Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
222541 2.1 注意 XBMC Foundation - XBMC におけるユーザ名およびパスワードを取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-3800 2014-08-8 18:29 2014-05-8 Show GitHub Exploit DB Packet Storm
222542 4.3 警告 EFS Software - Easy File Sharing Web Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-5178 2014-08-8 18:25 2014-07-25 Show GitHub Exploit DB Packet Storm
222543 6.5 警告 Status2K.com - Status2k の admin/options/logs.php における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2014-5090 2014-08-8 18:15 2014-06-20 Show GitHub Exploit DB Packet Storm
222544 7.5 危険 Status2K.com - Status2k の admin/options/logs.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2014-5089 2014-08-8 18:14 2014-06-20 Show GitHub Exploit DB Packet Storm
222545 4.3 警告 Status2K.com - Status2k におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-5088 2014-08-8 18:14 2014-06-20 Show GitHub Exploit DB Packet Storm
222546 6.8 警告 SolarWinds - SolarWinds Network Configuration Manager におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2014-3459 2014-08-8 16:44 2014-05-19 Show GitHub Exploit DB Packet Storm
222547 7.9 危険 レッドハット
Canonical
Samba Project
- Samba の NetBIOS ネームサービスデーモンにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2014-3560 2014-08-8 15:28 2014-07-31 Show GitHub Exploit DB Packet Storm
222548 9 危険 Splunk - Splunk の "runshellscript echo.sh" スクリプトにおける任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2013-7394 2014-08-8 15:26 2013-09-23 Show GitHub Exploit DB Packet Storm
222549 9.3 危険 Splunk - Splunk の collect スクリプトにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2013-6771 2014-08-8 15:26 2013-09-23 Show GitHub Exploit DB Packet Storm
222550 3.5 注意 レッドハット - Red Hat Enterprise Virtualization の oVirt ストレージバックエンドにおける削除された VM のメモリの一部を読まれる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-3559 2014-08-8 15:01 2014-08-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267831 8.8 HIGH
Network
microsoft windows_rt_8.1
windows_server_2012
windows_server_2016
windows_7
windows_10
windows_8.1
windows_server_2008
The Microsoft Graphics Component on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, a… CWE-20
 Improper Input Validation 
CVE-2017-11762 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
267832 7.8 HIGH
Local
pl32 photoline A memory corruption vulnerability exists in the .TGA parsing functionality of Computerinsel Photoline 20.02. A specially crafted .TGA file can cause an out of bounds write resulting in potential code… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-12106 2024-11-21 12:08 2017-10-6 Show GitHub Exploit DB Packet Storm
267833 9.8 CRITICAL
Network
openvpn
debian
openvpn
debian_linux
OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to a buffer overflow vulnerability when key-method 1 is used, possibly resulting in code execution. CWE-787
 Out-of-bounds Write
CVE-2017-12166 2024-11-21 12:08 2017-10-4 Show GitHub Exploit DB Packet Storm
267834 7.1 HIGH
Local
linux linux_kernel The prepare_vmcs02 function in arch/x86/kvm/vmx.c in the Linux kernel through 4.13.3 does not ensure that the "CR8-load exiting" and "CR8-store exiting" L0 vmcs02 controls exist in cases where L1 omi… NVD-CWE-noinfo
CVE-2017-12154 2024-11-21 12:08 2017-09-26 Show GitHub Exploit DB Packet Storm
267835 9.8 CRITICAL
Network
pureftpd
fedoraproject
pure-ftpd
fedora
Downstream version 1.0.46-1 of pure-ftpd as shipped in Fedora was vulnerable to packaging error due to which the original configuration was ignored after update and service started running with defau… NVD-CWE-noinfo
CVE-2017-12170 2024-11-21 12:08 2017-09-22 Show GitHub Exploit DB Packet Storm
267836 4.4 MEDIUM
Local
linux
debian
canonical
linux_kernel
debian_linux
ubuntu_linux
A security flaw was discovered in the nl80211_set_rekey_data() function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether the required attributes are … CWE-476
 NULL Pointer Dereference
CVE-2017-12153 2024-11-21 12:08 2017-09-22 Show GitHub Exploit DB Packet Storm
267837 6.0 MEDIUM
Local
linux linux_kernel The access_pmu_evcntr function in arch/arm64/kvm/sys_regs.c in the Linux kernel before 4.8.11 allows privileged KVM guest OS users to cause a denial of service (assertion failure and host OS crash) b… - CVE-2017-12168 2024-11-21 12:08 2017-09-20 Show GitHub Exploit DB Packet Storm
267838 4.3 MEDIUM
Network
moodle moodle In Moodle 3.x, various course reports allow teachers to view details about users in the groups they can't access. CWE-200
Information Exposure
CVE-2017-12157 2024-11-21 12:08 2017-09-18 Show GitHub Exploit DB Packet Storm
267839 6.1 MEDIUM
Network
moodle moodle Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback. CWE-79
Cross-site Scripting
CVE-2017-12156 2024-11-21 12:08 2017-09-18 Show GitHub Exploit DB Packet Storm
267840 7.5 HIGH
Network
microsoft edge Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft E… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-11766 2024-11-21 12:08 2017-09-13 Show GitHub Exploit DB Packet Storm