Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224221 4.3 警告 IBM - IBM WebSphere DataPower SOA アプライアンスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0499 2013-05-30 16:34 2013-05-17 Show GitHub Exploit DB Packet Storm
224222 7.2 危険 レッドハット - Red Hat livecd-tools における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2069 2013-05-30 14:07 2013-05-23 Show GitHub Exploit DB Packet Storm
224223 4.9 警告 マイクロソフト - Microsoft Windows の win32k.sys の EPATHOBJ::bFlatten 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-3661 2013-05-29 16:54 2013-05-17 Show GitHub Exploit DB Packet Storm
224224 5 警告 IBM - IBM InfoSphere Optim Data Growth for Oracle E-Business Suite における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-2959 2013-05-29 16:37 2013-05-13 Show GitHub Exploit DB Packet Storm
224225 3.5 注意 IBM - IBM InfoSphere Optim Data Growth for Oracle E-Business Suite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2957 2013-05-29 16:37 2013-05-13 Show GitHub Exploit DB Packet Storm
224226 7.5 危険 IBM - IBM InfoSphere Optim Data Growth for Oracle E-Business Suite における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-2956 2013-05-29 16:36 2013-05-13 Show GitHub Exploit DB Packet Storm
224227 3.5 注意 IBM - IBM InfoSphere Optim Data Growth for Oracle E-Business Suite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2955 2013-05-29 16:35 2013-05-13 Show GitHub Exploit DB Packet Storm
224228 5 警告 IBM - IBM InfoSphere Optim Data Growth for Oracle E-Business Suite におけるアクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2013-2954 2013-05-29 16:35 2013-05-13 Show GitHub Exploit DB Packet Storm
224229 4.3 警告 IBM - IBM InfoSphere Optim Data Growth for Oracle E-Business Suite における SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2013-2953 2013-05-29 16:30 2013-05-13 Show GitHub Exploit DB Packet Storm
224230 5.8 警告 シスコシステムズ - iOS 上で稼働する Cisco WebEx における SSL サーバになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-6399 2013-05-29 16:30 2013-05-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277931 9.8 CRITICAL
Network 		suse
opensuse
fedoraproject
gnu
canonical 		linux_enterprise_server
linux_enterprise_debuginfo
linux_enterprise_software_development_kit
linux_enterprise_desktop
opensuse
suse_linux_enterprise_server
fedora
glibc
ubuntu… 		Multiple stack-based buffer overflows in the GNU C Library (aka glibc or libc6) before 2.23 allow context-dependent attackers to cause a denial of service (application crash) or possibly execute arbi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9761 2024-11-21 11:21 2016-04-20 Show GitHub Exploit DB Packet Storm
277932 6.5 MEDIUM
Network 		debian
remotesensing 		debian_linux
libtiff 		The (1) putcontig8bitYCbCr21tile function in tif_getimage.c or (2) NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9655 2024-11-21 11:21 2016-04-14 Show GitHub Exploit DB Packet Storm
277933 9.8 CRITICAL
Network 		pixman
canonical 		pixman
ubuntu_linux 		Integer overflow in the create_bits function in pixman-bits-image.c in Pixman before 0.32.6 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code… CWE-189
Numeric Errors 		CVE-2014-9766 2024-11-21 11:21 2016-04-13 Show GitHub Exploit DB Packet Storm
277934 5.3 MEDIUM
Network 		mantisbt mantisbt Incomplete blacklist vulnerability in the config_is_private function in config_api.php in MantisBT 1.3.x before 1.3.0 allows remote attackers to obtain sensitive master salt configuration information… CWE-200
Information Exposure 		CVE-2014-9759 2024-11-21 11:21 2016-04-12 Show GitHub Exploit DB Packet Storm
277935 7.3 HIGH
Network 		pcre pcre pcre_jit_compile.c in PCRE 8.35 does not properly use table jumps to optimize nested alternatives, which allows remote attackers to cause a denial of service (stack memory corruption) or possibly hav… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9769 2024-11-21 11:21 2016-03-29 Show GitHub Exploit DB Packet Storm
277936 8.8 HIGH
Network 		ibm tivoli_netview_access_services IBM Tivoli NetView Access Services (NVAS) allows remote authenticated users to gain privileges by entering the ADM command and modifying a "page ID" field to the EMSPG2 transaction code. NOTE: the v… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-9768 2024-11-21 11:21 2016-03-18 Show GitHub Exploit DB Packet Storm
277937 9.8 CRITICAL
Network 		atlassian bamboo The Ignite Realtime Smack XMPP API, as used in Atlassian Bamboo before 5.9.9 and 5.10.x before 5.10.0, allows remote configured XMPP servers to execute arbitrary Java code via serialized data in an X… CWE-20
 Improper Input Validation  		CVE-2014-9757 2024-11-21 11:21 2016-02-9 Show GitHub Exploit DB Packet Storm
277938 - libsndfile_project
canonical
opensuse 		libsndfile
ubuntu_linux
leap
opensuse 		The psf_fwrite function in file_io.c in libsndfile allows attackers to cause a denial of service (divide-by-zero error and application crash) via unspecified vectors related to the headindex variable. CWE-369
 Divide By Zero 		CVE-2014-9756 2024-11-21 11:21 2015-11-20 Show GitHub Exploit DB Packet Storm
277939 - atutor atutor Unrestricted file upload vulnerability in mods/_core/properties/lib/course.inc.php in ATutor before 2.2 patch 6 allows remote authenticated users to execute arbitrary PHP code by uploading a file wit… NVD-CWE-Other
CVE-2014-9752 2024-11-21 11:21 2015-11-17 Show GitHub Exploit DB Packet Storm
277940 - squid-cache
opensuse 		squid
opensuse 		Squid 3.4.4 through 3.4.11 and 3.5.0.1 through 3.5.1, when Digest authentication is used, allow remote authenticated users to retain access by leveraging a stale nonce, aka "Nonce replay vulnerabilit… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-9749 2024-11-21 11:21 2015-11-7 Show GitHub Exploit DB Packet Storm