Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224591	6.3	警告	シスコシステムズ	-	Cisco TelePresence Multipoint Switch デバイスの Media Snapshot の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-5516	2013-10-3 15:03	2013-09-30	Show	GitHub Exploit DB Packet Storm

224592	4.3	警告	IBM	-	IBM Rational ClearQuest の Web クライアントにおける重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-3041	2013-10-3 14:59	2013-09-16	Show	GitHub Exploit DB Packet Storm

224593	6.2	警告	シスコシステムズ	-	Cisco Unified Computing System の Baseboard Management Controller における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2012-4096	2013-10-3 14:52	2013-10-1	Show	GitHub Exploit DB Packet Storm

224594	4.3	警告	X2Engine	-	X2Engine X2CRM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5693	2013-10-3 14:45	2013-09-10	Show	GitHub Exploit DB Packet Storm

224595	8.5	危険	X2Engine	-	X2Engine X2CRM におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-5692	2013-10-3 14:42	2013-09-10	Show	GitHub Exploit DB Packet Storm

224596	6.8	警告	FreeSWITCH	-	FreeSWITCH の switch_regex.c の switch_perform_substitution 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-2238	2013-10-3 14:39	2013-07-2	Show	GitHub Exploit DB Packet Storm

224597	7.8	危険	Squid-cache.org	-	Squid の errorpage.cc の strHdrAcptLangGetItem 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1839	2013-10-3 14:08	2013-03-14	Show	GitHub Exploit DB Packet Storm

224598	10	危険	IBM	-	IBM SPSS Collaboration and Deployment Services における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-5370	2013-10-3 11:11	2013-09-26	Show	GitHub Exploit DB Packet Storm

224599	10	危険	IBM	-	IBM SPSS Collaboration and Deployment Services における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-4042	2013-10-3 11:05	2013-09-26	Show	GitHub Exploit DB Packet Storm

224600	8.3	危険	日立	-	JP1/Base における任意のコマンドを実行される脆弱性	CWE-noinfo 情報不足	-	2013-10-3 10:56	2013-09-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
277221	9.8	CRITICAL Network	elastic	elasticsearch	Elasticsearch before 1.6.1 allows remote attackers to execute arbitrary code via unspecified vectors involving the transport protocol. NOTE: ZDI appears to claim that CVE-2015-3253 and CVE-2015-5377…	CWE-74 Injection	CVE-2015-5377	2024-11-21 11:32	2018-03-7	Show	GitHub Exploit DB Packet Storm

277222	7.5	HIGH Network	blackcat-cms	blackcat_cms	Directory traversal vulnerability in widgets/logs.php in BlackCat CMS before 1.1.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the dl parameter.	CWE-22 Path Traversal	CVE-2015-5079	2024-11-21 11:32	2018-03-1	Show	GitHub Exploit DB Packet Storm

277223	5.9	MEDIUM Network	w1.fi debian	wpa_supplicant debian_linux	The eap_pwd_perform_confirm_exchange function in eap_peer/eap_pwd.c in wpa_supplicant 2.x before 2.6, when EAP-pwd is enabled in a network configuration profile, allows remote attackers to cause a de…	CWE-476 NULL Pointer Dereference	CVE-2015-5316	2024-11-21 11:32	2018-02-22	Show	GitHub Exploit DB Packet Storm

277224	5.9	MEDIUM Network	w1.fi debian	wpa_supplicant debian_linux	The eap_pwd_process function in eap_peer/eap_pwd.c in wpa_supplicant 2.x before 2.6 does not validate that the reassembly buffer is large enough for the final fragment when EAP-pwd is enabled in a ne…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-5315	2024-11-21 11:32	2018-02-22	Show	GitHub Exploit DB Packet Storm

277225	5.9	MEDIUM Network	w1.fi debian	wpa_supplicant debian_linux	The eap_pwd_process function in eap_server/eap_server_pwd.c in hostapd 2.x before 2.6 does not validate that the reassembly buffer is large enough for the final fragment when used with (1) an interna…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-5314	2024-11-21 11:32	2018-02-22	Show	GitHub Exploit DB Packet Storm

277226	8.8	HIGH Network	pivotal_software cloudfoundry	cloud_foundry_elastic_runtime cloud_foundry_uaa cf-release	Cloud Foundry Runtime cf-release before 216, UAA before 2.5.2, and Pivotal Cloud Foundry (PCF) Elastic Runtime before 1.7.0 allow attackers to have unspecified impact via vectors involving emails wit…	CWE-200 Information Exposure	CVE-2015-5173	2024-11-21 11:32	2017-10-25	Show	GitHub Exploit DB Packet Storm

277227	9.8	CRITICAL Network	pivotal_software cloudfoundry	cloud_foundry_elastic_runtime cloud_foundry_uaa cf-release	Cloud Foundry Runtime cf-release before 216, UAA before 2.5.2, and Pivotal Cloud Foundry (PCF) Elastic Runtime before 1.7.0 allow attackers to have unspecified impact by leveraging failure to expire …	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2015-5172	2024-11-21 11:32	2017-10-25	Show	GitHub Exploit DB Packet Storm

277228	9.8	CRITICAL Network	pivotal_software cloudfoundry	cloud_foundry_elastic_runtime cloud_foundry_uaa cf-release	The password change functionality in Cloud Foundry Runtime cf-release before 216, UAA before 2.5.2, and Pivotal Cloud Foundry (PCF) Elastic Runtime before 1.7.0 allow attackers to have unspecified im…	CWE-613 Insufficient Session Expiration	CVE-2015-5171	2024-11-21 11:32	2017-10-25	Show	GitHub Exploit DB Packet Storm

277229	8.8	HIGH Network	pivotal_software cloudfoundry	cloud_foundry_elastic_runtime cloud_foundry_uaa cf-release	Cloud Foundry Runtime cf-release before 216, UAA before 2.5.2, and Pivotal Cloud Foundry (PCF) Elastic Runtime before 1.7.0 allow remote attackers to conduct cross-site request forgery (CSRF) attacks…	CWE-352 Origin Validation Error	CVE-2015-5170	2024-11-21 11:32	2017-10-25	Show	GitHub Exploit DB Packet Storm

277230	5.4	MEDIUM Network	axigen	axigen_mail_server	Cross-site scripting (XSS) vulnerability in actions.hsp in the Ajax WebMail interface in AXIGEN Mail Server before 9.0 allows remote attackers to inject arbitrary web script or HTML via an email atta…	CWE-79 Cross-site Scripting	CVE-2015-5379	2024-11-21 11:32	2017-10-24	Show	GitHub Exploit DB Packet Storm