Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224421 2.6 注意 ヤフー株式会社 - ヤフオク! における SSL サーバ証明書の検証不備の脆弱性 CWE-Other
その他 		CVE-2013-4699 2013-08-23 18:43 2013-08-19 Show GitHub Exploit DB Packet Storm
224422 2.6 注意 ヤフー株式会社 - Android 版 Yahoo!ショッピングにおける SSL サーバ証明書の検証不備の脆弱性 CWE-Other
その他 		CVE-2013-4700 2013-08-23 18:41 2013-08-19 Show GitHub Exploit DB Packet Storm
224423 6.4 警告 JanRain - PHP OpenID Library における XML 外部実体参照に関する脆弱性 CWE-Other
その他 		CVE-2013-4701 2013-08-23 18:37 2013-08-21 Show GitHub Exploit DB Packet Storm
224424 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルの NT Virtual DOS Machine サブシステムにおける権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2013-3198 2013-08-23 17:56 2013-08-13 Show GitHub Exploit DB Packet Storm
224425 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルの NT Virtual DOS Machine サブシステムにおける権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2013-3197 2013-08-23 17:55 2013-08-13 Show GitHub Exploit DB Packet Storm
224426 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルの NT Virtual DOS Machine サブシステムにおける権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2013-3196 2013-08-23 17:54 2013-08-13 Show GitHub Exploit DB Packet Storm
224427 7.5 危険 マイクロソフト - 複数の Microsoft Windows 製品における ASLR 保護メカニズムを回避される脆弱性 CWE-noinfo
情報不足 		CVE-2013-2556 2013-08-23 17:53 2013-03-11 Show GitHub Exploit DB Packet Storm
224428 6.8 警告 IBM - IBM WebSphere Application Server の管理コンソールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3029 2013-08-23 16:46 2013-08-19 Show GitHub Exploit DB Packet Storm
224429 5 警告 OSIsoft - OSIsoft PI Interface for IEEE におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-2801 2013-08-23 16:44 2013-08-13 Show GitHub Exploit DB Packet Storm
224430 5 警告 OSIsoft - OSIsoft PI Interface for IEEE におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-2800 2013-08-23 16:43 2013-08-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279141 6.1 MEDIUM
Local 		linux linux_kernel fs/namespace.c in the Linux kernel before 4.0.2 processes MNT_DETACH umount2 system calls without verifying that the MNT_LOCKED flag is unset, which allows local users to bypass intended access restr… CWE-284
Improper Access Control 		CVE-2014-9717 2024-11-21 11:21 2016-05-2 Show GitHub Exploit DB Packet Storm
279142 3.3 LOW
Local 		opensuse opensuse tmpfiles.d/systemd.conf in systemd before 214 uses weak permissions for journal files under (1) /run/log/journal/%m and (2) /var/log/journal/%m, which allows local users to obtain sensitive informati… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-9770 2024-11-21 11:21 2016-04-21 Show GitHub Exploit DB Packet Storm
279143 8.8 HIGH
Network 		canonical
debian
xdelta
opensuse 		ubuntu_linux
debian_linux
xdelta3
opensuse 		Buffer overflow in the main_get_appheader function in xdelta3-main.h in xdelta3 before 3.0.9 allows remote attackers to execute arbitrary code via a crafted input file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9765 2024-11-21 11:21 2016-04-20 Show GitHub Exploit DB Packet Storm
279144 9.8 CRITICAL
Network 		suse
opensuse
fedoraproject
gnu
canonical 		linux_enterprise_server
linux_enterprise_debuginfo
linux_enterprise_software_development_kit
linux_enterprise_desktop
opensuse
suse_linux_enterprise_server
fedora
glibc
ubuntu… 		Multiple stack-based buffer overflows in the GNU C Library (aka glibc or libc6) before 2.23 allow context-dependent attackers to cause a denial of service (application crash) or possibly execute arbi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9761 2024-11-21 11:21 2016-04-20 Show GitHub Exploit DB Packet Storm
279145 6.5 MEDIUM
Network 		debian
remotesensing 		debian_linux
libtiff 		The (1) putcontig8bitYCbCr21tile function in tif_getimage.c or (2) NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9655 2024-11-21 11:21 2016-04-14 Show GitHub Exploit DB Packet Storm
279146 9.8 CRITICAL
Network 		pixman
canonical 		pixman
ubuntu_linux 		Integer overflow in the create_bits function in pixman-bits-image.c in Pixman before 0.32.6 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code… CWE-189
Numeric Errors 		CVE-2014-9766 2024-11-21 11:21 2016-04-13 Show GitHub Exploit DB Packet Storm
279147 5.3 MEDIUM
Network 		mantisbt mantisbt Incomplete blacklist vulnerability in the config_is_private function in config_api.php in MantisBT 1.3.x before 1.3.0 allows remote attackers to obtain sensitive master salt configuration information… CWE-200
Information Exposure 		CVE-2014-9759 2024-11-21 11:21 2016-04-12 Show GitHub Exploit DB Packet Storm
279148 7.3 HIGH
Network 		pcre pcre pcre_jit_compile.c in PCRE 8.35 does not properly use table jumps to optimize nested alternatives, which allows remote attackers to cause a denial of service (stack memory corruption) or possibly hav… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9769 2024-11-21 11:21 2016-03-29 Show GitHub Exploit DB Packet Storm
279149 8.8 HIGH
Network 		ibm tivoli_netview_access_services IBM Tivoli NetView Access Services (NVAS) allows remote authenticated users to gain privileges by entering the ADM command and modifying a "page ID" field to the EMSPG2 transaction code. NOTE: the v… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-9768 2024-11-21 11:21 2016-03-18 Show GitHub Exploit DB Packet Storm
279150 9.8 CRITICAL
Network 		atlassian bamboo The Ignite Realtime Smack XMPP API, as used in Atlassian Bamboo before 5.9.9 and 5.10.x before 5.10.0, allows remote configured XMPP servers to execute arbitrary Java code via serialized data in an X… CWE-20
 Improper Input Validation  		CVE-2014-9757 2024-11-21 11:21 2016-02-9 Show GitHub Exploit DB Packet Storm