Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253151 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1874 2011-07-21 10:27 2011-07-12 Show GitHub Exploit DB Packet Storm
253152 10 危険 マイクロソフト - Microsoft Windows Vista および Windows 7 の Bluetooth Stack における任意のコードを実行される脆弱性 CWE-DesignError
CVE-2011-1265 2011-07-21 10:24 2011-07-12 Show GitHub Exploit DB Packet Storm
253153 5 警告 Google - Google Chrome の Cascading Style Sheets の実装における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1810 2011-07-21 10:23 2011-06-7 Show GitHub Exploit DB Packet Storm
253154 5 警告 Google - Google Chrome のアクセシビリティ機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1809 2011-07-21 10:22 2011-06-7 Show GitHub Exploit DB Packet Storm
253155 7.5 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1808 2011-07-21 10:21 2011-06-7 Show GitHub Exploit DB Packet Storm
253156 4.3 警告 サイバートラスト株式会社
Apache Software Foundation
レッドハット		 - Apache Subversion で利用される Apache HTTP Server における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1921 2011-07-21 09:57 2011-06-6 Show GitHub Exploit DB Packet Storm
253157 4.3 警告 サイバートラスト株式会社
Apache Software Foundation
レッドハット		 - Apache Subversion で利用される Apache HTTP Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1783 2011-07-21 09:56 2011-06-6 Show GitHub Exploit DB Packet Storm
253158 6.5 警告 MIT Kerberos
レッドハット		 - MIT Kerberos 5 の GSS-API FTP デーモンにおけるグループのアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1526 2011-07-20 11:17 2011-07-5 Show GitHub Exploit DB Packet Storm
253159 6.8 警告 ヒューレット・パッカード - HP-UX のダイナミックローダにおける権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2011-2398 2011-07-20 11:14 2011-07-5 Show GitHub Exploit DB Packet Storm
253160 7.5 危険 Google - Google Chrome におけるサービス運用妨害 (メモリ破損) の脆弱性 CWE-119
バッファエラー 		CVE-2011-2347 2011-07-20 10:52 2011-06-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264961 5.5 MEDIUM
Local 		uclouvain
fedoraproject 		openjpeg
fedora 		Heap-based buffer overflow in the color_cmyk_to_rgb in common/color.c in OpenJPEG before 2.1.1 allows remote attackers to cause a denial of service (crash) via a crafted .j2k file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-4796 2024-11-21 11:52 2017-02-4 Show GitHub Exploit DB Packet Storm
264962 5.5 MEDIUM
Local 		mini-xml_project
debian 		mini-xml
debian_linux 		The mxml_write_node function in mxml-file.c in mxml 2.9, 2.7, and possibly earlier allows remote attackers to cause a denial of service (stack consumption) via crafted xml file. CWE-400
 Uncontrolled Resource Consumption 		CVE-2016-4571 2024-11-21 11:52 2017-02-4 Show GitHub Exploit DB Packet Storm
264963 5.5 MEDIUM
Local 		mini-xml_project
debian 		mini-xml
debian_linux 		The mxmlDelete function in mxml-node.c in mxml 2.9, 2.7, and possibly earlier allows remote attackers to cause a denial of service (stack consumption) via crafted xml file. CWE-400
 Uncontrolled Resource Consumption 		CVE-2016-4570 2024-11-21 11:52 2017-02-4 Show GitHub Exploit DB Packet Storm
264964 7.5 HIGH
Network 		cakephp cakephp The clientIp function in CakePHP 3.2.4 and earlier allows remote attackers to spoof their IP via the CLIENT-IP HTTP header. CWE-20
 Improper Input Validation  		CVE-2016-4793 2024-11-21 11:52 2017-01-24 Show GitHub Exploit DB Packet Storm
264965 6.8 MEDIUM
Physics 		cryptsetup_project cryptsetup The Debian initrd script for the cryptsetup package 2:1.7.3-2 and earlier allows physically proximate attackers to gain shell access via many log in attempts with an invalid password. CWE-287
Improper Authentication 		CVE-2016-4484 2024-11-21 11:52 2017-01-24 Show GitHub Exploit DB Packet Storm
264966 6.1 MEDIUM
Network 		roundcube webmail Cross-site scripting (XSS) vulnerability in Roundcube Webmail before 1.2.0 allows remote attackers to inject arbitrary web script or HTML via the href attribute in an area tag in an e-mail message. CWE-79
Cross-site Scripting 		CVE-2016-4552 2024-11-21 11:52 2016-12-21 Show GitHub Exploit DB Packet Storm
264967 5.5 MEDIUM
Local 		redhat enterprise_virtualization Red Hat Enterprise Virtualization (RHEV) Manager 3.6 allows local users to obtain encryption keys, certificates, and other sensitive information by reading the engine-setup log file. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2016-4443 2024-11-21 11:52 2016-12-15 Show GitHub Exploit DB Packet Storm
264968 4.4 MEDIUM
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. A user can be tricked into following a link leading to phpMyAdmin, which after authentication redirects to another malicious site. The attacker must sniff the u… CWE-254
 7PK - Security Features 		CVE-2016-4412 2024-11-21 11:52 2016-12-11 Show GitHub Exploit DB Packet Storm
264969 7.5 HIGH
Network 		hp system_management_homepage HPE System Management Homepage before v7.6 allows remote attackers to have an unspecified impact via unknown vectors, related to a "Buffer Overflow" issue. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-4396 2024-11-21 11:52 2016-10-29 Show GitHub Exploit DB Packet Storm
264970 7.5 HIGH
Network 		hp system_management_homepage HPE System Management Homepage before v7.6 allows remote attackers to have an unspecified impact via unknown vectors, related to a "Buffer Overflow" issue. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-4395 2024-11-21 11:52 2016-10-29 Show GitHub Exploit DB Packet Storm