Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226071	5.8	警告	IBM	-	IBM Lotus Notes における Java コードの実行および X-Confirm-Reading-To 機能の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0127	2013-05-2 14:19	2013-04-30	Show	GitHub Exploit DB Packet Storm

226072	4.3	警告	Henry Schein	-	Dentrix G5 の認証情報に関する脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-4952	2013-05-2 14:15	2013-04-30	Show	GitHub Exploit DB Packet Storm

226073	5	警告	ヒューレット・パッカード	-	複数の HP 製レーザープリンタのファームウェアにおける任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2012-5221	2013-05-1 14:59	2013-04-25	Show	GitHub Exploit DB Packet Storm

226074	6.8	警告	シスコシステムズ	-	複数の Cisco 製品のコマンドラインインタフェースにおける root 権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2013-1196	2013-05-1 12:34	2013-04-12	Show	GitHub Exploit DB Packet Storm

226075	9.3	危険	IBM	-	IBM SPSS SamplePower の vsflex7l ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5947	2013-05-1 11:42	2013-04-26	Show	GitHub Exploit DB Packet Storm

226076	9.3	危険	IBM	-	IBM SPSS SamplePower の C1sizer.ocx におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5946	2013-05-1 11:42	2013-04-26	Show	GitHub Exploit DB Packet Storm

226077	9.3	危険	IBM	-	IBM SPSS SamplePower の Vsflex8l ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5945	2013-05-1 11:41	2013-04-26	Show	GitHub Exploit DB Packet Storm

226078	4.3	警告	ヒューレット・パッカード	-	HP Managed Printing Administration におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5219	2013-05-1 11:22	2013-04-25	Show	GitHub Exploit DB Packet Storm

226079	3.5	注意	IBM	-	複数の IBM 製品で使用される IBM Sametime のクライアントの実装におけるコマンドを送信される脆弱性	CWE-noinfo 情報不足	CVE-2013-0553	2013-05-1 11:21	2013-04-22	Show	GitHub Exploit DB Packet Storm

226080	3.5	注意	IBM	-	IBM Sametime の Sametime Links サーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0533	2013-05-1 11:15	2013-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222741	7.0	HIGH Local	systemd_project redhat fedoraproject debian	systemd enterprise_linux fedora debian_linux	In systemd before v242-rc4, it was discovered that pam_systemd does not properly sanitize the environment before using the XDG_SEAT variable. It is possible for an attacker, in some particular config…	CWE-863 Incorrect Authorization	CVE-2019-3842	2024-11-21 13:42	2019-04-10	Show	GitHub Exploit DB Packet Storm

222742	7.5	HIGH Network	advantech	webaccess	Advantech WebAccess 8.3.4 allows unauthenticated, remote attackers to delete arbitrary files via IOCTL 10005 RPC.	CWE-306 Missing Authentication for Critical Function	CVE-2019-3941	2024-11-21 13:42	2019-04-10	Show	GitHub Exploit DB Packet Storm

222743	9.8	CRITICAL Network	advantech	webaccess	Advantech WebAccess 8.3.4 is vulnerable to file upload attacks via unauthenticated RPC call. An unauthenticated, remote attacker can use this vulnerability to execute arbitrary code.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-3940	2024-11-21 13:42	2019-04-10	Show	GitHub Exploit DB Packet Storm

222744	4.9	MEDIUM Network	theforeman redhat	foreman satellite	In Foreman it was discovered that the delete compute resource operation, when executed from the Foreman API, leads to the disclosure of the plaintext password or token for the affected compute resour…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-3893	2024-11-21 13:42	2019-04-10	Show	GitHub Exploit DB Packet Storm

222745	5.4	MEDIUM Network	samba debian redhat fedoraproject opensuse	samba debian_linux enterprise_linux gluster_storage fedora leap	A flaw was found in the way samba implemented an RPC endpoint emulating the Windows registry service API. An unprivileged attacker could use this flaw to create a new registry hive file anywhere they…	CWE-22 Path Traversal	CVE-2019-3880	2024-11-21 13:42	2019-04-10	Show	GitHub Exploit DB Packet Storm

222746	5.6	MEDIUM Local	linux fedoraproject canonical redhat	linux_kernel fedora ubuntu_linux enterprise_linux enterprise_linux_eus enterprise_linux_server_tus enterprise_linux_server_aus enterprise_linux_for_real_time enterprise_linux_…	A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization enabled. In that, L1 guest could access L0's APIC register values via …	-	CVE-2019-3887	2024-11-21 13:42	2019-04-10	Show	GitHub Exploit DB Packet Storm

222747	6.1	MEDIUM Local	samba fedoraproject synology	samba fedora diskstation_manager directory_server router_manager skynas_firmware vs960hd_firmware	A vulnerability was found in Samba from version (including) 4.9 to versions before 4.9.6 and 4.10.2. During the creation of a new Samba AD DC, files are created in a private subdirectory of the insta…	CWE-276 Incorrect Default Permissions	CVE-2019-3870	2024-11-21 13:42	2019-04-10	Show	GitHub Exploit DB Packet Storm

222748	5.3	MEDIUM Network	vmware debian	spring_security debian_linux	Spring Security versions 4.2.x prior to 4.2.12, 5.0.x prior to 5.0.12, and 5.1.x prior to 5.1.5 contain an insecure randomness vulnerability when using SecureRandomFactoryBean#setSeed to configure a …	CWE-330 Use of Insufficiently Random Values	CVE-2019-3795	2024-11-21 13:42	2019-04-10	Show	GitHub Exploit DB Packet Storm

222749	5.4	MEDIUM Adjacent	redhat opensuse fedoraproject	libvirt leap fedora	An incorrect permissions check was discovered in libvirt 4.8.0 and above. The readonly permission was allowed to invoke APIs depending on the guest agent, which could lead to potentially disclosing u…	-	CVE-2019-3886	2024-11-21 13:42	2019-04-5	Show	GitHub Exploit DB Packet Storm

222750	7.5	HIGH Network	pivotal_software	concourse	Pivotal Concourse version 5.0.0, contains an API that is vulnerable to SQL injection. An Concourse resource can craft a version identifier that can carry a SQL injection payload to the Concourse serv…	CWE-89 SQL Injection	CVE-2019-3792	2024-11-21 13:42	2019-04-2	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed