Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220171 4.9 警告 Linux - Linux Kernel の drivers/block/floppy.c の raw_cmd_copyout 関数における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1738 2014-08-6 10:54 2014-05-5 Show GitHub Exploit DB Packet Storm
220172 7.2 危険 Linux - Linux Kernel の drivers/block/floppy.c の raw_cmd_copyin 関数における kfree 操作を誘発される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1737 2014-08-6 10:53 2014-05-5 Show GitHub Exploit DB Packet Storm
220173 7.5 危険 マイクロソフト
アドビシステムズ		 - Adobe Flash Player および Adobe AIR におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0539 2014-08-5 17:09 2014-07-8 Show GitHub Exploit DB Packet Storm
220174 7.5 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0537 2014-08-5 17:09 2014-07-8 Show GitHub Exploit DB Packet Storm
220175 1.2 注意 Novell
レッドハット		 - libvirt における任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2014-5177 2014-08-5 16:31 2014-05-6 Show GitHub Exploit DB Packet Storm
220176 1.9 注意 Novell
レッドハット		 - libvirt におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0179 2014-08-5 16:30 2014-05-6 Show GitHub Exploit DB Packet Storm
220177 9 危険 Yealink - Yealink VoIP Phone SIP-T38G の cgi-bin/cgiServer.exx における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2013-5758 2014-08-5 14:09 2013-09-18 Show GitHub Exploit DB Packet Storm
220178 4 警告 Yealink - Yealink VoIP Phone SIP-T38G における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-5757 2014-08-5 14:08 2013-09-18 Show GitHub Exploit DB Packet Storm
220179 4 警告 Yealink - Yealink VoIP Phone SIP-T38G におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-5756 2014-08-5 14:08 2013-09-18 Show GitHub Exploit DB Packet Storm
220180 5.8 警告 Caucho Technology - Resin Pro に Unicode 文字を適切に変換しない問題 CWE-20
CWE-264
CVE-2014-2966 2014-08-5 09:27 2014-07-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
296891 - apache xml_security_for_c\+\+ Stack-based buffer overflow in the XML Signature Reference functionality (xsec/dsig/DSIGReference.cpp) in Apache Santuario XML Security for C++ (aka xml-security-c) before 1.7.1 allows context-depend… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-2154 2024-11-21 10:51 2013-08-21 Show GitHub Exploit DB Packet Storm
296892 - apache xml_security_for_c\+\+ The XML digital signature functionality (xsec/dsig/DSIGReference.cpp) in Apache Santuario XML Security for C++ (aka xml-security-c) before 1.7.1 allows context-dependent attackers to reuse signatures… CWE-310
Cryptographic Issues 		CVE-2013-2153 2024-11-21 10:51 2013-08-21 Show GitHub Exploit DB Packet Storm
296893 - apache cxf The streaming XML parser in Apache CXF 2.5.x before 2.5.10, 2.6.x before 2.6.7, and 2.7.x before 2.7.4 allows remote attackers to cause a denial of service (CPU and memory consumption) via crafted XM… CWE-399
 Resource Management Errors 		CVE-2013-2160 2024-11-21 10:51 2013-08-20 Show GitHub Exploit DB Packet Storm
296894 - canonical
opensuse
perlmonks 		ubuntu_linux
opensuse
module\ 		The cpansign verify functionality in the Module::Signature module before 0.72 for Perl allows attackers to bypass the signature check and execute arbitrary code via a SIGNATURE file with a "special u… CWE-20
 Improper Input Validation  		CVE-2013-2145 2024-11-21 10:51 2013-08-20 Show GitHub Exploit DB Packet Storm
296895 - apache cloudstack Multiple cross-site scripting (XSS) vulnerabilities in Apache CloudStack before 4.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) Physical network name to the Zone wizar… CWE-79
Cross-site Scripting 		CVE-2013-2136 2024-11-21 10:51 2013-08-20 Show GitHub Exploit DB Packet Storm
296896 - debian
canonical
redhat
haproxy 		debian_linux
ubuntu_linux
enterprise_linux_load_balancer
haproxy 		HAProxy 1.4 before 1.4.24 and 1.5 before 1.5-dev19, when configured to use hdr_ip or other "hdr_*" functions with a negative occurrence count, allows remote attackers to cause a denial of service (ne… CWE-20
CWE-284
 Improper Input Validation 
Improper Access Control 		CVE-2013-2175 2024-11-21 10:51 2013-08-19 Show GitHub Exploit DB Packet Storm
296897 - canonical ubuntu_linux Race condition in the post-installation script (mysql-server-5.5.postinst) for MySQL Server 5.5 for Debian GNU/Linux and Ubuntu Linux creates a configuration file with world-readable permissions befo… CWE-362
Race Condition 		CVE-2013-2162 2024-11-21 10:51 2013-08-19 Show GitHub Exploit DB Packet Storm
296898 - mongodb
canonical
opensuse 		mongodb
ubuntu_linux
opensuse 		bson/_cbsonmodule.c in the mongo-python-driver (aka. pymongo) before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) vi… NVD-CWE-Other
CVE-2013-2132 2024-11-21 10:51 2013-08-16 Show GitHub Exploit DB Packet Storm
296899 - apache ofbiz Apache Open For Business Project (aka OFBiz) 10.04.01 through 10.04.05, 11.04.01 through 11.04.02, and 12.04.01 allows remote attackers to execute arbitrary Unified Expression Language (UEL) function… CWE-20
 Improper Input Validation  		CVE-2013-2250 2024-11-21 10:51 2013-08-16 Show GitHub Exploit DB Packet Storm
296900 - apache ofbiz Cross-site scripting (XSS) vulnerability in the "View Log" screen in the Webtools application in Apache Open For Business Project (aka OFBiz) 10.04.01 through 10.04.05, 11.04.01 through 11.04.02, and… CWE-79
Cross-site Scripting 		CVE-2013-2137 2024-11-21 10:51 2013-08-16 Show GitHub Exploit DB Packet Storm