Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241261	3.5	注意	Pidgin	-	Pidgin の libpurple におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-2214	2012-09-6 13:40	2012-05-7	Show	GitHub Exploit DB Packet Storm

241262	7.5	危険	BuddyPress.org	-	WordPress 用 BuddyPress プラグインの wp-load.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-2109	2012-09-6 11:31	2012-09-4	Show	GitHub Exploit DB Packet Storm

241263	5	警告	Coppermine Photo Gallery	-	Coppermine Photo Gallery における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-1614	2012-09-6 11:29	2012-09-4	Show	GitHub Exploit DB Packet Storm

241264	3.5	注意	Coppermine Photo Gallery	-	Coppermine Photo Gallery の edit_one_pic.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1613	2012-09-6 11:28	2012-09-4	Show	GitHub Exploit DB Packet Storm

241265	5	警告	TYPO3 Association	-	TYPO3 におけるクロスサイトスクリプティング保護メカニズムを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2012-1608	2012-09-6 11:16	2012-03-28	Show	GitHub Exploit DB Packet Storm

241266	5	警告	TYPO3 Association	-	TYPO3 の Command Line Interface スクリプトにおけるデータベース名を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-1607	2012-09-6 11:15	2012-03-28	Show	GitHub Exploit DB Packet Storm

241267	3.5	注意	TYPO3 Association	-	TYPO3 の Backend コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1606	2012-09-6 11:12	2012-03-28	Show	GitHub Exploit DB Packet Storm

241268	5	警告	TYPO3 Association	-	TYPO3 の Extbase Framework における任意のオブジェクトのシリアル化を解除される脆弱性	CWE-DesignError	CVE-2012-1605	2012-09-6 11:10	2012-03-28	Show	GitHub Exploit DB Packet Storm

241269	5	警告	Mozilla Foundation	-	Bugzilla におけるファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4747	2012-09-6 10:59	2012-08-30	Show	GitHub Exploit DB Packet Storm

241270	5	警告	Mozilla Foundation	-	Bugzilla の Auth/Verify/LDAP.pm における LDAP ディレクトリにデータを挿入される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-3981	2012-09-6 10:46	2012-08-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285301	7.5	HIGH Network	linux redhat canonical debian opensuse suse oracle	linux_kernel enterprise_linux enterprise_mrg ubuntu_linux debian_linux evergreen linux_enterprise_workstation_extension suse_linux_enterprise_server linux_enterprise_software_…	The SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (system crash) via a malformed ASCONF chunk, related to net/sctp/sm_make_chunk.c and ne…	CWE-20 Improper Input Validation	CVE-2014-3673	2024-11-21 11:08	2014-11-10	Show	GitHub Exploit DB Packet Storm

285302	5.5	MEDIUM Local	linux opensuse suse novell redhat debian canonical	linux_kernel evergreen linux_enterprise_real_time_extension suse_linux_enterprise_server suse_linux_enterprise_desktop linux_enterprise_workstation_extension linux_enterprise_softwa…	arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which allow…	CWE-400 Uncontrolled Resource Consumption	CVE-2014-3690	2024-11-21 11:08	2014-11-10	Show	GitHub Exploit DB Packet Storm

285303	7.5	HIGH Network	linux redhat canonical opensuse novell suse debian oracle	linux_kernel enterprise_mrg ubuntu_linux evergreen suse_linux_enterprise_server linux_enterprise_real_time_extension debian_linux suse_linux_enterprise_desktop linux_enterpris…	The sctp_assoc_lookup_asconf_ack function in net/sctp/associola.c in the SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (panic) via duplic…	CWE-400 Uncontrolled Resource Consumption	CVE-2014-3687	2024-11-21 11:08	2014-11-10	Show	GitHub Exploit DB Packet Storm

285304	5.5	MEDIUM Local	linux redhat canonical debian opensuse suse oracle	linux_kernel enterprise_linux ubuntu_linux debian_linux evergreen suse_linux_enterprise_server linux	arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel through 3.17.2 does not properly perform RIP changes, which allows guest OS users to cause a denial of service (guest OS crash) via a c…	NVD-CWE-noinfo	CVE-2014-3647	2024-11-21 11:08	2014-11-10	Show	GitHub Exploit DB Packet Storm

285305	5.5	MEDIUM Local	linux redhat canonical debian opensuse suse	linux_kernel enterprise_linux ubuntu_linux debian_linux evergreen suse_linux_enterprise_server	arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel through 3.17.2 does not have an exit handler for the INVVPID instruction, which allows guest OS users to cause a denial of service (guest O…	NVD-CWE-noinfo	CVE-2014-3646	2024-11-21 11:08	2014-11-10	Show	GitHub Exploit DB Packet Storm

285306	-		linux	linux_kernel	arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.12 does not have an exit handler for the INVEPT instruction, which allows guest OS users to cause a denial of service (guest OS cr…	CWE-20 Improper Input Validation	CVE-2014-3645	2024-11-21 11:08	2014-11-10	Show	GitHub Exploit DB Packet Storm

285307	4.7	MEDIUM Local	linux redhat canonical debian	linux_kernel enterprise_linux ubuntu_linux debian_linux	Race condition in the __kvm_migrate_pit_timer function in arch/x86/kvm/i8254.c in the KVM subsystem in the Linux kernel through 3.17.2 allows guest OS users to cause a denial of service (host OS cras…	CWE-362 Race Condition	CVE-2014-3611	2024-11-21 11:08	2014-11-10	Show	GitHub Exploit DB Packet Storm

285308	5.5	MEDIUM Local	linux canonical debian opensuse suse	linux_kernel ubuntu_linux debian_linux evergreen suse_linux_enterprise_server	The WRMSR processing functionality in the KVM subsystem in the Linux kernel through 3.17.2 does not properly handle the writing of a non-canonical address to a model-specific register, which allows g…	NVD-CWE-noinfo	CVE-2014-3610	2024-11-21 11:08	2014-11-10	Show	GitHub Exploit DB Packet Storm

285309	-		redhat canonical libreoffice opensuse	enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server ubuntu_linux libreoffice opensuse	Use-after-free vulnerability in the socket manager of Impress Remote in LibreOffice 4.x before 4.2.7 and 4.3.x before 4.3.3 allows remote attackers to cause a denial of service (crash) or possibly ex…	NVD-CWE-Other	CVE-2014-3693	2024-11-21 11:08	2014-11-8	Show	GitHub Exploit DB Packet Storm

285310	-		debian qemu redhat canonical	debian_linux qemu enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_hpc_node ubuntu_linux	The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of service (NULL pointer dereference) by sending a udp packet with a value of 0 in the source port and a…	CWE-476 NULL Pointer Dereference	CVE-2014-3640	2024-11-21 11:08	2014-11-8	Show	GitHub Exploit DB Packet Storm