Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252111 9.3 危険 マイクロソフト - 複数の Microsoft Office 製品におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0978 2011-05-2 14:16 2011-02-10 Show GitHub Exploit DB Packet Storm
252112 9.3 危険 マイクロソフト - 複数の Microsoft Office 製品における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0097 2011-05-2 14:14 2011-04-12 Show GitHub Exploit DB Packet Storm
252113 9.3 危険 マイクロソフト - Microsoft Windows の OpenType Compact Font Format ドライバにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0034 2011-05-2 14:14 2011-04-12 Show GitHub Exploit DB Packet Storm
252114 9.3 危険 マイクロソフト - Microsoft の JScript および VBScript スクリプトエンジンにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0663 2011-05-2 14:13 2011-04-12 Show GitHub Exploit DB Packet Storm
252115 7.5 危険 マイクロソフト - Microsoft Windows の DNS クライアント内にある DNSAPI.dll における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0657 2011-05-2 14:12 2011-04-12 Show GitHub Exploit DB Packet Storm
252116 9.3 危険 マイクロソフト - Microsoft Windows および Office XP の GDI+ 内にある gdiplus.dll における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0041 2011-05-2 14:11 2011-04-12 Show GitHub Exploit DB Packet Storm
252117 9.3 危険 マイクロソフト - Microsoft .NET Framework の x86 JIT コンパイラにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3958 2011-05-2 14:09 2011-04-12 Show GitHub Exploit DB Packet Storm
252118 9.3 危険 マイクロソフト - Microsoft Windows XP の Windows Messenger ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-1243 2011-05-2 14:08 2011-04-12 Show GitHub Exploit DB Packet Storm
252119 10 危険 マイクロソフト - Microsoft Windows の SMB サーバサービスにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0661 2011-05-2 14:06 2011-04-12 Show GitHub Exploit DB Packet Storm
252120 9.3 危険 マイクロソフト - 複数の Microsoft 製品の SMB クライアントにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0660 2011-05-2 14:05 2011-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
286731 - robert_ancell
canonical 		lightdm
ubuntu_linux 		LightDM 1.7.5 through 1.8.3 and 1.9.x before 1.9.2 does not apply the AppArmor profile to the Guest account, which allows local users to bypass intended restrictions by leveraging the Guest account. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4459 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
286732 - http-body_project http-body HTTP::Body::Multipart in the HTTP-Body module for Perl (1.07 through 1.22, before 1.23) uses the part of the uploaded file's name after the first "." character as the suffix of a temporary file, whic… NVD-CWE-noinfo
CVE-2013-4407 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
286733 - openstack image_registry_and_delivery_service_\(glance\) The API before 2.1 in OpenStack Image Registry and Delivery Service (Glance) makes it easier for local users to inject images into arbitrary tenants by adding the tenant as a member of the image. CWE-20
 Improper Input Validation  		CVE-2013-4354 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
286734 - ffmpeg ffmpeg The av_reallocp_array function in libavutil/mem.c in FFmpeg before 2.0.1 has an unspecified impact and remote vectors related to a "wrong return code" and a resultant NULL pointer dereference. NVD-CWE-Other
CVE-2013-4265 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
286735 - ffmpeg ffmpeg The kempf_decode_tile function in libavcodec/g2meet.c in FFmpeg before 2.0.1 allows remote attackers to cause a denial of service (out-of-bounds heap write) via a G2M4 encoded file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4264 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
286736 - ffmpeg ffmpeg libavfilter in FFmpeg before 2.0.1 has unspecified impact and remote vectors related to a crafted "plane," which triggers an out-of-bounds heap write. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4263 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
286737 - nagios
redhat 		nagios
openstack 		rss-newsfeed.php in Nagios Core 3.4.4, 3.5.1, and earlier, when MAGPIE_CACHE_ON is set to 1, allows local users to overwrite arbitrary files via a symlink attack on /tmp/magpie_cache. CWE-59
Link Following 		CVE-2013-4214 2024-11-21 10:55 2013-11-24 Show GitHub Exploit DB Packet Storm
286738 - novell
graphicsmagick
fedoraproject 		suse_linux_enterprise_debuginfo
suse_studio_onsite
suse_linux_enterprise_software_development_kit
graphicsmagick
fedora 		The ExportAlphaQuantumType function in export.c in GraphicsMagick before 1.3.18 might allow remote attackers to cause a denial of service (crash) via vectors related to exporting the alpha of an 8-bi… NVD-CWE-noinfo
CVE-2013-4589 2024-11-21 10:55 2013-11-23 Show GitHub Exploit DB Packet Storm
286739 - haxx curl
libcurl 		cURL and libcurl 7.18.0 through 7.32.0, when built with OpenSSL, disables the certificate CN and SAN name field verification (CURLOPT_SSL_VERIFYHOST) when the digital signature verification (CURLOPT_… CWE-310
Cryptographic Issues 		CVE-2013-4545 2024-11-21 10:55 2013-11-23 Show GitHub Exploit DB Packet Storm
286740 - redhat
fedoraproject 		enterprise_linux
directory_server
389_directory_server 		389 Directory Server 1.2.11.15 (aka Red Hat Directory Server before 8.2.11-14) allows remote authenticated users to cause a denial of service (crash) via multiple @ characters in a GER attribute list… CWE-20
 Improper Input Validation  		CVE-2013-4485 2024-11-21 10:55 2013-11-23 Show GitHub Exploit DB Packet Storm