Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224631	4	警告	Open-Xchange	-	Open-Xchange Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-1645	2013-09-6 16:14	2013-03-13	Show	GitHub Exploit DB Packet Storm

224632	3.5	注意	Open-Xchange	-	Open-Xchange App Suite および Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5698	2013-09-6 16:11	2013-06-3	Show	GitHub Exploit DB Packet Storm

224633	3.5	注意	Open-Xchange	-	Open-Xchange App Suite における他のユーザの電子メールの認証情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-4790	2013-09-6 16:03	2013-07-31	Show	GitHub Exploit DB Packet Storm

224634	4.3	警告	Open-Xchange	-	Open-Xchange App Suite および Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3106	2013-09-6 15:03	2013-06-3	Show	GitHub Exploit DB Packet Storm

224635	4.3	警告	Open-Xchange	-	Open-Xchange App Suite および Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2583	2013-09-6 14:54	2013-04-17	Show	GitHub Exploit DB Packet Storm

224636	5	警告	Open-Xchange	-	Open-Xchange App Suite および Server のリダイレクトサーブレットにおける CRLF インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2013-2582	2013-09-6 14:47	2013-04-17	Show	GitHub Exploit DB Packet Storm

224637	5.8	警告	DELL EMC (旧 EMC Corporation)	-	EMC RSA Archer GRC におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2013-3277	2013-09-6 12:06	2013-09-3	Show	GitHub Exploit DB Packet Storm

224638	6.8	警告	シスコシステムズ	-	Cisco Global Site Selector の Web フレームワークにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-5471	2013-09-6 11:49	2013-09-4	Show	GitHub Exploit DB Packet Storm

224639	6.8	警告	ShareThis	-	WordPress 用 ShareThis プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-3479	2013-09-6 11:44	2013-08-27	Show	GitHub Exploit DB Packet Storm

224640	4.3	警告	シスコシステムズ	-	Cisco Prime NCS および Cisco WCS にクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5990	2013-09-5 19:40	2013-09-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198991	7.8	HIGH Local	google	android	In onPackageAddedInternal of PermissionManagerService.java, there is possible access to external storage due to a permissions bypass. This could lead to local escalation of privilege with User execut…	CWE-276 Incorrect Default Permissions	CVE-2021-0486	2024-11-21 14:42	2021-07-14	Show	GitHub Exploit DB Packet Storm

198992	7.3	HIGH Local	google	android	In onCreate of PermissionActivity.java, there is a possible permission bypass due to Confusing UI. This could lead to local escalation of privilege with no additional execution privileges needed. Use…	CWE-276 Incorrect Default Permissions	CVE-2021-0441	2024-11-21 14:42	2021-07-14	Show	GitHub Exploit DB Packet Storm

198993	6.7	MEDIUM Local	intel	core_i7-6700k xeon_e3-1240_v5 core_i7 core_i5 xeon_e3 core_i9 xeon_d-1649n xeon_d-1633n xeon_d-1637 xeon_d-1627 xeon_d-1623n xeon_d-1622 xeon_d-1653n xeon_d-160…	Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged user to potentially enable an escalation of privilege via local access.	CWE-1188 Insecure Default Initialization of Resource	CVE-2021-0144	2024-11-21 14:42	2021-07-14	Show	GitHub Exploit DB Packet Storm

198994	7.3	HIGH Local	google	android	In onBindViewHolder of AppSwitchPreference.java, there is a possible bypass of device admin setttings due to unclear UI. This could lead to local escalation of privilege with User execution privilege…	CWE-74 Injection	CVE-2021-0553	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm

198995	5.5	MEDIUM Local	google	android	In getEndItemSliceAction of MediaOutputSlice.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2021-0552	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm

198996	6.5	MEDIUM Network	google	android	In bind of MediaControlPanel.java, there is a possible way to lock up the system UI using a malicious media file due to improper input validation. This could lead to remote denial of service with no …	CWE-74 Injection	CVE-2021-0551	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm

198997	7.8	HIGH Local	google	android	In onLoadFailed of AnnotateActivity.java, there is a possible way to gain WRITE_EXTERNAL_STORAGE permissions without user consent due to a confused deputy. This could lead to local escalation of priv…	CWE-610 Externally Controlled Reference to a Resource in Another Sphere	CVE-2021-0550	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm

198998	4.4	MEDIUM Local	google	android	In sspRequestCallback of BondStateMachine.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. This could lead to local information disclosure with System exec…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2021-0549	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm

198999	7.8	HIGH Local	google	android	In rw_i93_send_to_lower of rw_i93.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges n…	CWE-787 Out-of-bounds Write	CVE-2021-0548	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm

199000	7.8	HIGH Local	google	android	In onReceive of NetInitiatedActivity.java, there is a possible way to supply an attacker-controlled value to a GPS HAL handler due to a missing permission check. This could lead to local escalation o…	CWE-862 Missing Authorization	CVE-2021-0547	2024-11-21 14:42	2021-06-22	Show	GitHub Exploit DB Packet Storm