Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251361	9.3	危険	マイクロソフト	-	Microsoft .NET Framework における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0015	2012-02-20 17:27	2012-02-14	Show	GitHub Exploit DB Packet Storm

251362	4.3	警告	シスコシステムズ	-	Cisco IronPort Encryption Appliance の管理インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0340	2012-02-20 16:38	2012-02-13	Show	GitHub Exploit DB Packet Storm

251363	7.8	危険	シスコシステムズ	-	複数の Cisco Nexus スイッチの Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0352	2012-02-20 16:27	2012-02-15	Show	GitHub Exploit DB Packet Storm

251364	10	危険	アドビシステムズ	-	Adobe Flash Player の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-0751	2012-02-20 16:21	2012-02-15	Show	GitHub Exploit DB Packet Storm

251365	5	警告	Google	-	Google Chrome におけるサービス運用妨害 (out-of-bounds read) の脆弱性	CWE-DesignError	CVE-2011-3025	2012-02-20 14:43	2012-02-15	Show	GitHub Exploit DB Packet Storm

251366	5	警告	Google	-	Google Chrome におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-3024	2012-02-20 14:42	2012-02-15	Show	GitHub Exploit DB Packet Storm

251367	6.8	警告	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3023	2012-02-20 14:42	2012-02-15	Show	GitHub Exploit DB Packet Storm

251368	5	警告	Google	-	Google Chrome の translate/translate_manager.cc における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3022	2012-02-20 14:33	2012-02-10	Show	GitHub Exploit DB Packet Storm

251369	7.5	危険	Google	-	Google Chrome の Native Client validator 実装における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2011-3020	2012-02-20 14:12	2012-02-15	Show	GitHub Exploit DB Packet Storm

251370	6.8	警告	Google	-	Google Chrome におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3019	2012-02-20 14:11	2012-02-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
286921	5.5	MEDIUM Local	linux oracle	linux_kernel linux	The __do_follow_link function in fs/namei.c in the Linux kernel before 2.6.33 does not properly handle the last pathname component during use of certain filesystems, which allows local users to cause…	CWE-416 Use After Free	CVE-2014-0203	2024-11-21 11:01	2014-06-23	Show	GitHub Exploit DB Packet Storm

286922	-		theforeman	foreman	The Smart-Proxy in Foreman before 1.4.5 and 1.5.x before 1.5.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the path parameter to tftp/fetch_boot_file.	NVD-CWE-Other	CVE-2014-0007	2024-11-21 11:01	2014-06-20	Show	GitHub Exploit DB Packet Storm

286923	-		redhat	enterprise_linux	A certain tomcat7 package for Apache Tomcat 7 in Red Hat Enterprise Linux (RHEL) 7 allows remote attackers to cause a denial of service (CPU consumption) via a crafted request. NOTE: this vulnerabil…	NVD-CWE-Other	CVE-2014-0186	2024-11-21 11:01	2014-06-14	Show	GitHub Exploit DB Packet Storm

286924	-		redhat fedoraproject	enterprise_linux sssd	The System Security Services Daemon (SSSD) 1.11.6 does not properly identify group membership when a non-POSIX group is in a group membership chain, which allows local users to bypass access restrict…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-0249	2024-11-21 11:01	2014-06-11	Show	GitHub Exploit DB Packet Storm

286925	-		microsoft	windows_server_2012 windows_8.1 windows_7 windows_8	The Remote Desktop Protocol (RDP) implementation in Microsoft Windows 7 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 does not properly encrypt sessions, which makes it easier for …	CWE-310 Cryptographic Issues	CVE-2014-0296	2024-11-21 11:01	2014-06-11	Show	GitHub Exploit DB Packet Storm

286926	-		microsoft	internet_explorer	Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-0282	2024-11-21 11:01	2014-06-11	Show	GitHub Exploit DB Packet Storm

286927	-		cloudera	cloudera_manager	Cloudera Manager before 4.8.3 and 5.x before 5.0.1 allows remote authenticated users to obtain sensitive configuration information via the API.	CWE-200 Information Exposure	CVE-2014-0220	2024-11-21 11:01	2014-06-10	Show	GitHub Exploit DB Packet Storm

286928	7.4	HIGH Network	openssl redhat fedoraproject opensuse filezilla-project siemens mariadb python nodejs	openssl jboss_enterprise_web_platform enterprise_linux storage jboss_enterprise_web_server jboss_enterprise_application_platform fedora opensuse filezilla_server applicatio…	OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a z…	CWE-326 Inadequate Encryption Strength	CVE-2014-0224	2024-11-21 11:01	2014-06-6	Show	GitHub Exploit DB Packet Storm

286929	-		openssl redhat fedoraproject mariadb opensuse suse	openssl enterprise_linux storage fedora mariadb leap opensuse linux_enterprise_server linux_enterprise_software_development_kit linux_enterprise_desktop linux_enterprise…	The dtls1_get_message_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service (recursion and client…	NVD-CWE-noinfo	CVE-2014-0221	2024-11-21 11:01	2014-06-6	Show	GitHub Exploit DB Packet Storm

286930	-		openssl mariadb opensuse fedoraproject	openssl mariadb leap opensuse fedora	The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, w…	CWE-120 Classic Buffer Overflow	CVE-2014-0195	2024-11-21 11:01	2014-06-6	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed