Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
221251	6.5	警告	サイボウズ	-	サイボウズガルーンにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-0821	2014-03-10 15:13	2014-02-26	Show	GitHub Exploit DB Packet Storm

221252	6.8	警告	Lothian Buses	-	Android 用 Edinburgh by Bus アプリケーションにおける任意の JavaScript コードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1886	2014-03-10 15:13	2014-02-7	Show	GitHub Exploit DB Packet Storm

221253	4.3	警告	VideoLAN	-	VideoLAN VLC media player の ASF デマルチプレクサの modules/demux/asf/libasf.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2014-1684	2014-03-10 15:13	2014-01-27	Show	GitHub Exploit DB Packet Storm

221254	2.1	注意	Jordy Meow	-	WordPress 用 Media File Renamer プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2040	2014-03-10 15:12	2014-01-31	Show	GitHub Exploit DB Packet Storm

221255	5.8	警告	GNU Project	-	GnuTLS の lib/x509/verify.c における制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1959	2014-03-10 14:17	2014-02-12	Show	GitHub Exploit DB Packet Storm

221256	5.8	警告	GNU Project	-	GnuTLS における制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-5138	2014-03-10 14:16	2009-01-9	Show	GitHub Exploit DB Packet Storm

221257	6.9	警告	サン・マイクロシステムズオラクル	-	Oracle Java SE の Java Runtime Environment における Java installer に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2467	2014-03-7 18:47	2013-06-18	Show	GitHub Exploit DB Packet Storm

221258	7.8	危険	ShenZhen Foscam Intelligent Technology	-	Foscam FI8910W に認証回避の脆弱性	CWE-255 CWE-Other	CVE-2014-1911	2014-03-7 18:19	2014-03-3	Show	GitHub Exploit DB Packet Storm

221259	10	危険	Synology Inc.	-	Synology DiskStation Manager にアクセス制御不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6955	2014-03-7 18:15	2014-01-7	Show	GitHub Exploit DB Packet Storm

221260	6.8	警告	OpenStack	-	OpenStack Compute および Icehouse の libvirt ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-6437	2014-03-7 18:03	2013-12-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2641	5.5	MEDIUM Network	-	-	When a fusefs file system implements extended attributes, the kernel may send a FUSE_LISTXATTR message to the userspace daemon to retrieve the list of extended attributes for a given file. The FUSE …	CWE-122 Heap-based Buffer Overflow	CVE-2026-45252	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

2642	7.8	HIGH Local	-	-	A file descriptor can be closed while a thread is blocked in a poll(2) or select(2) call waiting for that descriptor. Because the blocked thread does not hold a reference to the underlying object, t…	CWE-416 Use After Free	CVE-2026-45251	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

2643	8.8	HIGH Local	-	-	libcasper(3) communicates with helper processes via UNIX domain sockets, and uses the select(2) system call to wait for data to become available. However, it does not verify that its socket descript…	CWE-121 Stack-based Buffer Overflow	CVE-2026-39461	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

2644	7.8	HIGH Local	-	-	An origin validation error vulnerability in the Trend Micro Apex One (mac) agent self-protection mechanism could allow a local attacker to escalate privileges on affected installations. Please not…	CWE-346 Origin Validation Error	CVE-2025-71217	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

2645	7.8	HIGH Local	-	-	A time-of-check time-of-use vulnerability in the Trend Micro Apex One (mac) agent cache mechanism could allow a local attacker to escalate privileges on affected installations. Please note: an att…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2025-71216	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

2646	7.0	HIGH Local	-	-	A time-of-check time-of-use vulnerability in the Trend Micro Apex One (mac) agent iCore service signature verification could allow a local attacker to escalate privileges on affected installations. …	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2025-71215	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

2647	7.8	HIGH Local	-	-	An origin validation error vulnerability in the Trend Micro Apex One (mac) agent iCore service could allow a local attacker to escalate privileges on affected installations. Please note: an attack…	CWE-346 Origin Validation Error	CVE-2025-71214	2026-05-22 00:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

2648	7.8	HIGH Local	-	-	MediaArea MediaInfoLib LXF element parsing heap-based buffer overflow vulnerability	CWE-823 Use of Out-of-range Pointer Offset	CVE-2026-28764	2026-05-22 00:05	2026-05-21	Show	GitHub Exploit DB Packet Storm

2649	7.5	HIGH Network	-	-	In Splunk Enterprise versions below 10.2.2 and 10.0.5, and Splunk Cloud Platform versions below 10.3.2512.8, 10.2.2510.11, 10.1.2507.21, and 10.0.2503.13, a user with a role that has access to the `_…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2026-20239	2026-05-22 00:00	2026-05-21	Show	GitHub Exploit DB Packet Storm

2650	6.5	MEDIUM Network	-	-	In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.11, and 9.3.12, and Splunk Cloud Platform versions below 10.4.2603.1, 10.3.2512.9, 10.2.2510.11, 10.1.2507.21, 10.0.2503.13, and 9.3.2411.129, …	CWE-20 Improper Input Validation	CVE-2026-20240	2026-05-22 00:00	2026-05-21	Show	GitHub Exploit DB Packet Storm