Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
221091	4.3	警告	シスコシステムズ	-	Cisco Small Business SPA300 および SPA500 シリーズの IP phone の Web ユーザインターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3313	2014-07-10 18:21	2014-07-9	Show	GitHub Exploit DB Packet Storm

221092	6.9	警告	シスコシステムズ	-	Cisco Small Business SPA300 および SPA500 phone のデバッグコンソールインターフェースにおける任意の debug シェルコマンドを実行される脆弱性	CWE-287 不適切な認証	CVE-2014-3312	2014-07-10 18:20	2014-07-9	Show	GitHub Exploit DB Packet Storm

221093	5	警告	シスコシステムズ	-	Cisco IOS および IOS XE の NTP の実装における時刻同期の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3309	2014-07-10 18:19	2014-07-9	Show	GitHub Exploit DB Packet Storm

221094	7.8	危険	ネットギア	-	Netgear GS105PE Prosafe Plus Switch に認証情報がハードコードされている問題	CWE-255 CWE-Other	CVE-2014-2969	2014-07-10 17:10	2014-07-3	Show	GitHub Exploit DB Packet Storm

221095	5.1	警告	リムアーツ	-	Becky! Internet Mail におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-3891	2014-07-10 17:06	2014-07-8	Show	GitHub Exploit DB Packet Storm

221096	2.7	注意	Xen プロジェクト	-	Xen の arch/arm/domain.c 内の alloc_domain_struct 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-4022	2014-07-10 16:50	2014-06-25	Show	GitHub Exploit DB Packet Storm

221097	9.3	危険	XnSoft	-	XnView の xjpegls.dll フォーマットプラグインにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4988	2014-07-10 16:29	2012-06-29	Show	GitHub Exploit DB Packet Storm

221098	6.9	警告	マイクロソフト	-	複数の Microsoft Windows 製品の DirectShow における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-2780	2014-07-10 15:02	2014-07-8	Show	GitHub Exploit DB Packet Storm

221099	7.2	危険	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルモードドライバの afd.sys の Ancillary Function Driver における権限昇格の脆弱性	CWE-Other その他	CVE-2014-1767	2014-07-10 15:01	2014-07-8	Show	GitHub Exploit DB Packet Storm

221100	7.6	危険	マイクロソフト	-	複数の Microsoft Windows 製品におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-2781	2014-07-10 15:00	2014-07-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295731	-	nagios redhat	nagios openstack	rss-newsfeed.php in Nagios Core 3.4.4, 3.5.1, and earlier, when MAGPIE_CACHE_ON is set to 1, allows local users to overwrite arbitrary files via a symlink attack on /tmp/magpie_cache.	CWE-59 Link Following	CVE-2013-4214	2024-11-21 10:55	2013-11-24	Show	GitHub Exploit DB Packet Storm

295732	-	novell graphicsmagick fedoraproject	suse_linux_enterprise_debuginfo suse_studio_onsite suse_linux_enterprise_software_development_kit graphicsmagick fedora	The ExportAlphaQuantumType function in export.c in GraphicsMagick before 1.3.18 might allow remote attackers to cause a denial of service (crash) via vectors related to exporting the alpha of an 8-bi…	NVD-CWE-noinfo	CVE-2013-4589	2024-11-21 10:55	2013-11-23	Show	GitHub Exploit DB Packet Storm

295733	-	haxx	curl libcurl	cURL and libcurl 7.18.0 through 7.32.0, when built with OpenSSL, disables the certificate CN and SAN name field verification (CURLOPT_SSL_VERIFYHOST) when the digital signature verification (CURLOPT_…	CWE-310 Cryptographic Issues	CVE-2013-4545	2024-11-21 10:55	2013-11-23	Show	GitHub Exploit DB Packet Storm

295734	-	redhat fedoraproject	enterprise_linux directory_server 389_directory_server	389 Directory Server 1.2.11.15 (aka Red Hat Directory Server before 8.2.11-14) allows remote authenticated users to cause a denial of service (crash) via multiple @ characters in a GER attribute list…	CWE-20 Improper Input Validation	CVE-2013-4485	2024-11-21 10:55	2013-11-23	Show	GitHub Exploit DB Packet Storm

295735	-	redhat scientificlinux	enterprise_linux luci	Untrusted search path vulnerability in python-paste-script (aka paster) in Luci 0.26.0, when started using the initscript, allows local users to gain privileges via a Trojan horse .egg-info file in t…	NVD-CWE-Other	CVE-2013-4482	2024-11-21 10:55	2013-11-23	Show	GitHub Exploit DB Packet Storm

295736	-	redhat scientificlinux	enterprise_linux luci	Race condition in Luci 0.26.0 creates /var/lib/luci/etc/luci.ini with world-readable permissions before restricting the permissions, which allows local users to read the file and obtain sensitive inf…	CWE-362 Race Condition	CVE-2013-4481	2024-11-21 10:55	2013-11-23	Show	GitHub Exploit DB Packet Storm

295737	-	canonical freedesktop	ubuntu_linux poppler	Format string vulnerability in the extractPages function in utils/pdfseparate.cc in poppler before 0.24.3 allows remote attackers to cause a denial of service (crash) via format string specifiers in …	CWE-20 Improper Input Validation	CVE-2013-4474	2024-11-21 10:55	2013-11-23	Show	GitHub Exploit DB Packet Storm

295738	-	freedesktop canonical	poppler ubuntu_linux	Stack-based buffer overflow in the extractPages function in utils/pdfseparate.cc in poppler before 0.24.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary c…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4473	2024-11-21 10:55	2013-11-23	Show	GitHub Exploit DB Packet Storm

295739	-	lighttpd debian opensuse	lighttpd debian_linux opensuse	lighttpd before 1.4.33 does not check the return value of the (1) setuid, (2) setgid, or (3) setgroups functions, which might cause lighttpd to run as root if it is restarted and allows remote attack…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-4559	2024-11-21 10:55	2013-11-20	Show	GitHub Exploit DB Packet Storm

295740	-	lighttpd debian opensuse	lighttpd debian_linux opensuse	Use-after-free vulnerability in lighttpd before 1.4.33 allows remote attackers to cause a denial of service (segmentation fault and crash) via unspecified vectors that trigger FAMMonitorDirectory fai…	CWE-416 Use After Free	CVE-2013-4560	2024-11-21 10:55	2013-11-20	Show	GitHub Exploit DB Packet Storm