Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228091	7.8	危険	シスコシステムズ	-	Cisco ASA および FWSM のソフトウェアにおけるサービス運用妨害 (DOS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-1149	2013-04-15 09:49	2013-04-10	Show	GitHub Exploit DB Packet Storm

228092	7.5	危険	Google	-	Google Chrome OS におけるアクセス制限を回避される脆弱性	CWE-59 リンク解釈の問題	CVE-2013-0927	2013-04-12 16:22	2013-04-8	Show	GitHub Exploit DB Packet Storm

228093	4.4	警告	レッドハット	-	Red Hat OpenStack Essex および Folsom の PackStack におけるデプロイされたシステムを変更される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-1815	2013-04-12 15:56	2013-03-21	Show	GitHub Exploit DB Packet Storm

228094	2.1	注意	レッドハット	-	Red Hat OpenStack Essex および Folsom における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-6120	2013-04-12 15:51	2013-04-4	Show	GitHub Exploit DB Packet Storm

228095	4	警告	フェンリル株式会社	-	Sleipnir Mobile for Android において任意のエクステンション API が呼び出される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2304	2013-04-12 12:01	2013-04-12	Show	GitHub Exploit DB Packet Storm

228096	4.3	警告	Splunk	-	Splunk Web におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2766	2013-04-12 11:04	2013-03-25	Show	GitHub Exploit DB Packet Storm

228097	5	警告	Puppet	-	Puppet Labs の Puppet Enterprise におけるコンソールアクセスを取得される脆弱性	CWE-310 暗号の問題	CVE-2013-2716	2013-04-12 11:03	2013-03-28	Show	GitHub Exploit DB Packet Storm

228098	7.5	危険	Digineo	-	Ruby 用 Thumbshooter gem の lib/thumbshooter.rb における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-1898	2013-04-11 19:42	2013-03-25	Show	GitHub Exploit DB Packet Storm

228099	7.5	危険	Dan Kubb	-	Ruby 用 extlib gem におけるオブジェクトインジェクション攻撃を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1802	2013-04-11 19:41	2013-01-14	Show	GitHub Exploit DB Packet Storm

228100	7.5	危険	John Nunemaker	-	Ruby 用 httparty gem におけるオブジェクトインジェクション攻撃を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1801	2013-04-11 19:41	2013-01-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194331	8.1	HIGH Network	devise_masquerade_project	devise_masquerade	The devise_masquerade gem before 1.3 allows certain attacks when a password's salt is unknown. An application that uses this gem to let administrators masquerade/impersonate users loses one layer of …	NVD-CWE-noinfo	CVE-2021-28680	2024-11-21 15:00	2021-12-8	Show	GitHub Exploit DB Packet Storm

194332	7.0	HIGH Local	xen	xen	grant table v2 status pages may remain accessible after de-allocation (take two) Guest get permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associa…	NVD-CWE-Other	CVE-2021-28703	2024-11-21 15:00	2021-12-7	Show	GitHub Exploit DB Packet Storm

194333	6.1	MEDIUM Network	esri	arcgis_server	A stored Cross Site Scripting (XSS) vulnerability in Esri ArcGIS Server feature services versions 10.8.1 and 10.9 (only) feature services may allow a remote, unauthenticated attacker to pass and stor…	CWE-79 Cross-site Scripting	CVE-2021-29116	2024-11-21 15:00	2021-12-7	Show	GitHub Exploit DB Packet Storm

194334	5.3	MEDIUM Network	esri	arcgis_enterprise	An information disclosure vulnerability in the ArcGIS Service Directory in Esri ArcGIS Enterprise versions 10.9.0 and below may allows a remote attacker to view hidden field names in feature layers. …	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2021-29115	2024-11-21 15:00	2021-12-7	Show	GitHub Exploit DB Packet Storm

194335	9.8	CRITICAL Network	esri	arcgis_server	A SQL injection vulnerability in feature services provided by Esri ArcGIS Server 10.9 and below allows a remote, unauthenticated attacker to impact the confidentiality, integrity and availability of …	CWE-89 SQL Injection	CVE-2021-29114	2024-11-21 15:00	2021-12-7	Show	GitHub Exploit DB Packet Storm

194336	4.7	MEDIUM Network	esri	arcgis_server	A remote file inclusion vulnerability in the ArcGIS Server help documentation may allow a remote, unauthenticated attacker to inject attacker supplied html into a page.	CWE-829 Inclusion of Functionality from Untrusted Control Sphere	CVE-2021-29113	2024-11-21 15:00	2021-12-7	Show	GitHub Exploit DB Packet Storm

194337	7.8	HIGH Local	xen fedoraproject debian	xen fedora debian_linux	issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH gu…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2021-28709	2024-11-21 15:00	2021-11-24	Show	GitHub Exploit DB Packet Storm

194338	7.8	HIGH Local	xen fedoraproject debian	xen fedora debian_linux	issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH gu…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2021-28705	2024-11-21 15:00	2021-11-24	Show	GitHub Exploit DB Packet Storm

194339	8.6	HIGH Network	xen fedoraproject debian	xen fedora debian_linux	guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrat…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2021-28706	2024-11-21 15:00	2021-11-24	Show	GitHub Exploit DB Packet Storm

194340	8.8	HIGH Local	xen debian fedoraproject	xen debian_linux fedora	PoD operations on misaligned GFNs T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be starte…	NVD-CWE-noinfo	CVE-2021-28708	2024-11-21 15:00	2021-11-24	Show	GitHub Exploit DB Packet Storm