Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
222011 2.1 注意 Apache Software Foundation - Libcloud における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-6480 2014-01-9 16:33 2013-12-31 Show GitHub Exploit DB Packet Storm
222012 2.1 注意 Puppet - Puppet および Puppet Enterprise における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2013-4969 2014-01-9 15:29 2013-12-26 Show GitHub Exploit DB Packet Storm
222013 4.9 警告 Xen プロジェクト - Xen におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-1936 2014-01-9 15:24 2011-07-15 Show GitHub Exploit DB Packet Storm
222014 7.7 危険 Xen プロジェクト - Xen の get_free_port 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-1763 2014-01-9 14:15 2011-05-31 Show GitHub Exploit DB Packet Storm
222015 6.1 警告 Xen プロジェクト - Xen の命令エミュレーションにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1780 2014-01-9 13:35 2011-07-21 Show GitHub Exploit DB Packet Storm
222016 9.3 危険 リアルネットワークス - RealNetworks RealPlayer におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-6877 2014-01-9 11:37 2013-12-20 Show GitHub Exploit DB Packet Storm
222017 4.6 警告 Lennart Poettering
レッドハット		 - RealtimeKit におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4326 2014-01-9 10:53 2013-09-24 Show GitHub Exploit DB Packet Storm
222018 6.9 警告 ヒューレット・パッカード - HP Linux Imaging and Printing の base/pkit.py におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4325 2014-01-9 10:50 2013-09-11 Show GitHub Exploit DB Packet Storm
222019 7.5 危険 Google - Google Chrome で使用される Blink の Web Audio の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-2910 2014-01-9 10:48 2013-10-1 Show GitHub Exploit DB Packet Storm
222020 5 警告 Google - Google Chrome におけるアドレスバーを偽装される脆弱性 CWE-Other
その他 		CVE-2013-2908 2014-01-9 10:45 2013-10-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273051 6.1 MEDIUM
Network 		silverstripe silverstripe Multiple cross-site scripting (XSS) vulnerabilities in SilverStripe CMS & Framework before 3.1.16 and 3.2.x before 3.2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) Loca… CWE-79
Cross-site Scripting 		CVE-2015-8606 2024-11-21 11:38 2016-04-14 Show GitHub Exploit DB Packet Storm
273052 8.6 HIGH
Network 		citrix
xen 		xenserver
xen 		Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU stack and XMM registers when XSAVE/XRSTOR are not used to manage guest extended register state, which allows local guest domains … CWE-200
Information Exposure 		CVE-2015-8555 2024-11-21 11:38 2016-04-14 Show GitHub Exploit DB Packet Storm
273053 6.5 MEDIUM
Local 		xen
redhat 		xen
enterprise_linux 		Xen allows guest OS users to obtain sensitive information from uninitialized locations in host OS kernel memory by not enabling memory and I/O decoding control bits. NOTE: this vulnerability exists … CWE-200
Information Exposure 		CVE-2015-8553 2024-11-21 11:38 2016-04-14 Show GitHub Exploit DB Packet Storm
273054 4.4 MEDIUM
Local 		xen
canonical
debian
novell 		xen
ubuntu_linux
debian_linux
suse_linux_enterprise_debuginfo
suse_linux_enterprise_real_time_extension 		The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to generate a continuous stream of WARN messag… CWE-20
 Improper Input Validation  		CVE-2015-8552 2024-11-21 11:38 2016-04-14 Show GitHub Exploit DB Packet Storm
273055 6.0 MEDIUM
Local 		linux
debian
suse
opensuse 		linux_kernel
debian_linux
linux_enterprise_server
linux_enterprise_desktop
linux_enterprise_software_development_kit
linux_enterprise_real_time_extension
linux_enterprise_workstatio… 		The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to hit BUG conditions and cause a denial of se… CWE-476
 NULL Pointer Dereference 		CVE-2015-8551 2024-11-21 11:38 2016-04-14 Show GitHub Exploit DB Packet Storm
273056 7.8 HIGH
Local 		avast avast_free_antivirus
avast_internet_security
avast_premier
avast_pro_antivirus 		Heap-based buffer overflow in the Avast virtualization driver (aswSnx.sys) in Avast Internet Security, Pro Antivirus, Premier, and Free Antivirus before 11.1.2253 allows local users to gain privilege… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8620 2024-11-21 11:38 2016-04-13 Show GitHub Exploit DB Packet Storm
273057 6.1 MEDIUM
Local 		huawei mate_s_firmware
p8_firmware 		The Video0 driver in Huawei P8 smartphones with software GRA-UL00 before GRA-UL00C00B350, GRA-UL10 before GRA-UL10C00B350, GRA-TL00 before GRA-TL00C01B350, GRA-CL00 before GRA-CL00C92B350, and GRA-CL… CWE-20
 Improper Input Validation  		CVE-2015-8682 2024-11-21 11:38 2016-04-13 Show GitHub Exploit DB Packet Storm
273058 7.8 HIGH
Local 		huawei p7_firmware Integer overflow in Huawei P7 phones with software before P7-L07 V100R001C01B606 allows remote attackers to gain privileges via a crafted application with the system or camera permission. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8304 2024-11-21 11:38 2016-04-13 Show GitHub Exploit DB Packet Storm
273059 8.6 HIGH
Network 		debian
inspircd 		debian_linux
inspircd 		The DNS::GetResult function in dns.cpp in InspIRCd before 2.0.19 allows remote DNS servers to cause a denial of service (netsplit) via an invalid character in a PTR response, as demonstrated by a "\0… CWE-20
 Improper Input Validation  		CVE-2015-8702 2024-11-21 11:38 2016-04-12 Show GitHub Exploit DB Packet Storm
273060 5.3 MEDIUM
Network 		debian
redmine 		debian_linux
redmine 		app/views/journals/index.builder in Redmine before 2.6.9, 3.0.x before 3.0.7, and 3.1.x before 3.1.3 allows remote attackers to obtain sensitive information by viewing an Atom feed. CWE-200
Information Exposure 		CVE-2015-8537 2024-11-21 11:38 2016-04-12 Show GitHub Exploit DB Packet Storm