Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
226411 5 警告 Node.js Foundation - Node.js の HTTP サーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2013-4450 2014-01-17 11:31 2013-10-18 Show GitHub Exploit DB Packet Storm
226412 3.5 注意 OpenStack - 複数の OpenStack 製品における制限イメージを読まれる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-4428 2014-01-17 11:29 2013-10-17 Show GitHub Exploit DB Packet Storm
226413 6.8 警告 Google - Google Chrome の browser/ui/sync/one_click_signin_helper.cc におけるセッション固定攻撃を実行される脆弱性 CWE-287
不適切な認証
CVE-2013-6634 2014-01-17 11:24 2013-12-4 Show GitHub Exploit DB Packet Storm
226414 4.3 警告 Google - Google Chrome で使用される Blink の core/loader/FrameLoader.cpp におけるアドレスバーを偽装される脆弱性 CWE-20
不適切な入力確認
CVE-2013-6636 2014-01-17 11:22 2013-12-4 Show GitHub Exploit DB Packet Storm
226415 7.5 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2013-6637 2014-01-17 11:21 2013-12-4 Show GitHub Exploit DB Packet Storm
226416 7.5 危険 Google - Google Chrome で使用される Google V8 の runtime.cc におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2013-6638 2014-01-17 11:19 2013-12-4 Show GitHub Exploit DB Packet Storm
226417 7.5 危険 Google - Google Chrome で使用される Google V8 の hydrogen-dehoist.cc におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2013-6639 2014-01-17 11:10 2013-12-4 Show GitHub Exploit DB Packet Storm
226418 7.5 危険 Google - Google Chrome で使用される Google V8 の hydrogen-dehoist.cc におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2013-6640 2014-01-17 11:08 2013-12-4 Show GitHub Exploit DB Packet Storm
226419 8.3 危険 Samba Project - Samba の winbindd の librpc/rpc/dcerpc_util.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2013-4408 2014-01-17 11:06 2013-12-9 Show GitHub Exploit DB Packet Storm
226420 4.3 警告 Mozilla Foundation - Linux 上で稼働する Mozilla Firefox および SeaMonkey におけるクリップボードデータを読まれる脆弱性 CWE-200
情報漏えい
CVE-2013-6672 2014-01-17 10:59 2013-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273961 7.3 HIGH
Network
huawei ocean_stor_firmware Huawei OceanStor 5300 V3, 5500 V3, 5600 V3, 5800 V3, 6800 V3, 18800 V3, and 18500 V3 before V300R003C10 sends the plaintext session token in the HTTP header, which allows remote attackers to conduct … CWE-200
Information Exposure
CVE-2016-5722 2024-11-21 11:54 2016-06-25 Show GitHub Exploit DB Packet Storm
273962 4.7 MEDIUM
Local
solarwinds virtualization_manager SolarWinds Virtualization Manager 6.3.1 and earlier uses weak encryption to store passwords in /etc/shadow, which allows local users with superuser privileges to obtain user passwords via a brute for… CWE-200
Information Exposure
CVE-2016-5709 2024-11-21 11:54 2016-06-25 Show GitHub Exploit DB Packet Storm
273963 5.9 MEDIUM
Network
huawei huawei_firmware Memory leak in Huawei IPS Module, NGFW Module, NIP6300, NIP6600, and Secospace USG6300, USG6500, USG6600, USG9500, and AntiDDoS8000 V500R001C00 before V500R001C20SPC100, when in hot standby networkin… CWE-399
 Resource Management Errors
CVE-2016-5435 2024-11-21 11:54 2016-06-25 Show GitHub Exploit DB Packet Storm
273964 6.1 MEDIUM
Local
citrix ios_receiver Citrix iOS Receiver before 7.0 allows attackers to cause TLS certificates to be incorrectly validated via unspecified vectors. CWE-310
CWE-20
Cryptographic Issues
 Improper Input Validation 
CVE-2016-5433 2024-11-21 11:54 2016-06-18 Show GitHub Exploit DB Packet Storm
273965 8.2 HIGH
Network
openstack neutron The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended MAC-spoofing protection mechanism and consequently cause a denial of serv… CWE-254
 7PK - Security Features
CVE-2016-5363 2024-11-21 11:54 2016-06-18 Show GitHub Exploit DB Packet Storm
273966 8.2 HIGH
Network
openstack neutron The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended DHCP-spoofing protection mechanism and consequently cause a denial of ser… CWE-254
 7PK - Security Features
CVE-2016-5362 2024-11-21 11:54 2016-06-18 Show GitHub Exploit DB Packet Storm
273967 7.5 HIGH
Network
canonical
debian
libexpat_project
google
ubuntu_linux
debian_linux
libexpat
android
The XML parser in Expat does not use sufficient entropy for hash initialization, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted identifiers in an … CWE-399
 Resource Management Errors
CVE-2016-5300 2024-11-21 11:54 2016-06-17 Show GitHub Exploit DB Packet Storm
273968 7.5 HIGH
Network
libreswan libreswan programs/pluto/ikev1.c in libreswan before 3.17 retransmits in initial-responder states, which allows remote attackers to cause a denial of service (traffic amplification) via a spoofed UDP packet. N… CWE-20
 Improper Input Validation 
CVE-2016-5361 2024-11-21 11:54 2016-06-16 Show GitHub Exploit DB Packet Storm
273969 7.5 HIGH
Network
huawei honor_ws851_firmware Huawei Honor WS851 routers with software 1.1.21.1 and earlier allow remote attackers to obtain sensitive information via unspecified vectors, aka HWPSIRT-2016-05053. CWE-200
Information Exposure
CVE-2016-5367 2024-11-21 11:54 2016-06-14 Show GitHub Exploit DB Packet Storm
273970 7.5 HIGH
Network
huawei honor_ws851_firmware Huawei Honor WS851 routers with software 1.1.21.1 and earlier allow remote attackers to modify configuration data via vectors related to a "file injection vulnerability," aka HWPSIRT-2016-05052. CWE-284
Improper Access Control
CVE-2016-5366 2024-11-21 11:54 2016-06-14 Show GitHub Exploit DB Packet Storm