Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226061 7.5 危険 Digium - Asterisk Open Source の res/res_format_attr_h264.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-2685 2013-04-2 14:35 2013-03-27 Show GitHub Exploit DB Packet Storm
226062 5 警告 Digium - 複数の Asterisk 製品の SIP チャンネルドライバにおけるアカウント名を列挙される脆弱性 CWE-200
情報漏えい 		CVE-2013-2264 2013-04-2 14:34 2013-02-21 Show GitHub Exploit DB Packet Storm
226063 7.5 危険 Synchroweb Technology - Synchroweb Technology SynConnect の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-2690 2013-04-2 14:03 2013-03-28 Show GitHub Exploit DB Packet Storm
226064 - - ヒューレット・パッカード - ** 削除 ** HP ProCurve 1700-8 および 1700-24 スイッチにおけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2012-5216 2013-04-2 13:53 2013-03-25 Show GitHub Exploit DB Packet Storm
226065 4.3 警告 アップル
Google		 - Google Chrome におけるクロスサイトスクリプティング攻撃を実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3058 2013-04-2 11:33 2012-03-28 Show GitHub Exploit DB Packet Storm
226066 4.3 警告 アルバネットワークス株式会社 - Mobility Controller で使用される Aruba Networks ArubaOS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2290 2013-04-1 20:54 2013-03-18 Show GitHub Exploit DB Packet Storm
226067 7.8 危険 シスコシステムズ - Cisco IOS の IP Service Level Agreement 機能におけるサービス運用妨害 (デバイスリロード) の脆弱性 CWE-119
バッファエラー 		CVE-2013-1148 2013-04-1 20:47 2013-02-8 Show GitHub Exploit DB Packet Storm
226068 7.8 危険 シスコシステムズ - Cisco IOS の Protocol Translation (PT) 機能におけるサービス運用妨害 (デバイスリロード) の脆弱性 CWE-119
バッファエラー 		CVE-2013-1147 2013-04-1 20:46 2013-03-27 Show GitHub Exploit DB Packet Storm
226069 7.8 危険 シスコシステムズ - Cisco IOS の Smart Install クライアント機能におけるサービス運用妨害 (デバイスリロード) の脆弱性 CWE-119
バッファエラー 		CVE-2013-1146 2013-04-1 20:46 2013-03-27 Show GitHub Exploit DB Packet Storm
226070 7.1 危険 シスコシステムズ - Cisco IOS および IOS XE の RSVP プロトコルの実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-1143 2013-04-1 20:19 2013-03-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223741 7.8 HIGH
Local 		cisco nx-os A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to escalate their privilege level to root. The attacker must authenticate with v… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-1596 2024-11-21 13:36 2019-03-8 Show GitHub Exploit DB Packet Storm
223742 6.5 MEDIUM
Adjacent 		cisco nx-os A vulnerability in the Fibre Channel over Ethernet (FCoE) protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) conditio… CWE-913
 Improper Control of Dynamically-Managed Code Resources 		CVE-2019-1595 2024-11-21 13:36 2019-03-7 Show GitHub Exploit DB Packet Storm
223743 7.4 HIGH
Adjacent 		cisco nx-os A vulnerability in the 802.1X implementation for Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnera… CWE-20
 Improper Input Validation  		CVE-2019-1594 2024-11-21 13:36 2019-03-7 Show GitHub Exploit DB Packet Storm
223744 7.8 HIGH
Local 		cisco nx-os A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to escalate their privilege level by executing commands authorized to other user… NVD-CWE-noinfo
CVE-2019-1593 2024-11-21 13:36 2019-03-7 Show GitHub Exploit DB Packet Storm
223745 7.8 HIGH
Local 		cisco nx-os A vulnerability in a specific CLI command implementation of Cisco Nexus 9000 Series ACI Mode Switch Software could allow an authenticated, local attacker to escape a restricted shell on an affected d… CWE-78
OS Command  		CVE-2019-1591 2024-11-21 13:36 2019-03-7 Show GitHub Exploit DB Packet Storm
223746 4.4 MEDIUM
Local 		cisco nx-os A vulnerability in the Cisco Nexus 9000 Series Fabric Switches running in Application-Centric Infrastructure (ACI) mode could allow an authenticated, local attacker to read arbitrary files on an affe… CWE-269
 Improper Privilege Management 		CVE-2019-1588 2024-11-21 13:36 2019-03-7 Show GitHub Exploit DB Packet Storm
223747 7.8 HIGH
Local 		cisco nx-os
application_policy_infrastructure_controller_software 		A vulnerability in the controller authorization functionality of Cisco Nexus 9000 Series ACI Mode Switch Software could allow an authenticated, local attacker to escalate standard users with root pri… CWE-16
Configuration 		CVE-2019-1585 2024-11-21 13:36 2019-03-7 Show GitHub Exploit DB Packet Storm
223748 7.4 HIGH
Network 		openssl openssl ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value (IV) should be 96 bits (12 bytes). OpenSSL allows a vari… CWE-327
CWE-330
 Use of a Broken or Risky Cryptographic Algorithm
 Use of Insufficiently Random Values 		CVE-2019-1543 2024-11-21 13:36 2019-03-7 Show GitHub Exploit DB Packet Storm
223749 5.9 MEDIUM
Network 		openssl
canonical
debian
netapp
f5
tenable
opensuse
fedoraproject
mcafee
redhat
oracle
paloaltonetworks
nodejs 		openssl
ubuntu_linux
debian_linux
hyper_converged_infrastructure
cloud_backup
santricity_smi-s_provider
element_software
snapdrive
snapcenter
storage_automation_store
on… 		If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling appl… CWE-203
 Information Exposure Through Discrepancy 		CVE-2019-1559 2024-11-21 13:36 2019-02-28 Show GitHub Exploit DB Packet Storm
223750 6.1 MEDIUM
Network 		paloaltonetworks pan-os The PAN-OS management web interface in PAN-OS 7.1.21 and earlier, PAN-OS 8.0.14 and earlier, and PAN-OS 8.1.5 and earlier, may allow an unauthenticated attacker to inject arbitrary JavaScript or HTML. CWE-79
Cross-site Scripting 		CVE-2019-1566 2024-11-21 13:36 2019-01-31 Show GitHub Exploit DB Packet Storm