Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252561 4.3 警告 IBM
Apache Software Foundation
アップル
サイバートラスト株式会社
富士通
サン・マイクロシステムズ
ターボリナックス
ヒューレット・パッカード
レッドハット		 - Apache の mod_proxy_ftp モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2939 2010-11-4 15:35 2008-08-6 Show GitHub Exploit DB Packet Storm
252562 1.9 注意 オラクル - Oracle Solaris および OpenSolaris における USB の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3542 2010-11-4 15:31 2010-10-12 Show GitHub Exploit DB Packet Storm
252563 2.4 注意 オラクル - Oracle Solaris および OpenSolaris における Device Drivers の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3513 2010-11-4 15:31 2010-10-12 Show GitHub Exploit DB Packet Storm
252564 3.2 注意 オラクル - Oracle Solaris における Solaris Zones の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3508 2010-11-4 15:30 2010-10-12 Show GitHub Exploit DB Packet Storm
252565 3.5 注意 オラクル - Oracle Sun Products Suite の Oracle iPlanet Web Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3512 2010-11-2 15:53 2010-10-12 Show GitHub Exploit DB Packet Storm
252566 3.6 注意 オラクル - Oracle Solaris および OpenSolaris における SCSI enclosure services デバイスドライバの処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3576 2010-11-2 15:53 2010-10-12 Show GitHub Exploit DB Packet Storm
252567 4 警告 オラクル - Oracle Solaris および OpenSolaris における ZFS の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3540 2010-11-2 15:53 2010-10-12 Show GitHub Exploit DB Packet Storm
252568 4 警告 オラクル - Oracle Solaris および OpenSolaris における InfiniBand の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3516 2010-11-2 15:52 2010-10-12 Show GitHub Exploit DB Packet Storm
252569 4 警告 オラクル - Oracle Solaris および OpenSolaris の Solaris コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3515 2010-11-2 15:52 2010-10-12 Show GitHub Exploit DB Packet Storm
252570 4.3 警告 オラクル - Oracle Sun Products Suite の Oracle iPlanet Web Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3514 2010-11-2 15:52 2010-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280011 - ibm global_console_manager_32_firmware
global_console_manager_16_firmware 		systest.php on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the l… CWE-78
OS Command  		CVE-2014-3085 2024-11-21 11:07 2014-08-18 Show GitHub Exploit DB Packet Storm
280012 - ibm global_console_manager_32_firmware
global_console_manager_16_firmware 		prodtest.php on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allows remote authenticated users to read arbitrary files via the filename parameter. CWE-200
Information Exposure 		CVE-2014-3081 2024-11-21 11:07 2014-08-18 Show GitHub Exploit DB Packet Storm
280013 - ibm global_console_manager_32_firmware
global_console_manager_16_firmware 		Multiple cross-site scripting (XSS) vulnerabilities on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allow remote attackers to inject arbitrary web script or … CWE-79
Cross-site Scripting 		CVE-2014-3080 2024-11-21 11:07 2014-08-18 Show GitHub Exploit DB Packet Storm
280014 - ibm infosphere_master_data_management_server_for_product_information_management
infosphere_master_data_management 		IBM InfoSphere Master Data Management - Collaborative Edition 10.x before 10.1-FP11 and 11.x before 11.0-FP5 and InfoSphere Master Data Management Server for Product Information Management 9.x before… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-3063 2024-11-21 11:07 2014-08-18 Show GitHub Exploit DB Packet Storm
280015 - cobham aviator_700d
aviator_700e 		Cobham Aviator 700D and 700E satellite terminals have hardcoded passwords for the (1) debug, (2) prod, (3) do160, and (4) flrp programs, which allows physically proximate attackers to gain privileges… NVD-CWE-Other
CVE-2014-2964 2024-11-21 11:07 2014-08-15 Show GitHub Exploit DB Packet Storm
280016 - cobham ailor_6110_mini-c_gmdss
sailor_6006_message_terminal
sailor_6222_vhf
sailor_6300_mf_\/_hf 		Cobham Sailor 6000 satellite terminals have hardcoded Tbus 2 credentials, which allows remote attackers to obtain access via a TBUS2 command. NOTE: the vendor reportedly states "there is no possibil… NVD-CWE-Other
CVE-2014-2941 2024-11-21 11:07 2014-08-15 Show GitHub Exploit DB Packet Storm
280017 - cobham sailor_900_firmware
sailor_6000_series_firmware 		Cobham Sailor 900 and 6000 satellite terminals with firmware 1.08 MFHF and 2.11 VHF have hardcoded credentials for the administrator account, which allows attackers to obtain administrative control b… NVD-CWE-Other
CVE-2014-2940 2024-11-21 11:07 2014-08-15 Show GitHub Exploit DB Packet Storm
280018 - google
debian 		chrome
debian_linux 		Multiple unspecified vulnerabilities in Google Chrome before 36.0.1985.143 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. NVD-CWE-noinfo
CVE-2014-3167 2024-11-21 11:07 2014-08-13 Show GitHub Exploit DB Packet Storm
280019 - google
debian 		chrome
debian_linux 		The Public Key Pinning (PKP) implementation in Google Chrome before 36.0.1985.143 on Windows, OS X, and Linux, and before 36.0.1985.135 on Android, does not correctly consider the properties of SPDY … NVD-CWE-noinfo
CVE-2014-3166 2024-11-21 11:07 2014-08-13 Show GitHub Exploit DB Packet Storm
280020 - debian
google 		debian_linux
chrome 		Use-after-free vulnerability in modules/websockets/WorkerThreadableWebSocketChannel.cpp in the Web Sockets implementation in Blink, as used in Google Chrome before 36.0.1985.143, allows remote attack… NVD-CWE-Other
CVE-2014-3165 2024-11-21 11:07 2014-08-13 Show GitHub Exploit DB Packet Storm