Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220061 6.8 警告 マイクロソフト - 複数の Microsoft Windows 製品のグループポリシーの実装における重要な認証情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-1812 2014-05-15 14:25 2014-05-13 Show GitHub Exploit DB Packet Storm
220062 6.8 警告 マイクロソフト - Microsoft Office の MSCOMCTL ライブラリにおける ASLR 保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1809 2014-05-15 14:25 2014-05-13 Show GitHub Exploit DB Packet Storm
220063 4.3 警告 マイクロソフト - Microsoft Office 2013 における重要なトークン情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-1808 2014-05-15 14:24 2014-05-13 Show GitHub Exploit DB Packet Storm
220064 4.3 警告 マイクロソフト - 複数の Microsoft 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1754 2014-05-15 14:21 2014-05-13 Show GitHub Exploit DB Packet Storm
220065 9 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-0251 2014-05-15 14:21 2014-05-13 Show GitHub Exploit DB Packet Storm
220066 5 警告 Haxx
アップル
Canonical		 - cURL および libcurl の cookie.c における Cookie を盗まれる脆弱性 CWE-200
情報漏えい 		CVE-2013-1944 2014-05-14 18:45 2013-04-12 Show GitHub Exploit DB Packet Storm
220067 4.3 警告 FreeType Project - FreeType の _bdf_parse_glyphs 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5670 2014-05-14 18:44 2012-12-20 Show GitHub Exploit DB Packet Storm
220068 4.3 警告 FreeType Project - FreeType の _bdf_parse_glyphs 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5669 2014-05-14 18:43 2012-12-20 Show GitHub Exploit DB Packet Storm
220069 4.3 警告 FreeType Project - FreeType におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5668 2014-05-14 18:43 2012-12-20 Show GitHub Exploit DB Packet Storm
220070 4.6 警告 サイバートラスト株式会社
XScreenSaver project
レッドハット		 - XScreenSaver のクラッシュによりスクリーンロックが解除される問題 CWE-287
不適切な認証 		CVE-2007-1859 2014-05-14 18:41 2007-05-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291791 - cisco adaptive_security_appliance_software The IPsec implementation in Cisco Adaptive Security Appliance (ASA) Software 9.1 before 9.1(1.7), when an IPsec VPN tunnel is enabled, allows remote attackers to cause a denial of service (device rel… CWE-310
Cryptographic Issues 		CVE-2013-5507 2024-11-21 10:57 2013-10-13 Show GitHub Exploit DB Packet Storm
291792 - cisco firewall_services_module_software The authorization functionality in Cisco Firewall Services Module (FWSM) 3.1.x and 3.2.x before 3.2(25) and 4.x before 4.1(13), when multiple-context mode is enabled, allows local users to read or mo… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-5506 2024-11-21 10:57 2013-10-13 Show GitHub Exploit DB Packet Storm
291793 - cisco unified_ip_phones_9900_series_firmware
unified_ip_phone_9951
unified_ip_phone_9971 		The image-upgrade functionality on Cisco 9900 Unified IP phones allows local users to gain privileges by placing shell commands in an unspecified parameter, aka Bug ID CSCuh10334. CWE-20
 Improper Input Validation  		CVE-2013-5533 2024-11-21 10:57 2013-10-11 Show GitHub Exploit DB Packet Storm
291794 - cisco unified_ip_phones_9900_series_firmware
unified_ip_phone_9951
unified_ip_phone_9971 		Buffer overflow in the web-application interface on Cisco 9900 IP phones allows remote attackers to cause a denial of service (webapp interface outage) via long values in unspecified fields, aka Bug … CWE-20
 Improper Input Validation  		CVE-2013-5532 2024-11-21 10:57 2013-10-11 Show GitHub Exploit DB Packet Storm
291795 - cisco unified_communications_manager Directory traversal vulnerability in the Tomcat administrative web interface in Cisco Unified Communications Manager allows remote authenticated users to read arbitrary files via directory traversal … CWE-22
Path Traversal 		CVE-2013-5528 2024-11-21 10:57 2013-10-11 Show GitHub Exploit DB Packet Storm
291796 - cisco ios
ios_xe 		The OSPF functionality in Cisco IOS and IOS XE allows remote attackers to cause a denial of service (device reload) via crafted options in an LSA type 11 packet, aka Bug ID CSCui21030. CWE-20
 Improper Input Validation  		CVE-2013-5527 2024-11-21 10:57 2013-10-10 Show GitHub Exploit DB Packet Storm
291797 - cisco unified_ip_phone_9951
unified_ip_phone_9971 		Cisco 9900 fourth-generation IP phones do not properly perform SDP negotiation, which allows remote attackers to cause a denial of service (device reboot) via crafted SDP packets, aka Bug ID CSCuf066… CWE-20
 Improper Input Validation  		CVE-2013-5526 2024-11-21 10:57 2013-10-10 Show GitHub Exploit DB Packet Storm
291798 - cisco identity_services_engine_software SQL injection vulnerability in the web framework in Cisco Identity Services Engine (ISE) 1.2 and earlier allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, a… CWE-89
SQL Injection 		CVE-2013-5525 2024-11-21 10:57 2013-10-10 Show GitHub Exploit DB Packet Storm
291799 - cisco identity_services_engine_software Cross-site scripting (XSS) vulnerability in the troubleshooting page in Cisco Identity Services Engine (ISE) 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an unsp… CWE-79
Cross-site Scripting 		CVE-2013-5524 2024-11-21 10:57 2013-10-10 Show GitHub Exploit DB Packet Storm
291800 - cisco identity_services_engine_software The Sponsor Portal in Cisco Identity Services Engine (ISE) 1.2 and earlier does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attack… CWE-20
 Improper Input Validation  		CVE-2013-5523 2024-11-21 10:57 2013-10-10 Show GitHub Exploit DB Packet Storm