Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
223791 6.8 警告 IBM - IBM Flex System Manager におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-5424 2013-10-29 16:37 2013-10-22 Show GitHub Exploit DB Packet Storm
223792 7.5 危険 Igor Sysoev - nginx のデフォルト設定における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0337 2013-10-29 15:52 2013-10-6 Show GitHub Exploit DB Packet Storm
223793 6.8 警告 ARM Ltd. (旧 Offspark) - PolarSSL の ssl_tls.c の ssl_read_record 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-5914 2013-10-29 15:47 2013-10-1 Show GitHub Exploit DB Packet Storm
223794 4.3 警告 Dwayne C. Litzenberger - PyCrypto の Crypto.Random.atfork 関数における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-1445 2013-10-29 15:29 2013-10-14 Show GitHub Exploit DB Packet Storm
223795 7.5 危険 VideoLAN - VideoLAN VLC media player におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-6283 2013-10-29 15:23 2013-10-25 Show GitHub Exploit DB Packet Storm
223796 4.9 警告 Canonical - Apport における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1067 2013-10-29 15:19 2013-10-24 Show GitHub Exploit DB Packet Storm
223797 5.8 警告 WellinTech - WellinTech KingView の KChartXY.ocx における任意のファイルを生成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6128 2013-10-29 11:39 2013-10-22 Show GitHub Exploit DB Packet Storm
223798 5.8 警告 WellinTech - WellinTech KingView の SuperGrid.ocx における任意のファイルを生成される脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-6127 2013-10-29 11:34 2013-10-22 Show GitHub Exploit DB Packet Storm
223799 5 警告 Puppet - Puppet Enterprise におけるアクセス制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2013-4965 2013-10-29 11:22 2013-10-15 Show GitHub Exploit DB Packet Storm
223800 6.8 警告 Puppet - Puppet Enterprise のダッシュボードレポートにおける任意の YAML コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-4957 2013-10-29 11:16 2013-10-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314131 - - - Attackers could put the special files in .osc into the actual package sources (e.g. _apiurl). This allows the attacker to change the configuration of osc for the victim - CVE-2024-22034 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
314132 - - - The OBS service obs-service-download_url was vulnerable to a command injection vulnerability. The attacker could provide a configuration to the service that allowed to execute command in later steps CWE-78
OS Command  		CVE-2024-22033 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
314133 - - - A vulnerability has been identified in which an RKE1 cluster keeps constantly reconciling when secrets encryption configuration is enabled. When reconciling, the Kube API secret values are written … CWE-200
Information Exposure 		CVE-2024-22032 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
314134 - - - A vulnerability has been identified within Rancher that can be exploited in narrow circumstances through a man-in-the-middle (MITM) attack. An attacker would need to have control of an expired doma… CWE-295
Improper Certificate Validation  		CVE-2024-22030 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
314135 - - - Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2024-22029 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
314136 - - - : Authentication Bypass Using an Alternate Path or Channel vulnerability in sooskriszta, webforza BuddyPress Better Registration allows : Authentication Bypass.This issue affects BuddyPress Better Re… CWE-288
Authentication Bypass Using an Alternate Path or Channel 		CVE-2024-49247 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
314137 - - - A vulnerability has been identified whereby privilege escalation checks are not properly enforced for RoleTemplateobjects when external=true, which in specific scenarios can lead to privilege escalat… CWE-269
 Improper Privilege Management 		CVE-2023-32196 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
314138 - - - A vulnerability has been identified when granting a create or * global role for a resource type of "namespaces"; no matter the API group, the subject will receive * permissions for core namespaces. … CWE-269
 Improper Privilege Management 		CVE-2023-32194 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
314139 - - - A vulnerability has been identified in which unauthenticated cross-site scripting (XSS) in Norman's public API endpoint can be exploited. This can lead to an attacker exploiting the vulnerability t… CWE-80
Basic XSS 		CVE-2023-32193 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
314140 - - - A vulnerability has been identified in which unauthenticated cross-site scripting (XSS) in the API Server's public API endpoint can be exploited, allowing an attacker to execute arbitrary JavaScrip… CWE-80
Basic XSS 		CVE-2023-32192 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm