Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
225001 10 危険 Mozilla Foundation - 複数の Mozilla 製品の nsEventListenerManager::HandleEventSubType 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2013-5616 2014-03-19 11:20 2013-12-10 Show GitHub Exploit DB Packet Storm
225002 4.3 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey におけるサンドボックス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-5614 2014-03-19 11:18 2013-12-10 Show GitHub Exploit DB Packet Storm
225003 10 危険 Mozilla Foundation - 複数の Mozilla 製品の PresShell::DispatchSynthMouseMove 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2013-5613 2014-03-19 11:16 2013-12-10 Show GitHub Exploit DB Packet Storm
225004 4.3 警告 ウォッチガード・テクノロジー - WatchGuard Fireware XTM にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2014-0338 2014-03-19 11:10 2014-03-13 Show GitHub Exploit DB Packet Storm
225005 7.5 危険 ヒューレット・パッカード - HP Unified Functional Testing における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2013-6210 2014-03-18 16:57 2013-10-21 Show GitHub Exploit DB Packet Storm
225006 7.2 危険 ヒューレット・パッカード - Linux 上で稼働する HP Smart Update Manager における権限を取得される脆弱性 CWE-noinfo
情報不足
CVE-2013-6208 2014-03-18 16:57 2013-03-12 Show GitHub Exploit DB Packet Storm
225007 6.8 警告 Puppet - Puppet Enterprise におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2013-4963 2014-03-18 16:54 2013-08-15 Show GitHub Exploit DB Packet Storm
225008 6.8 警告 Puppet - Puppet Enterprise のコンソールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2013-1399 2014-03-18 16:54 2013-02-6 Show GitHub Exploit DB Packet Storm
225009 6.5 警告 Puppet - Puppet Enterprise の pe_mcollective モジュールにおける重要な情報を取得される脆弱性 CWE-310
暗号の問題
CVE-2013-1398 2014-03-18 16:53 2013-02-6 Show GitHub Exploit DB Packet Storm
225010 4 警告 Puppet - Puppet Enterprise におけるアクセスを保持される脆弱性 CWE-287
不適切な認証
CVE-2012-5158 2014-03-18 16:52 2012-09-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277371 8.8 HIGH
Network
apple safari
watchos
iphone_os
WebKit, as used in Apple iOS before 9.2.1 and Safari before 9.0.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a differe… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-1723 2024-11-21 11:46 2016-02-1 Show GitHub Exploit DB Packet Storm
277372 7.8 HIGH
Local
apple tvos
iphone_os
mac_os_x
watchos
syslog in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-1722 2024-11-21 11:46 2016-02-1 Show GitHub Exploit DB Packet Storm
277373 7.8 HIGH
Local
apple iphone_os
mac_os_x
tvos
watchos
The kernel in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-1721 2024-11-21 11:46 2016-02-1 Show GitHub Exploit DB Packet Storm
277374 7.8 HIGH
Local
apple mac_os_x
tvos
iphone_os
watchos
IOKit in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-1720 2024-11-21 11:46 2016-02-1 Show GitHub Exploit DB Packet Storm
277375 7.8 HIGH
Local
apple watchos
iphone_os
mac_os_x
tvos
The IOHIDFamily API in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vector… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-1719 2024-11-21 11:46 2016-02-1 Show GitHub Exploit DB Packet Storm
277376 7.3 HIGH
Local
apple mac_os_x The IOAcceleratorFamily2 interface in IOAcceleratorFamily in Apple OS X before 10.11.3 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-1718 2024-11-21 11:46 2016-02-1 Show GitHub Exploit DB Packet Storm
277377 7.8 HIGH
Local
apple tvos
iphone_os
mac_os_x
watchos
The Disk Images component in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-1717 2024-11-21 11:46 2016-02-1 Show GitHub Exploit DB Packet Storm
277378 7.8 HIGH
Local
apple mac_os_x AppleGraphicsPowerManagement in Apple OS X before 10.11.3 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-1716 2024-11-21 11:46 2016-02-1 Show GitHub Exploit DB Packet Storm
277379 6.1 MEDIUM
Network
siemens ozw672_firmware
ozw772_firmware
Cross-site scripting (XSS) vulnerability in the login form in the integrated web server on Siemens OZW OZW672 devices before 6.00 and OZW772 devices before 6.00 allows remote attackers to inject arbi… CWE-79
Cross-site Scripting
CVE-2016-1488 2024-11-21 11:46 2016-01-30 Show GitHub Exploit DB Packet Storm
277380 6.1 MEDIUM
Network
cisco unity_connection Cross-site scripting (XSS) vulnerability in Cisco Unity Connection 10.5(2.3009) allows remote attackers to inject arbitrary web script or HTML via a crafted value, aka Bug ID CSCux82596. CWE-79
Cross-site Scripting
CVE-2016-1304 2024-11-21 11:46 2016-01-30 Show GitHub Exploit DB Packet Storm