-21 10:49	2013-05-15	Show	GitHub Exploit DB Packet Storm

291943	-	microsoft	windows_7	Buffer overflow in win32k.sys in the kernel-mode drivers in Microsoft Windows 7 SP1 allows local users to gain privileges via a crafted application that leverages improper handling of objects in memo…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-1333	2024-11-21 10:49	2013-05-15	Show	GitHub Exploit DB Packet Storm

291944	-	microsoft	windows_server_2008 windows_rt windows_7 windows_8 windows_vista windows_server_2012	dxgkrnl.sys (aka the DirectX graphics kernel subsystem) in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, a…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-1332	2024-11-21 10:49	2013-05-15	Show	GitHub Exploit DB Packet Storm

291945	-	microsoft	publisher	Integer signedness error in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers a buffer underflow, aka "Publisher Buffer Underfl…	CWE-189 Numeric Errors	CVE-2013-1329	2024-11-21 10:49	2013-05-15	Show	GitHub Exploit DB Packet Storm

291946	-	microsoft	publisher	Microsoft Publisher 2003 SP3, 2007 SP3, and 2010 SP1 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers incorrect pointer handling, aka "Publisher Pointer Ha…	NVD-CWE-Other	CVE-2013-1328	2024-11-21 10:49	2013-05-15	Show	GitHub Exploit DB Packet Storm

291947	-	microsoft	publisher	Integer signedness error in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers an improper memory allocation, aka "Publisher Sig…	CWE-189 Numeric Errors	CVE-2013-1327	2024-11-21 10:49	2013-05-15	Show	GitHub Exploit DB Packet Storm

291948	-	microsoft	publisher	Microsoft Publisher 2003 SP3 does not properly handle NULL values for unspecified data items, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Inco…	CWE-94 Code Injection	CVE-2013-1323	2024-11-21 10:49	2013-05-15	Show	GitHub Exploit DB Packet Storm

291949	-	microsoft	publisher	Microsoft Publisher 2003 SP3 does not properly check table range data, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Invalid Range Check Vulnera…	NVD-CWE-Other	CVE-2013-1322	2024-11-21 10:49	2013-05-15	Show	GitHub Exploit DB Packet Storm

291950	-	microsoft	publisher	Microsoft Publisher 2003 SP3 does not properly check the data type of an unspecified return value, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher…	CWE-20 Improper Input Validation	CVE-2013-1321	2024-11-21 10:49	2013-05-15	Show	GitHub Exploit DB Packet Storm