Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240651	7.5	危険	Mozilla Foundation	-	複数の Mozilla 製品のブラウザエンジンの nsWindow 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0463	2012-07-30 17:22	2012-03-13	Show	GitHub Exploit DB Packet Storm

240652	5	警告	SAND STUDIO	-	AirDroid のログインの実装における多重ログイン防止機能を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3888	2012-07-30 16:53	2012-07-26	Show	GitHub Exploit DB Packet Storm

240653	5	警告	SAND STUDIO	-	AirDroid における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2012-3887	2012-07-30 16:50	2012-07-26	Show	GitHub Exploit DB Packet Storm

240654	5	警告	SAND STUDIO	-	AirDroid における平文データを取得される脆弱性	CWE-200 情報漏えい	CVE-2012-3886	2012-07-30 16:39	2012-07-26	Show	GitHub Exploit DB Packet Storm

240655	7.5	危険	SAND STUDIO	-	AirDroid のデフォルト設定におけるアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2012-3885	2012-07-30 16:38	2012-07-26	Show	GitHub Exploit DB Packet Storm

240656	5	警告	SAND STUDIO	-	AirDroid におけるアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2012-3884	2012-07-30 16:35	2012-07-26	Show	GitHub Exploit DB Packet Storm

240657	5	警告	Igor Sysoev	-	nginx/Windows におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4963	2012-07-30 16:24	2012-07-26	Show	GitHub Exploit DB Packet Storm

240658	7.5	危険	シトリックス・システムズ	-	Citrix Provisioning Services の SoapServer サービスにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4068	2012-07-30 16:22	2012-05-1	Show	GitHub Exploit DB Packet Storm

240659	4.3	警告	Palo Alto Networks	-	複数の Palo Alto Networks 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4043	2012-07-30 16:20	2012-07-26	Show	GitHub Exploit DB Packet Storm

240660	5	警告	アップル	-	Apple Xcode におけるキーチェーンエントリを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3698	2012-07-30 16:19	2012-07-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
286641	-	apache	cloudstack	The virtual router in Apache CloudStack before 4.2.1 does not preserve the source restrictions in firewall rules after being restarted, which allows remote attackers to bypass intended restrictions v…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6398	2024-11-21 10:59	2014-01-16	Show	GitHub Exploit DB Packet Storm

286642	-	ibm	global_retention_policy_and_schedule_management atlas_suite disposal_and_governance_management_for_it atlas_ediscovery_process_management	IBM Atlas eDiscovery Process Management 6.0.1.5 and earlier and 6.0.2, Disposal and Governance Management for IT 6.0.1.5 and earlier and 6.0.2, and Global Retention Policy and Schedule Management 6.0…	CWE-20 Improper Input Validation	CVE-2013-6334	2024-11-21 10:59	2014-01-10	Show	GitHub Exploit DB Packet Storm

286643	-	ibm	global_retention_policy_and_schedule_management atlas_suite disposal_and_governance_management_for_it atlas_ediscovery_process_management	SQL injection vulnerability in IBM Atlas eDiscovery Process Management 6.0.1.5 and earlier and 6.0.2, Disposal and Governance Management for IT 6.0.1.5 and earlier and 6.0.2, and Global Retention Pol…	CWE-89 SQL Injection	CVE-2013-6321	2024-11-21 10:59	2014-01-10	Show	GitHub Exploit DB Packet Storm

286644	-	seagate	blackarmor_nas_220_firmware blackarmor_nas_220	Multiple cross-site scripting (XSS) vulnerabilities in Seagate BlackArmor NAS 220 devices with firmware sg2000-2000.1331 allow remote attackers to inject arbitrary web script or HTML via the (1) full…	CWE-79 Cross-site Scripting	CVE-2013-6923	2024-11-21 10:59	2014-01-10	Show	GitHub Exploit DB Packet Storm

286645	-	x	libxfont	Stack-based buffer overflow in the bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont 1.1 through 1.4.6 allows remote attackers to cause a denial of service (crash) or possibly execute …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-6462	2024-11-21 10:59	2014-01-10	Show	GitHub Exploit DB Packet Storm

286646	-	redhat	libvirt	The lxcDomainGetMemoryParameters method in lxc/lxc_driver.c in libvirt 1.0.5 through 1.2.0 does not properly check the status of LXC guests when reading memory tunables, which allows local users to c…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6436	2024-11-21 10:59	2014-01-8	Show	GitHub Exploit DB Packet Storm

286647	-	apache	libcloud	Libcloud 0.12.3 through 0.13.2 does not set the scrub_data parameter for the destroy DigitalOcean API, which allows local users to obtain sensitive information by leveraging a new VM.	CWE-200 Information Exposure	CVE-2013-6480	2024-11-21 10:59	2014-01-8	Show	GitHub Exploit DB Packet Storm

286648	-	openstack	havana	Interaction error in OpenStack Nova and Neutron before Havana 2013.2.1 and icehouse-1 does not validate the instance ID of the tenant making a request, which allows remote tenants to obtain sensitive…	CWE-200 Information Exposure	CVE-2013-6419	2024-11-21 10:59	2014-01-8	Show	GitHub Exploit DB Packet Storm

286649	-	devscripts_devel_team	devscripts	Uscan in devscripts before 2.13.9 allows remote attackers to execute arbitrary code via a crafted tarball.	NVD-CWE-noinfo	CVE-2013-6888	2024-11-21 10:59	2014-01-8	Show	GitHub Exploit DB Packet Storm

286650	-	cru-inc	ditto_forensic_fieldstation_firmware ditto_forensic_fieldstation	The write-blocker in CRU Ditto Forensic FieldStation with firmware before 2013Oct15a has a default "ditto" username and password, which allows remote attackers to gain privileges.	CWE-255 Credentials Management	CVE-2013-6884	2024-11-21 10:59	2014-01-8	Show	GitHub Exploit DB Packet Storm