Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225931 4.3 警告 Splunk - Splunk Web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2766 2013-04-12 11:04 2013-03-25 Show GitHub Exploit DB Packet Storm
225932 5 警告 Puppet - Puppet Labs の Puppet Enterprise におけるコンソールアクセスを取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-2716 2013-04-12 11:03 2013-03-28 Show GitHub Exploit DB Packet Storm
225933 7.5 危険 Digineo - Ruby 用 Thumbshooter gem の lib/thumbshooter.rb における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-1898 2013-04-11 19:42 2013-03-25 Show GitHub Exploit DB Packet Storm
225934 7.5 危険 Dan Kubb - Ruby 用 extlib gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1802 2013-04-11 19:41 2013-01-14 Show GitHub Exploit DB Packet Storm
225935 7.5 危険 John Nunemaker - Ruby 用 httparty gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1801 2013-04-11 19:41 2013-01-14 Show GitHub Exploit DB Packet Storm
225936 7.5 危険 John Nunemaker - Ruby 用 crack gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1800 2013-04-11 19:40 2013-01-14 Show GitHub Exploit DB Packet Storm
225937 7.5 危険 Daniel Harrington - Ruby 用 nori gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0285 2013-04-11 19:39 2013-01-14 Show GitHub Exploit DB Packet Storm
225938 5 警告 New Relic - Ruby Agent における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-0284 2013-04-11 19:38 2013-02-13 Show GitHub Exploit DB Packet Storm
225939 6.8 警告 Michael Bleigh and Intridea, Inc. - Ruby 用 omniauth-oauth2 gem におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-6134 2013-04-11 19:37 2013-02-25 Show GitHub Exploit DB Packet Storm
225940 5.8 警告 Apache Software Foundation - Apache Maven のデフォルト設定におけるサーバになりすまされる脆弱性 CWE-16
環境設定 		CVE-2013-0253 2013-04-11 17:36 2013-04-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196681 4.7 MEDIUM
Local 		juniper junos_os_evolved A Race Condition in the 'show chassis pic' command in Juniper Networks Junos OS Evolved may allow an attacker to crash the port interface concentrator daemon (picd) process on the FPC, if the command… CWE-362
Race Condition 		CVE-2021-0298 2024-11-21 14:42 2021-10-20 Show GitHub Exploit DB Packet Storm
196682 6.5 MEDIUM
Network 		juniper junos_os_evolved A vulnerability in the processing of TCP MD5 authentication in Juniper Networks Junos OS Evolved may allow a BGP or LDP session configured with MD5 authentication to succeed, even if the peer does no… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2021-0297 2024-11-21 14:42 2021-10-20 Show GitHub Exploit DB Packet Storm
196683 7.4 HIGH
Network 		juniper ctpview The Juniper Networks CTPView server is not enforcing HTTP Strict Transport Security (HSTS). HSTS is an optional response header which allows servers to indicate that content from the requested domain… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2021-0296 2024-11-21 14:42 2021-10-20 Show GitHub Exploit DB Packet Storm
196684 7.3 HIGH
Local 		google android In onCreate of BluetoothPairingDialog, there is a possible way to enable Bluetooth without user consent due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User … CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2021-0583 2024-11-21 14:42 2021-10-12 Show GitHub Exploit DB Packet Storm
196685 7.3 HIGH
Local 		google android In onCreate of ConfirmConnectActivity.java, there is a possible pairing of untrusted Bluetooth devices due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User e… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2021-0598 2024-11-21 14:42 2021-10-7 Show GitHub Exploit DB Packet Storm
196686 7.8 HIGH
Local 		google android In lockAllProfileTasks of RootWindowContainer.java, there is a possible way to access the work profile without the profile PIN, after logging in. This could lead to local escalation of privilege with… CWE-287
Improper Authentication 		CVE-2021-0595 2024-11-21 14:42 2021-10-7 Show GitHub Exploit DB Packet Storm
196687 5.5 MEDIUM
Local 		google android In memory management driver, there is a possible side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction … NVD-CWE-noinfo
CVE-2021-0425 2024-11-21 14:42 2021-09-27 Show GitHub Exploit DB Packet Storm
196688 5.5 MEDIUM
Local 		google android In memory management driver, there is a possible system crash due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed. User interactio… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2021-0424 2024-11-21 14:42 2021-09-27 Show GitHub Exploit DB Packet Storm
196689 5.5 MEDIUM
Local 		google android In memory management driver, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User… CWE-665
 Improper Initialization 		CVE-2021-0423 2024-11-21 14:42 2021-09-27 Show GitHub Exploit DB Packet Storm
196690 5.5 MEDIUM
Local 		google android In memory management driver, there is a possible system crash due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed. User interactio… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2021-0422 2024-11-21 14:42 2021-09-27 Show GitHub Exploit DB Packet Storm