Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240851	2.6	注意	サイボウズ	-	KUNAI Browser for Remote Service β における WebView クラスに関する脆弱性	CWE-Other その他	CVE-2012-4013	2012-09-13 12:02	2012-09-13	Show	GitHub Exploit DB Packet Storm

240852	10	危険	FFmpeg	-	FFmpeg の libavcodec/indeo3.c における脆弱性	CWE-noinfo 情報不足	CVE-2012-2804	2012-09-13 11:01	2012-05-25	Show	GitHub Exploit DB Packet Storm

240853	10	危険	FFmpeg	-	FFmpeg の libavcodec/mpeg12.c 内の mpeg_decode_frame 関数におけるメモリ二重解放の脆弱性	CWE-399 リソース管理の問題	CVE-2012-2803	2012-09-13 11:00	2012-05-25	Show	GitHub Exploit DB Packet Storm

240854	10	危険	FFmpeg	-	FFmpeg の libavcodec/ac3dec.c 内の ac3_decode_frame 関数における脆弱性	CWE-noinfo 情報不足	CVE-2012-2802	2012-09-13 11:00	2012-05-25	Show	GitHub Exploit DB Packet Storm

240855	10	危険	FFmpeg	-	FFmpeg の libavcodec/avs.c における脆弱性	CWE-noinfo 情報不足	CVE-2012-2801	2012-09-13 10:59	2012-05-25	Show	GitHub Exploit DB Packet Storm

240856	10	危険	FFmpeg	-	FFmpeg の libavcodec/ivi_common.c 内の ff_ivi_process_empty_tile 関数における脆弱性	CWE-noinfo 情報不足	CVE-2012-2800	2012-09-13 10:59	2012-05-25	Show	GitHub Exploit DB Packet Storm

240857	10	危険	FFmpeg	-	FFmpeg の libavcodec/wmalosslessdec.c における脆弱性	CWE-noinfo 情報不足	CVE-2012-2799	2012-09-13 10:58	2012-05-25	Show	GitHub Exploit DB Packet Storm

240858	10	危険	FFmpeg	-	FFmpeg の libavcodec/dfa.c 内の decode_dds1 関数における脆弱性	CWE-noinfo 情報不足	CVE-2012-2798	2012-09-13 10:57	2012-05-25	Show	GitHub Exploit DB Packet Storm

240859	10	危険	FFmpeg	-	FFmpeg の libavcodec/mpegaudiodec.c 内の decode_frame_mp3on4 関数における脆弱性	CWE-noinfo 情報不足	CVE-2012-2797	2012-09-13 10:55	2012-05-25	Show	GitHub Exploit DB Packet Storm

240860	10	危険	FFmpeg	-	FFmpeg の libavcodec/vc1dec.c 内の vc1_decode_frame 関数における脆弱性	CWE-noinfo 情報不足	CVE-2012-2796	2012-09-13 10:55	2012-05-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
286991	-	ovirt	ovirt	The REST API in oVirt 3.4.0 and earlier stores session IDs in HTML5 local storage, which allows remote attackers to obtain sensitive information via a crafted web page.	CWE-200 Information Exposure	CVE-2014-0153	2024-11-21 11:01	2014-09-8	Show	GitHub Exploit DB Packet Storm

286992	-	ovirt redhat	ovirt ovirt-engine	Session fixation vulnerability in the web admin interface in oVirt 3.4.0 and earlier allows remote attackers to hijack web sessions via unspecified vectors.	NVD-CWE-Other	CVE-2014-0152	2024-11-21 11:01	2014-09-8	Show	GitHub Exploit DB Packet Storm

286993	-	apache	ofbiz	Multiple cross-site scripting (XSS) vulnerabilities in framework/common/webcommon/includes/messages.ftl in Apache OFBiz 11.04.01 before 11.04.05 and 12.04.01 before 12.04.04 allow remote attackers to…	CWE-79 Cross-site Scripting	CVE-2014-0232	2024-11-21 11:01	2014-08-22	Show	GitHub Exploit DB Packet Storm

286994	-	iridium	open_port pilot_below_deck_equipment	The Terminal Upgrade Tool in the Pilot Below Deck Equipment (BDE) and OpenPort implementations on Iridium satellite terminals allows remote attackers to execute arbitrary code by uploading new firmwa…	NVD-CWE-Other	CVE-2014-0327	2024-11-21 11:01	2014-08-18	Show	GitHub Exploit DB Packet Storm

286995	-	iridium	open_port pilot_below_deck_equipment	The Pilot Below Deck Equipment (BDE) and OpenPort implementations on Iridium satellite terminals allow remote attackers to read hardcoded credentials via the web interface.	NVD-CWE-Other	CVE-2014-0326	2024-11-21 11:01	2014-08-18	Show	GitHub Exploit DB Packet Storm

286996	-	cobham	ailor_6110_mini-c_gmdss sailor_6006_message_terminal sailor_6222_vhf sailor_6300_mf_\/_hf	The thraneLINK protocol implementation on Cobham devices does not verify firmware signatures, which allows attackers to execute arbitrary code by leveraging physical access or terminal access to send…	NVD-CWE-Other	CVE-2014-0328	2024-11-21 11:01	2014-08-15	Show	GitHub Exploit DB Packet Storm

286997	-	microsoft	windows_server_2008 windows_rt windows_8.1 windows_7 windows_rt_8.1 windows_vista windows_8 windows_server_2012 windows_server_2003	win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-0318	2024-11-21 11:01	2014-08-13	Show	GitHub Exploit DB Packet Storm

286998	-	microsoft	windows_server_2008 windows_server_2012 windows_rt windows_8.1 windows_7 windows_rt_8.1 windows_8	Memory leak in the Local RPC (LRPC) server implementation in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 …	CWE-399 Resource Management Errors	CVE-2014-0316	2024-11-21 11:01	2014-08-13	Show	GitHub Exploit DB Packet Storm

286999	-	redhat opensuse	libvirt enterprise_linux opensuse enterprise_virtualization	libvirt 0.7.5 through 1.2.x before 1.2.5 allows local users to cause a denial of service (read block and hang) via a crafted XML document containing an XML external entity declaration in conjunction …	CWE-20 Improper Input Validation	CVE-2014-0179	2024-11-21 11:01	2014-08-4	Show	GitHub Exploit DB Packet Storm

287000	-	zarafa fedoraproject	zarafa webapp fedora	WebAccess in Zarafa before 7.1.10 and WebApp before 1.6 stores credentials in cleartext, which allows local Apache users to obtain sensitive information by reading the PHP session files.	CWE-310 Cryptographic Issues	CVE-2014-0103	2024-11-21 11:01	2014-07-29	Show	GitHub Exploit DB Packet Storm