Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224271	9.3	危険	マイクロソフト	-	Microsoft Excel などの製品における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2013-3889	2013-10-22 18:07	2013-10-8	Show	GitHub Exploit DB Packet Storm

224272	10	危険	マイクロソフト	-	複数の Microsoft Windows 製品の Windows コモンコントロールライブラリにおける任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2013-3195	2013-10-22 18:07	2013-10-8	Show	GitHub Exploit DB Packet Storm

224273	7.8	危険	マイクロソフト	-	Microsoft .NET Framework におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-3861	2013-10-22 18:06	2013-10-8	Show	GitHub Exploit DB Packet Storm

224274	9.3	危険	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルモードドライバにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-3894	2013-10-22 18:06	2013-10-8	Show	GitHub Exploit DB Packet Storm

224275	7.8	危険	マイクロソフト	-	Microsoft .NET Framework におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-3860	2013-10-22 18:06	2013-10-8	Show	GitHub Exploit DB Packet Storm

224276	9.3	危険	マイクロソフト	-	複数の Microsoft 製品のカーネルモードドライバにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2013-3128	2013-10-22 18:06	2013-10-8	Show	GitHub Exploit DB Packet Storm

224277	7.2	危険	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルモードドライバの dxgkrnl.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2013-3888	2013-10-22 18:06	2013-10-8	Show	GitHub Exploit DB Packet Storm

224278	7.2	危険	マイクロソフト	-	Microsoft Windows 7 および Microsoft Server 2008 R2 のカーネルモードドライバの win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2013-3881	2013-10-22 18:06	2013-10-8	Show	GitHub Exploit DB Packet Storm

224279	6.8	警告	マイクロソフト	-	Microsoft SharePoint Server におけるクリックジャッキング攻撃を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3895	2013-10-22 18:06	2013-10-8	Show	GitHub Exploit DB Packet Storm

224280	3.5	注意	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルモードドライバの App Container 機能におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3880	2013-10-22 18:05	2013-10-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313861	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Initialize denominators' default to 1 [WHAT & HOW] Variables used as denominators and maybe not assigned to othe…	CWE-369 Divide By Zero	CVE-2024-49899	2024-10-25 23:35	2024-10-22	Show	GitHub Exploit DB Packet Storm

313862	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix NULL pointer dereference in nilfs_palloc_commit_free_entry() Syzbot reported a null-ptr-deref bug: NILFS (loop0): s…	CWE-476 NULL Pointer Dereference	CVE-2022-49007	2024-10-25 23:35	2024-10-22	Show	GitHub Exploit DB Packet Storm

313863	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation This commit addresses a potential index out…	CWE-129 Improper Validation of Array Index	CVE-2024-49895	2024-10-25 23:35	2024-10-22	Show	GitHub Exploit DB Packet Storm

313864	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check stream_status before it is used [WHAT & HOW] dc_state_get_stream_status can return null, and therefore nul…	CWE-476 NULL Pointer Dereference	CVE-2024-49893	2024-10-25 23:32	2024-10-22	Show	GitHub Exploit DB Packet Storm

313865	8.7	HIGH Network	umbraco	umbraco_cms	Umbraco, a free and open source .NET content management system, has a cross-site scripting vulnerability starting in version 14.0.0 and prior to versions 14.3.1 and 15.0.0. This can be leveraged to g…	CWE-79 Cross-site Scripting	CVE-2024-47819	2024-10-25 23:24	2024-10-23	Show	GitHub Exploit DB Packet Storm

313866	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix PCI device refcount leak in dmar_dev_scope_init() for_each_pci_dev() is implemented by pci_get_device(). The comm…	NVD-CWE-Other	CVE-2022-49002	2024-10-25 23:24	2024-10-22	Show	GitHub Exploit DB Packet Storm

313867	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: riscv: Sync efi page table's kernel mappings before switching The EFI page table is initially created as a copy of the kernel pag…	NVD-CWE-noinfo	CVE-2022-49004	2024-10-25 23:21	2024-10-22	Show	GitHub Exploit DB Packet Storm

313868	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Fix bounds check for _sx controls For _sx controls the semantics of the max field is not the usual one, max is the num…	NVD-CWE-noinfo	CVE-2022-49005	2024-10-25 23:17	2024-10-22	Show	GitHub Exploit DB Packet Storm

313869	-		-	-	Android before 2024-10-05 on Google Pixel devices allows privilege escalation in the ABL component, A-330537292.	-	CVE-2024-47014	2024-10-25 23:15	2024-10-25	Show	GitHub Exploit DB Packet Storm

313870	6.5	MEDIUM Network	umbraco	umbraco_cms	Umbraco, a free and open source .NET content management system, has an improper access control issue starting in version 14.0.0 and prior to version 14.3.0. The issue allows low-privilege users to ac…	CWE-284 CWE-863 Improper Access Control Incorrect Authorization	CVE-2024-48925	2024-10-25 23:12	2024-10-23	Show	GitHub Exploit DB Packet Storm