Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
222571 4.3 警告 シスコシステムズ - Windows 上で稼働する Cisco Jabber の Send Screen Capture の実装におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-0666 2014-01-20 16:07 2014-01-15 Show GitHub Exploit DB Packet Storm
222572 6.3 警告 シスコシステムズ - Cisco Secure Access Control System の RMI インターフェースにおける任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0667 2014-01-20 16:07 2014-01-16 Show GitHub Exploit DB Packet Storm
222573 10 危険 シスコシステムズ - Cisco Secure Access Control System の Web インターフェースにおける任意のオペレーティングシステムコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0650 2014-01-20 16:05 2014-01-15 Show GitHub Exploit DB Packet Storm
222574 9 危険 シスコシステムズ - Cisco Secure Access Control System の RMI インターフェースにおける superadmin のアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0649 2014-01-20 16:05 2014-01-15 Show GitHub Exploit DB Packet Storm
222575 10 危険 シスコシステムズ - Cisco Secure Access Control System の RMI インターフェースにおける管理アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0648 2014-01-20 16:04 2014-01-15 Show GitHub Exploit DB Packet Storm
222576 4 警告 シスコシステムズ - Cisco WebEx Meetings Server における平文の管理者パスワードを取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-6687 2014-01-20 16:03 2014-01-16 Show GitHub Exploit DB Packet Storm
222577 6.8 警告 マカフィー - McAfee Vulnerability Manager の Enterprise Manager におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-1473 2014-01-20 15:26 2014-01-9 Show GitHub Exploit DB Packet Storm
222578 4.3 警告 マカフィー - McAfee Vulnerability Manager の Enterprise Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1472 2014-01-20 15:20 2014-01-9 Show GitHub Exploit DB Packet Storm
222579 10 危険 Sierra Wireless - Sierra Wireless AirLink Raven X EV-DO ゲートウェイにおけるファームウェアをリプログラムされる脆弱性 CWE-287
不適切な認証 		CVE-2013-2820 2014-01-20 14:39 2014-01-10 Show GitHub Exploit DB Packet Storm
222580 9.3 危険 Sierra Wireless - Sierra Wireless AirLink Raven X EV-DO ゲートウェイにおけるトロイの木馬ファームウェアをインストールされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-2819 2014-01-20 14:33 2014-01-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268511 5.5 MEDIUM
Local 		sap hana_sps09 SAP HANA SPS09 1.00.091.00.14186593 allows local users to obtain sensitive information by leveraging the EXPORT statement to export files, aka SAP Security Note 2252941. CWE-200
Information Exposure 		CVE-2016-6149 2024-11-21 11:55 2016-08-5 Show GitHub Exploit DB Packet Storm
268512 7.5 HIGH
Network 		sap hana SAP HANA DB 1.00.73.00.389160 allows remote attackers to cause a denial of service (process termination) or execute arbitrary code via vectors related to an IMPORT statement, aka SAP Security Note 22… CWE-20
 Improper Input Validation  		CVE-2016-6148 2024-11-21 11:55 2016-08-5 Show GitHub Exploit DB Packet Storm
268513 9.8 CRITICAL
Network 		sap trex An unspecified interface in SAP TREX 7.10 Revision 63 allows remote attackers to execute arbitrary OS commands with SIDadm privileges via unspecified vectors, aka SAP Security Note 2234226. CWE-78
OS Command  		CVE-2016-6147 2024-11-21 11:55 2016-08-5 Show GitHub Exploit DB Packet Storm
268514 5.3 MEDIUM
Network 		sap hana_db The SQL interface in SAP HANA DB 1.00.091.00.1418659308 provides different error messages for failed login attempts depending on whether the username exists and is locked when the detailed_error_on_c… CWE-200
Information Exposure 		CVE-2016-6145 2024-11-21 11:55 2016-08-5 Show GitHub Exploit DB Packet Storm
268515 8.1 HIGH
Network 		sap hana The SQL interface in SAP HANA before Revision 102 does not limit the number of login attempts for the SYSTEM user when the password_lock_for_system_user is not supported or is configured as "False," … CWE-284
Improper Access Control 		CVE-2016-6144 2024-11-21 11:55 2016-08-5 Show GitHub Exploit DB Packet Storm
268516 9.8 CRITICAL
Network 		sap trex SAP TREX 7.10 Revision 63 allows remote attackers to write to arbitrary files via vectors related to RFC-Gateway, aka SAP Security Note 2203591. CWE-284
Improper Access Control 		CVE-2016-6140 2024-11-21 11:55 2016-08-5 Show GitHub Exploit DB Packet Storm
268517 9.8 CRITICAL
Network 		sap trex SAP TREX 7.10 Revision 63 allows remote attackers to read arbitrary files via unspecified vectors, aka SAP Security Note 2203591. NVD-CWE-noinfo
CVE-2016-6139 2024-11-21 11:55 2016-08-5 Show GitHub Exploit DB Packet Storm
268518 9.8 CRITICAL
Network 		sap trex Directory traversal vulnerability in SAP TREX 7.10 Revision 63 allows remote attackers to read arbitrary files via unspecified vectors, aka SAP Security Note 2203591. CWE-22
Path Traversal 		CVE-2016-6138 2024-11-21 11:55 2016-08-5 Show GitHub Exploit DB Packet Storm
268519 6.2 MEDIUM
Local 		xen
citrix 		xen
xenserver 		Xen 4.5.x through 4.7.x do not implement Supervisor Mode Access Prevention (SMAP) whitelisting in 32-bit exception and event delivery, which allows local 32-bit PV guest OS kernels to cause a denial … CWE-20
 Improper Input Validation  		CVE-2016-6259 2024-11-21 11:55 2016-08-3 Show GitHub Exploit DB Packet Storm
268520 8.8 HIGH
Local 		xen
citrix 		xen
xenserver 		The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows local 32-bit PV guest OS administrators to gain host OS privileges by leveraging fast-paths for updating pagetable entries. CWE-284
Improper Access Control 		CVE-2016-6258 2024-11-21 11:55 2016-08-3 Show GitHub Exploit DB Packet Storm