Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225831	4.6	警告	Xen プロジェクト	-	Xen の xc_vcpu_getaffinity 関数の ocaml バインディングにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-4370	2013-10-21 19:11	2013-10-10	Show	GitHub Exploit DB Packet Storm

225832	1.9	注意	Xen プロジェクト	-	Xen の libxlu ライブラリの xlu_vif_parse_rate 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2013-4369	2013-10-21 19:10	2013-10-10	Show	GitHub Exploit DB Packet Storm

225833	5	警告	Apache Software Foundation	-	Apache Sling の org.apache.sling.servlets.post.bundle におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-2254	2013-10-21 19:06	2013-06-7	Show	GitHub Exploit DB Packet Storm

225834	2.1	注意	Novell Clutter Project	-	Clutter の x11/clutter-device-manager-xi2.c における以前の gnome-shell セッションにアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2190	2013-10-21 19:01	2013-06-11	Show	GitHub Exploit DB Packet Storm

225835	6	警告	Trivantis Corporation Inc.	-	Coursemill Learning Management System における任意の JSP 操作を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3601	2013-10-21 18:43	2013-08-30	Show	GitHub Exploit DB Packet Storm

225836	6.8	警告	SearchBlox Software	-	SearchBlox の admin/uploadImage.html における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-3590	2013-10-21 18:39	2013-08-23	Show	GitHub Exploit DB Packet Storm

225837	4.3	警告	IBM	-	IBM Storwize V7000 Unified におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5376	2013-10-21 17:16	2013-10-15	Show	GitHub Exploit DB Packet Storm

225838	4.3	警告	IBM	-	IBM Rational Focal Point におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3025	2013-10-21 17:15	2013-10-17	Show	GitHub Exploit DB Packet Storm

225839	5.4	警告	IBM	-	IBM Storwize V7000 Unified における重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2013-0500	2013-10-21 17:14	2013-10-15	Show	GitHub Exploit DB Packet Storm

225840	4.3	警告	Ruby on Rails project	-	Ruby on Rails の Action Mailer の log subscriber コンポーネントにおけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2013-4389	2013-10-21 16:48	2013-10-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201951	7.0	HIGH Local	google	android	In pf_write_buf of FuseDaemon.cpp, there is possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User i…	CWE-362 Race Condition	CVE-2021-0955	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

201952	7.3	HIGH Local	google	android	In ResolverActivity, there is a possible user interaction bypass due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User inter…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2021-0954	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

201953	7.8	HIGH Local	google	android	In setOnClickActivityIntent of SearchWidgetProvider.java, there is a possible way to access contacts and history bookmarks without permission due to an unsafe PendingIntent. This could lead to local …	CWE-281 Improper Preservation of Permissions	CVE-2021-0953	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

201954	5.0	MEDIUM Local	google	android	In doCropPhoto of PhotoSelectionHandler.java, there is a possible permission bypass due to a confused deputy. This could lead to local information disclosure of user's contacts with no additional exe…	NVD-CWE-Other	CVE-2021-0952	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

201955	8.0	HIGH Adjacent	google	android	In onCreate of CompanionDeviceActivity.java or DeviceChooserActivity.java, there is a possible way for HTML tags to interfere with a consent dialog due to improper input validation. This could lead t…	CWE-20 CWE-116 Improper Input Validation Improper Encoding or Escaping of Output	CVE-2021-0933	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

201956	7.8	HIGH Local	google	android	In showNotification of NavigationModeController.java, there is a possible confused deputy due to an unsafe PendingIntent. This could lead to local escalation of privilege that allows actions performe…	NVD-CWE-Other	CVE-2021-0932	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

201957	5.5	MEDIUM Local	google	android	In getAlias of BluetoothDevice.java, there is a possible way to create misleading permission dialogs due to missing data filtering. This could lead to local information disclosure with User execution…	NVD-CWE-Other	CVE-2021-0931	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

201958	8.8	HIGH Adjacent	google	android	In phNxpNciHal_process_ext_rsp of phNxpNciHal_ext.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over NFC with no additional execu…	CWE-787 Out-of-bounds Write	CVE-2021-0930	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

201959	7.8	HIGH Local	google	android	In ion_dma_buf_end_cpu_access and related functions of ion.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional ex…	CWE-416 Use After Free	CVE-2021-0929	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm

201960	7.8	HIGH Local	google	android	In createFromParcel of OutputConfiguration.java, there is a possible parcel serialization/deserialization mismatch due to improper input validation. This could lead to local escalation of privilege w…	CWE-20 CWE-755 Improper Input Validation Improper Handling of Exceptional Conditions	CVE-2021-0928	2024-11-21 14:43	2021-12-16	Show	GitHub Exploit DB Packet Storm