Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228761 2.1 注意 アップル - Apple iOS 6.1 の Identity Services における認証を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0963 2013-04-2 17:01 2013-01-29 Show GitHub Exploit DB Packet Storm
228762 10 危険 シーメンス - Siemens CP 1604 および CP 1616 インターフェースカードにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-0659 2013-04-2 16:43 2013-02-13 Show GitHub Exploit DB Packet Storm
228763 9.3 危険 アップル - Apple QuickTime におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-3756 2013-04-2 16:42 2012-11-7 Show GitHub Exploit DB Packet Storm
228764 9.3 危険 Novell - Novell GroupWise Messenger および Novell Messenger におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-1085 2013-04-2 16:41 2013-03-13 Show GitHub Exploit DB Packet Storm
228765 10 危険 Novell - Novell Identity Manager の Roles Based Provisioning Module における脆弱性 CWE-noinfo
情報不足 		CVE-2013-1083 2013-04-2 16:40 2013-03-12 Show GitHub Exploit DB Packet Storm
228766 7.5 危険 Novell - Novell ZENworks Mobile Management の DUSAP.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-1082 2013-04-2 16:40 2013-03-29 Show GitHub Exploit DB Packet Storm
228767 5 警告 アップル - Apple iOS および Apple TV における ASLR 保護メカニズムを回避される脆弱性 CWE-200
情報漏えい 		CVE-2012-3749 2013-04-2 16:39 2012-11-3 Show GitHub Exploit DB Packet Storm
228768 5.8 警告 アップル
jabberd 2.x project		 - jabberd2 の s2s/out.c におけるドメインになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3525 2013-04-2 16:38 2012-08-25 Show GitHub Exploit DB Packet Storm
228769 5 警告 PostgreSQL.org
アップル		 - PostgreSQL のコアサーバコンポーネントにおける任意のファイルの存在を特定される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3489 2013-04-2 16:36 2012-08-17 Show GitHub Exploit DB Packet Storm
228770 6.8 警告 Novell - Novell ZENworks Configuration Management の AdminStudio におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-1079 2013-04-2 16:35 2013-02-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273901 7.5 HIGH
Network 		smokeping smokeping In the ebuild package through smokeping-2.7.3-r1 for SmokePing on Gentoo, the initscript allows the smokeping user to gain ownership of any file, allowing for the smokeping user to gain root privileg… NVD-CWE-noinfo
CVE-2016-20015 2024-11-21 11:47 2022-09-21 Show GitHub Exploit DB Packet Storm
273902 6.4 MEDIUM
Network 		kippo-graph_project kippo-graph In kippo-graph before version 1.5.1, there is a cross-site scripting vulnerability in $file_link in class/KippoInput.class.php. CWE-79
Cross-site Scripting 		CVE-2016-2139 2024-11-21 11:47 2022-07-29 Show GitHub Exploit DB Packet Storm
273903 6.4 MEDIUM
Network 		kippo-graph_project kippo-graph In kippo-graph before version 1.5.1, there is a cross-site scripting vulnerability in xss_clean() in class/KippoInput.class.php. CWE-79
Cross-site Scripting 		CVE-2016-2138 2024-11-21 11:47 2022-07-29 Show GitHub Exploit DB Packet Storm
273904 9.8 CRITICAL
Network 		pam_tacplus_project pam_tacplus In pam_tacplus.c in pam_tacplus before 1.4.1, pam_sm_acct_mgmt does not zero out the arep data structure. NVD-CWE-Other
CVE-2016-20014 2024-11-21 11:47 2022-04-21 Show GitHub Exploit DB Packet Storm
273905 7.5 HIGH
Network 		sha256crypt_project
sha512crypt_project 		sha256crypt
sha512crypt 		sha256crypt and sha512crypt through 0.6 allow attackers to cause a denial of service (CPU consumption) because the algorithm's runtime is proportional to the square of the length of the password. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2016-20013 2024-11-21 11:47 2022-02-19 Show GitHub Exploit DB Packet Storm
273906 5.9 MEDIUM
Network 		samba
debian
fedoraproject
redhat
canonical 		samba
debian_linux
fedora
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_for_scientific_computing
enterprise_linux
enterprise_linux_server
enterprise_l… 		A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required. CWE-287
Improper Authentication 		CVE-2016-2124 2024-11-21 11:47 2022-02-19 Show GitHub Exploit DB Packet Storm
273907 5.3 MEDIUM
Network 		openbsd
netapp 		openssh
ontap_select_deploy_administration_utility
clustered_data_ontap
solidfire
hci_management_node 		OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occu… NVD-CWE-Other
CVE-2016-20012 2024-11-21 11:47 2021-09-16 Show GitHub Exploit DB Packet Storm
273908 7.5 HIGH
Network 		gnome libgrss libgrss through 0.7.0 fails to perform TLS certificate verification when downloading feeds, allowing remote attackers to manipulate the contents of feeds without detection. This occurs because of the… CWE-295
Improper Certificate Validation  		CVE-2016-20011 2024-11-21 11:47 2021-05-26 Show GitHub Exploit DB Packet Storm
273909 10.0 CRITICAL
Network 		ewww image_optimizer EWWW Image Optimizer before 2.8.5 allows remote command execution because it relies on a protection mechanism involving boolval, which is unavailable before PHP 5.5. NVD-CWE-noinfo
CVE-2016-20010 2024-11-21 11:47 2021-05-5 Show GitHub Exploit DB Packet Storm
273910 9.8 CRITICAL
Network 		windriver
siemens 		vxworks
sgt-100_firmware
sgt-200_firmware
sgt-300_firmware
sgt-400_firmware
sgt-a20_firmware
sgt-a35_firmware
sgt-a65_firmware 		A DNS client stack-based buffer overflow in ipdnsc_decode_name() affects Wind River VxWorks 6.5 through 7. NOTE: This vulnerability only affects products that are no longer supported by the maintainer CWE-787
 Out-of-bounds Write 		CVE-2016-20009 2024-11-21 11:47 2021-03-12 Show GitHub Exploit DB Packet Storm