Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
222551 6 警告 Piwigo - Piwigo における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2014-4649 2014-08-8 12:06 2014-08-8 Show GitHub Exploit DB Packet Storm
222552 5 警告 IBM - IBM Tivoli Endpoint Manager における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい
CVE-2014-3066 2014-08-7 12:27 2014-06-25 Show GitHub Exploit DB Packet Storm
222553 2.7 注意 Xen プロジェクト - Xen における重要な情報を取得される脆弱性 CWE-119
バッファエラー
CVE-2014-4021 2014-08-7 12:22 2014-06-17 Show GitHub Exploit DB Packet Storm
222554 6.8 警告 マイクロソフト
アドビシステムズ
- Adobe Flash Player および Adobe AIR におけるクロスサイトリクエストフォージェリ攻撃を実行される脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2014-4671 2014-08-6 17:36 2014-07-8 Show GitHub Exploit DB Packet Storm
222555 7.5 危険 Ruby on Rails project - Ruby on Rails の Active Record 用 PostgreSQL アダプタにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2014-3483 2014-08-6 17:23 2014-07-2 Show GitHub Exploit DB Packet Storm
222556 7.5 危険 Ruby on Rails project - Ruby on Rails の Active Record 用 PostgreSQL アダプタにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2014-3482 2014-08-6 17:21 2014-07-2 Show GitHub Exploit DB Packet Storm
222557 4.7 警告 Linux - 32-bit x86 プラットフォーム上で稼動する Linux kernel の arch/x86/kernel/entry_32.S におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題
CVE-2014-4508 2014-08-6 17:17 2014-06-16 Show GitHub Exploit DB Packet Storm
222558 6.9 警告 Linux - インテルプロセッサ上で稼動する Linux Kernel における競合状態を利用される脆弱性 CWE-362
競合状態
CVE-2014-4699 2014-08-6 17:16 2014-07-6 Show GitHub Exploit DB Packet Storm
222559 6.4 警告 シスコシステムズ - Cisco ASR 9000 デバイスの Trident ラインカード上で稼動する Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2014-3308 2014-08-6 16:58 2014-07-3 Show GitHub Exploit DB Packet Storm
222560 5.8 警告 The Tor Project - Tor における疎通確認攻撃を実行される脆弱性 CWE-Other
その他
CVE-2014-5117 2014-08-6 16:45 2014-07-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273801 5.9 MEDIUM
Network
google android The GPS component in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-10-01, and 7.0 before 2016-10-01 allows man-in-the-middle attackers to cause a denial of service… CWE-399
 Resource Management Errors
CVE-2016-5348 2024-11-21 11:54 2016-10-10 Show GitHub Exploit DB Packet Storm
273802 9.8 CRITICAL
Network
linux linux_kernel drivers/soc/qcom/qdsp6v2/voice_svc.c in the QDSP6v2 Voice Service driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other product… CWE-120
Classic Buffer Overflow
CVE-2016-5343 2024-11-21 11:54 2016-10-10 Show GitHub Exploit DB Packet Storm
273803 9.8 CRITICAL
Network
f5 big-ip_local_traffic_manager F5 BIG-IP LTM systems 11.x before 11.2.1 HF16, 11.3.x, 11.4.x before 11.4.1 HF11, 11.5.0, 11.5.1 before HF11, 11.5.2, 11.5.3, 11.5.4 before HF2, 11.6.0 before HF8, 11.6.1 before HF1, 12.0.0 before HF… CWE-284
Improper Access Control
CVE-2016-5745 2024-11-21 11:54 2016-10-6 Show GitHub Exploit DB Packet Storm
273804 9.8 CRITICAL
Network
animas onetouch_ping_firmware Johnson & Johnson Animas OneTouch Ping devices mishandle acknowledgements, which makes it easier for remote attackers to bypass authentication via a custom communication protocol. CWE-287
Improper Authentication
CVE-2016-5686 2024-11-21 11:54 2016-10-5 Show GitHub Exploit DB Packet Storm
273805 3.3 LOW
Local
redhat enterprise_virtualization The ovirt-engine-provisiondb utility in Red Hat Enterprise Virtualization (RHEV) Engine 4.0 allows local users to obtain sensitive database provisioning information by reading log files. CWE-532
 Inclusion of Sensitive Information in Log Files
CVE-2016-5432 2024-11-21 11:54 2016-10-4 Show GitHub Exploit DB Packet Storm
273806 5.4 MEDIUM
Network
redhat jboss_bpm_suite Cross-site scripting (XSS) vulnerability in Business Process Editor in Red Hat JBoss BPM Suite before 6.3.3 allows remote authenticated users to inject arbitrary web script or HTML by levering permis… CWE-79
Cross-site Scripting
CVE-2016-5398 2024-11-21 11:54 2016-10-4 Show GitHub Exploit DB Packet Storm
273807 9.8 CRITICAL
Network
f5 big-ip_policy_enforcement_manager
big-ip_local_traffic_manager
big-ip_websafe
big-ip_link_controller
big-ip_application_acceleration_manager
big-ip_access_policy_manager
big-ip_adva…
Virtual servers in F5 BIG-IP systems 11.5.0, 11.5.1 before HF11, 11.5.2, 11.5.3, 11.5.4 before HF2, 11.6.0 before HF8, 11.6.1 before HF1, 12.0.0 before HF4, and 12.1.0 before HF2, when configured wit… CWE-284
Improper Access Control
CVE-2016-5700 2024-11-21 11:54 2016-10-4 Show GitHub Exploit DB Packet Storm
273808 5.1 MEDIUM
Local
opensuse
yast
libstorage-ng
yast-storage
libstorage
leap
libstorage, libstorage-ng, and yast-storage improperly store passphrases for encrypted storage devices in a temporary file on disk, which might allow local users to obtain sensitive information by re… NVD-CWE-Other
CVE-2016-5746 2024-11-21 11:54 2016-09-27 Show GitHub Exploit DB Packet Storm
273809 8.8 HIGH
Network
redhat jboss_enterprise_application_platform The domain controller in Red Hat JBoss Enterprise Application Platform (EAP) 7.x before 7.0.2 allows remote authenticated users to gain privileges by leveraging failure to propagate administrative RB… CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-5406 2024-11-21 11:54 2016-09-26 Show GitHub Exploit DB Packet Storm
273810 4.8 MEDIUM
Network
apache ranger Cross-site scripting (XSS) vulnerability in the create user functionality in the policy admin tool in Apache Ranger before 0.6.1 allows remote authenticated administrators to inject arbitrary web scr… CWE-79
Cross-site Scripting
CVE-2016-5395 2024-11-21 11:54 2016-09-26 Show GitHub Exploit DB Packet Storm