Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
223811 5 警告 オラクル - Oracle Sun Solaris 10 における CPU パフォーマンスカウンターデバイスの処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-0408 2013-11-8 11:43 2013-04-16 Show GitHub Exploit DB Packet Storm
223812 4.6 警告 オラクル - Oracle Sun Solaris 10 および 11 における Kernel/DTrace Framework の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-0407 2013-11-8 11:42 2013-01-15 Show GitHub Exploit DB Packet Storm
223813 4.3 警告 オラクル - Oracle Sun Solaris 10 における Kernel/IPsec の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-0406 2013-11-8 11:41 2013-04-16 Show GitHub Exploit DB Packet Storm
223814 6.4 警告 オラクル - Oracle Sun Solaris 8、9、10、および 11 における NFS クライアントマウントおよび IPv6 の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-0405 2013-11-8 11:40 2013-04-16 Show GitHub Exploit DB Packet Storm
223815 3.7 注意 オラクル - Oracle Sun Solaris 10 における Kernel/Boot の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-0404 2013-11-8 11:39 2013-04-16 Show GitHub Exploit DB Packet Storm
223816 1.9 注意 オラクル - Oracle Sun Solaris 8、9、10、および 11 における Utility の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-0403 2013-11-8 11:38 2013-04-16 Show GitHub Exploit DB Packet Storm
223817 6.6 警告 オラクル - Oracle Sun Solaris 9 および 10 における Filesystem/cachefs の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-0400 2013-11-8 11:35 2013-01-15 Show GitHub Exploit DB Packet Storm
223818 6.6 警告 オラクル - Oracle Sun Solaris 9 および 10 における Utility/Umount の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-0399 2013-11-8 11:34 2013-01-15 Show GitHub Exploit DB Packet Storm
223819 5 警告 オラクル - Oracle Enterprise Manager Grid Control の APM における Business Transaction Management の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-0396 2013-11-8 11:32 2013-01-15 Show GitHub Exploit DB Packet Storm
223820 4 警告 オラクル - Oracle PeopleSoft Products の PeopleSoft PeopleTools における Security の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-0395 2013-11-8 11:31 2013-01-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277391 - canonical
redhat
apple
xmlsoft
hp
debian 		ubuntu_linux
enterprise_linux_hpc_node
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
watchos
iphone_os
mac_os_x
tvos
libxml2
icewall_file… 		The xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.3 does not properly prevent entity expansion, which allows context-dependent attackers to cause a denial of service (CPU cons… CWE-399
 Resource Management Errors 		CVE-2015-5312 2024-11-21 11:32 2015-12-16 Show GitHub Exploit DB Packet Storm
277392 - ibm websphere_application_server The Edge Component Caching Proxy in IBM WebSphere Application Server (WAS) 8.0 before 8.0.0.12 and 8.5 before 8.5.5.8 does not properly encrypt data, which allows remote authenticated users to obtain… CWE-200
Information Exposure 		CVE-2015-5004 2024-11-21 11:32 2015-12-15 Show GitHub Exploit DB Packet Storm
277393 - opensuse
simon_tatham 		leap
opensuse
putty 		Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via an ECH (erase characters… CWE-189
Numeric Errors 		CVE-2015-5309 2024-11-21 11:32 2015-12-8 Show GitHub Exploit DB Packet Storm
277394 - ibm
redhat
suse 		java_2_sdk
java_sdk
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
satellite
enterprise_linux_server_eus
linux_enterprise_server
linux_enterpris… 		IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR2, 7 R1 before SR3 FP20, 7 before SR9 FP20, 6 R1 before SR8 FP15, and 6 before SR16 FP15 allow physically proximate attacke… CWE-200
Information Exposure 		CVE-2015-5006 2024-11-21 11:32 2015-12-8 Show GitHub Exploit DB Packet Storm
277395 - redhat libreport libreport 2.0.7 before 2.6.3 only saves changes to the first file when editing a crash report, which allows remote attackers to obtain sensitive information via unspecified vectors related to the (1)… CWE-200
Information Exposure 		CVE-2015-5302 2024-11-21 11:32 2015-12-8 Show GitHub Exploit DB Packet Storm
277396 - redhat automatic_bug_reporting_tool
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node 		The abrt-hook-ccpp help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users with certain permissions to gain privileges via a symlink attack on a file with a predictable na… CWE-59
Link Following 		CVE-2015-5287 2024-11-21 11:32 2015-12-8 Show GitHub Exploit DB Packet Storm
277397 - redhat automatic_bug_reporting_tool
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node 		The abrt-action-install-debuginfo-to-abrt-cache help program in Automatic Bug Reporting Tool (ABRT) before 2.7.1 allows local users to write to arbitrary files via a symlink attack on unpacked.cpio i… CWE-59
Link Following 		CVE-2015-5273 2024-11-21 11:32 2015-12-8 Show GitHub Exploit DB Packet Storm
277398 - redhat ceph CRLF injection vulnerability in the Ceph Object Gateway (aka radosgw or RGW) in Ceph before 0.94.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks… NVD-CWE-Other
CVE-2015-5245 2024-11-21 11:32 2015-12-4 Show GitHub Exploit DB Packet Storm
277399 - jenkins
redhat 		jenkins
openshift 		Cross-site scripting (XSS) vulnerability in the slave overview page in Jenkins before 1.638 and LTS before 1.625.2 allows remote authenticated users with certain permissions to inject arbitrary web s… CWE-79
Cross-site Scripting 		CVE-2015-5326 2024-11-21 11:32 2015-11-26 Show GitHub Exploit DB Packet Storm
277400 - redhat
jenkins 		openshift
jenkins 		Jenkins before 1.638 and LTS before 1.625.2 allow attackers to bypass intended slave-to-master access restrictions by leveraging a JNLP slave. NOTE: this vulnerability exists because of an incomplete… CWE-284
Improper Access Control 		CVE-2015-5325 2024-11-21 11:32 2015-11-26 Show GitHub Exploit DB Packet Storm