Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254351	4.3	警告	IBM	-	IBM WebSphere Lombardi Edition におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0707	2012-02-24 15:27	2011-11-21	Show	GitHub Exploit DB Packet Storm

254352	5	警告	シマンテック	-	Symantec pcAnywhere 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0291	2012-02-23 15:27	2012-01-24	Show	GitHub Exploit DB Packet Storm

254353	9.3	危険	7-Technologies	-	7-Technologies TERMIS における権限を取得される脆弱性	CWE-Other その他	CVE-2012-0223	2012-02-23 15:09	2011-02-22	Show	GitHub Exploit DB Packet Storm

254354	5.8	警告	CubeCart Limited	-	CubeCart におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2012-0865	2012-02-23 15:00	2012-02-21	Show	GitHub Exploit DB Packet Storm

254355	5	警告	EasyVista	-	EasyVista に認証回避の脆弱性	CWE-287 不適切な認証	CVE-2012-1256	2012-02-23 14:49	2012-02-22	Show	GitHub Exploit DB Packet Storm

254356	6.4	警告	シックス・アパート株式会社	-	Movable Type におけるセッションハイジャックが可能な脆弱性	CWE-Other その他	CVE-2012-0320	2012-02-23 12:04	2012-02-23	Show	GitHub Exploit DB Packet Storm

254357	6.5	警告	シックス・アパート株式会社	-	Movable Type における OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2012-0319	2012-02-23 12:04	2012-02-23	Show	GitHub Exploit DB Packet Storm

254358	2.6	注意	シックス・アパート株式会社	-	Movable Type におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0318	2012-02-23 12:03	2012-02-23	Show	GitHub Exploit DB Packet Storm

254359	4	警告	シックス・アパート株式会社	-	Movable Type におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-0317	2012-02-23 12:03	2012-02-23	Show	GitHub Exploit DB Packet Storm

254360	6	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1235	2012-02-23 11:47	2012-02-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
263901	7.5	HIGH Network	google	android	In the ihevcd_decode function of ihevcd_decode.c, there is an infinite loop due to an incomplete frame error. This could lead to a remote denial of service of a critical system process with no additi…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-13191	2024-11-21 12:11	2018-01-13	Show	GitHub Exploit DB Packet Storm

263902	7.5	HIGH Network	google	android	A vulnerability in the Android media framework (libhevc) related to handling ps_codec_obj memory allocation failures. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68299873.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2017-13190	2024-11-21 12:11	2018-01-13	Show	GitHub Exploit DB Packet Storm

263903	7.5	HIGH Network	google	android	A vulnerability in the Android media framework (libavc) related to handling dec_hdl memory allocation failures. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68300072.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2017-13189	2024-11-21 12:11	2018-01-13	Show	GitHub Exploit DB Packet Storm

263904	9.1	CRITICAL Network	google	android	An information disclosure vulnerability in the Android media framework (aac). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65280786.	CWE-200 Information Exposure	CVE-2017-13188	2024-11-21 12:11	2018-01-13	Show	GitHub Exploit DB Packet Storm

263905	9.1	CRITICAL Network	google	android	An information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65034175.	CWE-200 Information Exposure	CVE-2017-13187	2024-11-21 12:11	2018-01-13	Show	GitHub Exploit DB Packet Storm

263906	7.5	HIGH Network	google	android	A vulnerability in the Android media framework (libavc) related to incorrect use of mmco parameters. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65735716.	CWE-20 Improper Input Validation	CVE-2017-13186	2024-11-21 12:11	2018-01-13	Show	GitHub Exploit DB Packet Storm

263907	9.1	CRITICAL Network	google	android	An information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-65123471.	CWE-200 Information Exposure	CVE-2017-13185	2024-11-21 12:11	2018-01-13	Show	GitHub Exploit DB Packet Storm

263908	7.8	HIGH Local	google	android	In the enableVSyncInjections function of SurfaceFlinger, there is a possible use after free of mVSyncInjector. This could lead to a local elevation of privilege enabling code execution as a privilege…	CWE-416 Use After Free	CVE-2017-13184	2024-11-21 12:11	2018-01-13	Show	GitHub Exploit DB Packet Storm

263909	7.0	HIGH Local	google	android	In the OMXNodeInstance::useBuffer and IOMX::freeBuffer functions, there is a possible use after free due to a race condition if the user frees the buffer while it's being used in another thread. This…	CWE-362 Race Condition	CVE-2017-13183	2024-11-21 12:11	2018-01-13	Show	GitHub Exploit DB Packet Storm

263910	7.8	HIGH Local	google	android	In the sendFormatChange function of ACodec, there is a possible integer overflow which could lead to an out-of-bounds write. This could lead to a local elevation of privilege enabling code execution …	CWE-190 Integer Overflow or Wraparound	CVE-2017-13182	2024-11-21 12:11	2018-01-13	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed