Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251401 5 警告 Apache Software Foundation - Apache MyFaces の shared/util/StateUtils.java における View State を変更される脆弱性 CWE-310
暗号の問題 		CVE-2010-2057 2012-03-27 18:42 2010-10-20 Show GitHub Exploit DB Packet Storm
251402 9.3 危険 シマンテック - SAVCE などの製品で使用されている AMS または AMS2 の HDNLRSVC.EXE における任意のプログラムを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0111 2012-03-27 18:42 2011-01-26 Show GitHub Exploit DB Packet Storm
251403 7.9 危険 シマンテック - SAVCE などの製品で使用されている Intel Alert Management System におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0110 2012-03-27 18:42 2011-01-26 Show GitHub Exploit DB Packet Storm
251404 5 警告 Pentaho Corporation - Pentaho BI Server における Web トラフィックを傍受される脆弱性 CWE-200
情報漏えい 		CVE-2009-5101 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
251405 2.1 注意 Pentaho Corporation - Pentaho BI Server におけるパスワードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-5100 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
251406 4.3 警告 Pentaho Corporation - Pentaho BI Server の ViewAction におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-5099 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
251407 5.4 警告 ヒューレット・パッカード - Palm Pre WebOS の LunaSysMgr プロセス におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-5098 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
251408 6.3 警告 OpenFabrics Alliance - OFED の openibd における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-1693 2012-03-27 18:42 2010-10-26 Show GitHub Exploit DB Packet Storm
251409 10 危険 The Tor Project - Tor におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1676 2012-03-27 18:42 2010-12-20 Show GitHub Exploit DB Packet Storm
251410 9.3 危険 Nullsoft - Winamp の vp6.w5s におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1523 2012-03-27 18:42 2010-10-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265991 9.8 CRITICAL
Network 		sap hana SAP HANA DB 1.00.73.00.389160 allows remote attackers to execute arbitrary code via vectors involving the audit logs, aka SAP Security Note 2170806. CWE-284
Improper Access Control 		CVE-2016-6143 2024-11-21 11:55 2017-04-13 Show GitHub Exploit DB Packet Storm
265992 6.1 MEDIUM
Network 		redhat resteasy JacksonJsonpInterceptor in RESTEasy might allow remote attackers to conduct a cross-site script inclusion (XSSI) attack. CWE-79
Cross-site Scripting 		CVE-2016-6348 2024-11-21 11:55 2017-04-13 Show GitHub Exploit DB Packet Storm
265993 7.0 HIGH
Local 		linux
google 		linux_kernel
android 		Drivers/soc/qcom/spcom.c in the Qualcomm SPCom driver in the Android kernel 2017-03-05 allows local users to gain privileges, a different vulnerability than CVE-2016-5857. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-5856 2024-11-21 11:55 2017-04-13 Show GitHub Exploit DB Packet Storm
265994 8.8 HIGH
Network 		ibm disposal_and_governance_management_for_it
global_retention_policy_and_schedule_management 		IBM Disposal and Governance Management for IT and IBM Global Retention Policy and Schedule Management, components of IBM Atlas Policy Suite 6.0.3 is vulnerable to cross-site request forgery which cou… CWE-352
 Origin Validation Error 		CVE-2016-6100 2024-11-21 11:55 2017-04-6 Show GitHub Exploit DB Packet Storm
265995 7.8 HIGH
Local 		linux linux_kernel The msm_ipc_router_close function in net/ipc_router/ipc_router_socket.c in the ipc_router component for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MS… CWE-476
 NULL Pointer Dereference 		CVE-2016-5870 2024-11-21 11:55 2017-04-5 Show GitHub Exploit DB Packet Storm
265996 6.5 MEDIUM
Network 		huawei oceanstor_5800_v3_firmware The Huawei OceanStor 5800 V300R003C00 has an integer overflow vulnerability. An authenticated attacker may send massive abnormal Network File System (NFS) packets, causing an anomaly in specific disk… CWE-190
 Integer Overflow or Wraparound 		CVE-2016-6177 2024-11-21 11:55 2017-04-3 Show GitHub Exploit DB Packet Storm
265997 9.1 CRITICAL
Network 		ibm curam_social_program_management IBM Curam Social Program Management 6.0 and 7.0 are vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit… CWE-611
XXE 		CVE-2016-6111 2024-11-21 11:55 2017-04-1 Show GitHub Exploit DB Packet Storm
265998 5.4 MEDIUM
Network 		ibm rational_quality_manager IBM Rational Quality Manager (RQM) 4.0, 5.0, and 6.0 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intende… CWE-79
Cross-site Scripting 		CVE-2016-6036 2024-11-21 11:55 2017-04-1 Show GitHub Exploit DB Packet Storm
265999 5.4 MEDIUM
Network 		ibm rational_quality_manager IBM Rational Quality Manager 4.0, 5.0, and 6.0 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended func… CWE-79
Cross-site Scripting 		CVE-2016-6031 2024-11-21 11:55 2017-04-1 Show GitHub Exploit DB Packet Storm
266000 5.4 MEDIUM
Network 		ibm rational_quality_manager IBM Quality Manager (RQM) 4.0, 5.0, and 6.0 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functio… CWE-79
Cross-site Scripting 		CVE-2016-6022 2024-11-21 11:55 2017-04-1 Show GitHub Exploit DB Packet Storm