Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224931	3.5	注意	Open-Xchange	-	Open-Xchange App Suite における他のユーザの電子メールの認証情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-4790	2013-09-6 16:03	2013-07-31	Show	GitHub Exploit DB Packet Storm

224932	4.3	警告	Open-Xchange	-	Open-Xchange App Suite および Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3106	2013-09-6 15:03	2013-06-3	Show	GitHub Exploit DB Packet Storm

224933	4.3	警告	Open-Xchange	-	Open-Xchange App Suite および Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2583	2013-09-6 14:54	2013-04-17	Show	GitHub Exploit DB Packet Storm

224934	5	警告	Open-Xchange	-	Open-Xchange App Suite および Server のリダイレクトサーブレットにおける CRLF インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2013-2582	2013-09-6 14:47	2013-04-17	Show	GitHub Exploit DB Packet Storm

224935	5.8	警告	DELL EMC (旧 EMC Corporation)	-	EMC RSA Archer GRC におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2013-3277	2013-09-6 12:06	2013-09-3	Show	GitHub Exploit DB Packet Storm

224936	6.8	警告	シスコシステムズ	-	Cisco Global Site Selector の Web フレームワークにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-5471	2013-09-6 11:49	2013-09-4	Show	GitHub Exploit DB Packet Storm

224937	6.8	警告	ShareThis	-	WordPress 用 ShareThis プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-3479	2013-09-6 11:44	2013-08-27	Show	GitHub Exploit DB Packet Storm

224938	4.3	警告	シスコシステムズ	-	Cisco Prime NCS および Cisco WCS にクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5990	2013-09-5 19:40	2013-09-3	Show	GitHub Exploit DB Packet Storm

224939	5	警告	シスコシステムズ	-	Cisco Secure Access Control System におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-5470	2013-09-5 12:09	2013-09-4	Show	GitHub Exploit DB Packet Storm

224940	5	警告	シスコシステムズ	-	Cisco モビリティサービスエンジンにおける認証されていないセッションを取得される脆弱性	CWE-200 情報漏えい	CVE-2013-3469	2013-09-5 12:01	2013-09-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200121	7.5	HIGH Network	google	android	In avrc_proc_vendor_command of avrc_api.cc, there is a possible leak of heap data due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges n…	CWE-665 Improper Initialization	CVE-2021-0435	2024-11-21 14:42	2021-04-14	Show	GitHub Exploit DB Packet Storm

200122	8.0	HIGH Adjacent	google	android	In onCreate of DeviceChooserActivity.java, there is a possible way to bypass user consent when pairing a Bluetooth device due to a tapjacking/overlay attack. This could lead to local escalation of pr…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2021-0433	2024-11-21 14:42	2021-04-14	Show	GitHub Exploit DB Packet Storm

200123	7.0	HIGH Local	google	android	In ClearPullerCacheIfNecessary and ForceClearPullerCache of StatsPullerManager.cpp, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with n…	CWE-362 Race Condition	CVE-2021-0432	2024-11-21 14:42	2021-04-14	Show	GitHub Exploit DB Packet Storm

200124	7.5	HIGH Network	google	android	In avrc_msg_cback of avrc_api.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure to a paired device with no additional executio…	CWE-125 Out-of-bounds Read	CVE-2021-0431	2024-11-21 14:42	2021-04-14	Show	GitHub Exploit DB Packet Storm

200125	9.8	CRITICAL Network	google	android	In rw_mfc_handle_read_op of rw_mfc.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution via a malicious NFC packet with no additional ex…	CWE-787 Out-of-bounds Write	CVE-2021-0430	2024-11-21 14:42	2021-04-14	Show	GitHub Exploit DB Packet Storm

200126	7.8	HIGH Local	google	android	In pollOnce of ALooper.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interact…	CWE-416 Use After Free	CVE-2021-0429	2024-11-21 14:42	2021-04-14	Show	GitHub Exploit DB Packet Storm

200127	5.5	MEDIUM Local	google	android	In getSimSerialNumber of TelephonyManager.java, there is a possible way to read a trackable identifier due to a missing permission check. This could lead to local information disclosure with User exe…	CWE-862 Missing Authorization	CVE-2021-0428	2024-11-21 14:42	2021-04-14	Show	GitHub Exploit DB Packet Storm

200128	7.8	HIGH Local	google	android	In parseExclusiveStateAnnotation of LogEvent.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution …	CWE-787 Out-of-bounds Write	CVE-2021-0427	2024-11-21 14:42	2021-04-14	Show	GitHub Exploit DB Packet Storm

200129	7.8	HIGH Local	google	android	In parsePrimaryFieldFirstUidAnnotation of LogEvent.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional exec…	CWE-787 Out-of-bounds Write	CVE-2021-0426	2024-11-21 14:42	2021-04-14	Show	GitHub Exploit DB Packet Storm

200130	5.5	MEDIUM Local	google	android	In injectBestLocation and handleUpdateLocation of GnssLocationProvider.java, there is a possible incorrect reporting of location data to emergency services due to improper input validation. This coul…	CWE-20 Improper Input Validation	CVE-2021-0400	2024-11-21 14:42	2021-04-14	Show	GitHub Exploit DB Packet Storm