Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241531 7.8 危険 オラクル - Oracle Solaris における TCP/IP の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3120 2012-07-20 16:02 2012-07-17 Show GitHub Exploit DB Packet Storm
241532 4.3 警告 オラクル - Oracle Solaris における Solaris 管理コンソールの処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3112 2012-07-20 16:01 2012-07-17 Show GitHub Exploit DB Packet Storm
241533 4.7 警告 オラクル - Oracle Solaris における Branded Zone の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-1765 2012-07-20 15:58 2012-07-17 Show GitHub Exploit DB Packet Storm
241534 4.9 警告 オラクル - Oracle Solaris における Kernel/NFS の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-1752 2012-07-20 15:57 2012-07-17 Show GitHub Exploit DB Packet Storm
241535 4.4 警告 オラクル - Oracle Solaris における mailx の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-1750 2012-07-20 15:56 2012-07-17 Show GitHub Exploit DB Packet Storm
241536 5 警告 オラクル - Oracle iPlanet Web Server および Java System Web Server における脆弱性 CWE-noinfo
情報不足 		CVE-2012-1738 2012-07-20 15:54 2012-07-17 Show GitHub Exploit DB Packet Storm
241537 5.6 警告 オラクル - Oracle Solaris における Logical Domains の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-1687 2012-07-20 15:49 2012-07-17 Show GitHub Exploit DB Packet Storm
241538 2.1 注意 オラクル - Oracle Solaris における Kerberos/klist の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0563 2012-07-20 15:45 2012-07-17 Show GitHub Exploit DB Packet Storm
241539 7.1 危険 日本電気
ブルーコートシステムズ
ヤマハ
古河電気工業
サン・マイクロシステムズ
マイクロソフト
インターネットイニシアティブ
シスコシステムズ
オラクル
チェック・ポイント・ソフトウェア・テクノロジーズ		 - 複数の TCP の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-16
CWE-noinfo
CVE-2008-4609 2012-07-20 15:35 2009-09-9 Show GitHub Exploit DB Packet Storm
241540 6.4 警告 オラクル - 複数の UNIX システムの PMTU Discovery 機能におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2001-0323 2012-07-20 15:32 2001-06-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266431 5.3 MEDIUM
Network 		haxx curl The (1) mbed_connect_step1 function in lib/vtls/mbedtls.c and (2) polarssl_connect_step1 function in lib/vtls/polarssl.c in cURL and libcurl before 7.49.0, when using SSLv3 or making a TLS connection… CWE-20
 Improper Input Validation  		CVE-2016-3739 2024-11-21 11:50 2016-05-20 Show GitHub Exploit DB Packet Storm
266432 8.8 HIGH
Network 		theforeman foreman Eval injection vulnerability in tftp_api.rb in the TFTP module in the Smart-Proxy in Foreman before 1.10.4 and 1.11.x before 1.11.2 allows remote attackers to execute arbitrary code via the PXE templ… CWE-284
Improper Access Control 		CVE-2016-3728 2024-11-21 11:50 2016-05-20 Show GitHub Exploit DB Packet Storm
266433 8.1 HIGH
Network 		safemode_project safemode The Safemode gem before 1.2.4 for Ruby, when initialized with a delegate object that is a Rails controller, allows context-dependent attackers to obtain sensitive information via the inspect method. CWE-264
CWE-200
Permissions, Privileges, and Access Controls
Information Exposure 		CVE-2016-3693 2024-11-21 11:50 2016-05-20 Show GitHub Exploit DB Packet Storm
266434 4.3 MEDIUM
Network 		jenkins
redhat 		jenkins
openshift 		The API URL computer/(master)/api/xml in Jenkins before 2.3 and LTS before 1.651.2 allows remote authenticated users with extended read permission for the master node to obtain sensitive information … CWE-200
Information Exposure 		CVE-2016-3727 2024-11-21 11:50 2016-05-17 Show GitHub Exploit DB Packet Storm
266435 7.4 HIGH
Network 		jenkins
redhat 		jenkins
openshift 		Multiple open redirect vulnerabilities in Jenkins before 2.3 and LTS before 1.651.2 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vector… NVD-CWE-Other
CVE-2016-3726 2024-11-21 11:50 2016-05-17 Show GitHub Exploit DB Packet Storm
266436 4.3 MEDIUM
Network 		jenkins
redhat 		jenkins
openshift 		Jenkins before 2.3 and LTS before 1.651.2 allows remote authenticated users to trigger updating of update site metadata by leveraging a missing permissions check. NOTE: this issue can be combined wit… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3725 2024-11-21 11:50 2016-05-17 Show GitHub Exploit DB Packet Storm
266437 6.5 MEDIUM
Network 		redhat
jenkins 		openshift
jenkins 		Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with extended read access to obtain sensitive password information by reading a job configuration. CWE-200
Information Exposure 		CVE-2016-3724 2024-11-21 11:50 2016-05-17 Show GitHub Exploit DB Packet Storm
266438 4.3 MEDIUM
Network 		jenkins
redhat 		jenkins
openshift 		Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with read access to obtain sensitive plugin installation information by leveraging missing permissions checks in unspecified… CWE-200
Information Exposure 		CVE-2016-3723 2024-11-21 11:50 2016-05-17 Show GitHub Exploit DB Packet Storm
266439 4.3 MEDIUM
Network 		jenkins
redhat 		jenkins
openshift 		Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with multiple accounts to cause a denial of service (unable to login) by editing the "full name." CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3722 2024-11-21 11:50 2016-05-17 Show GitHub Exploit DB Packet Storm
266440 6.5 MEDIUM
Network 		redhat
jenkins 		openshift
jenkins 		Jenkins before 2.3 and LTS before 1.651.2 might allow remote authenticated users to inject arbitrary build parameters into the build environment via environment variables. CWE-17
Code 		CVE-2016-3721 2024-11-21 11:50 2016-05-17 Show GitHub Exploit DB Packet Storm