Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228251 4.7 警告 シトリックス・システムズ
Xen プロジェクト		 - Xen におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-5515 2012-12-14 16:21 2012-12-3 Show GitHub Exploit DB Packet Storm
228252 4.7 警告 シトリックス・システムズ
Xen プロジェクト		 - Xen の guest_physmap_mark_populate_on_demand 関数におけるサービス運用妨害 (ハング) の脆弱性 CWE-DesignError
CVE-2012-5514 2012-12-14 16:20 2012-12-3 Show GitHub Exploit DB Packet Storm
228253 6.9 警告 シトリックス・システムズ
Xen プロジェクト		 - Xen の XENMEM_exchange ハンドラにおけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-5513 2012-12-14 16:18 2012-12-3 Show GitHub Exploit DB Packet Storm
228254 3 注意 シトリックス・システムズ
Xen プロジェクト		 - Xen の HVMOP_set_mem_access ハンドラにおけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-16
環境設定 		CVE-2012-5512 2012-12-14 16:17 2012-12-3 Show GitHub Exploit DB Packet Storm
228255 4.7 警告 シトリックス・システムズ
Xen プロジェクト		 - Xen の VRAM 汚染トラッキング機能におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5511 2012-12-14 16:15 2012-12-3 Show GitHub Exploit DB Packet Storm
228256 4.7 警告 シトリックス・システムズ
Xen プロジェクト		 - Xen におけるサービス運用妨害 (ハイパーバイザのクラッシュ) の脆弱性 CWE-DesignError
CVE-2012-5510 2012-12-14 16:12 2012-12-3 Show GitHub Exploit DB Packet Storm
228257 4.4 警告 Xen プロジェクト - Xen におけるサービス運用妨害 (CPU 資源の消費およびホストハング) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3131 2012-12-14 16:03 2011-08-12 Show GitHub Exploit DB Packet Storm
228258 6.5 警告 Centreon - Centreon にブラインド SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5967 2012-12-14 15:59 2012-12-13 Show GitHub Exploit DB Packet Storm
228259 6.8 警告 D-Link Systems, Inc. - D-Link DSL-2730u に OS コマンドインジェクションの脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5966 2012-12-14 15:49 2012-12-13 Show GitHub Exploit DB Packet Storm
228260 4.3 警告 ForeScout Technologies - Forescout CounterACT NAC デバイスにおけるARP ポイズニング攻撃が実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4985 2012-12-14 15:37 2012-12-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
71 8.8 HIGH
Network 		google chrome Use after free in Prerender in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical) New CWE-416
 Use After Free 		CVE-2026-6299 2026-04-18 00:41 2026-04-16 Show GitHub Exploit DB Packet Storm
72 8.8 HIGH
Network 		google chrome Use after free in CSS in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) New CWE-416
 Use After Free 		CVE-2026-6300 2026-04-18 00:41 2026-04-16 Show GitHub Exploit DB Packet Storm
73 8.8 HIGH
Network 		google chrome Type Confusion in Turbofan in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) New CWE-843
Type Confusion 		CVE-2026-6301 2026-04-18 00:41 2026-04-16 Show GitHub Exploit DB Packet Storm
74 8.8 HIGH
Network 		google chrome Heap buffer overflow in PDFium in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: High) New CWE-122
Heap-based Buffer Overflow 		CVE-2026-6306 2026-04-18 00:40 2026-04-16 Show GitHub Exploit DB Packet Storm
75 7.5 HIGH
Network 		- - A heap buffer overflow in the av_bprint_finalize() function of FFmpeg v8.0.1 allows attackers to cause a Denial of Service (DoS) via a crafted input. Update CWE-122
Heap-based Buffer Overflow 		CVE-2026-30999 2026-04-18 00:38 2026-04-14 Show GitHub Exploit DB Packet Storm
76 5.4 MEDIUM
Network 		- - Cross-Site Scripting vulnerability in the Snipe-IT web-based asset management system v8.3.0 to up and including v8.3.1 allows authenticated attacker with lowest privileges sufficient only to log in, … Update CWE-79
Cross-site Scripting 		CVE-2025-63743 2026-04-18 00:38 2026-04-14 Show GitHub Exploit DB Packet Storm
77 7.5 HIGH
Network 		- - A NULL pointer dereference in Nitro PDF Pro for Windows v14.41.1.4 allows attackers to cause a Denial of Service (DoS) via a crafted XFA packet. Update CWE-476
 NULL Pointer Dereference 		CVE-2025-66769 2026-04-18 00:38 2026-04-14 Show GitHub Exploit DB Packet Storm
78 7.5 HIGH
Network 		- - Nitro PDF Pro for Windows 14.41.1.4 contains a NULL pointer dereference vulnerability in the JavaScript implementation of app.alert(). When app.alert() is called with more than one argument and the f… Update CWE-476
 NULL Pointer Dereference 		CVE-2025-69624 2026-04-18 00:38 2026-04-14 Show GitHub Exploit DB Packet Storm
79 8.4 HIGH
Local 		- - Nitro PDF Pro for Windows 14.41.1.4 contains a heap use-after-free vulnerability in the implementation of the JavaScript method this.mailDoc(). During execution, an internal XID object is allocated a… Update CWE-416
 Use After Free 		CVE-2025-69627 2026-04-18 00:38 2026-04-14 Show GitHub Exploit DB Packet Storm
80 - - - Unrestricted Upload of File with Dangerous Type vulnerability allows Remote Code Execution via file upload. This issue affects Pandora FMS: from 777 through 800 Update CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2026-30804 2026-04-18 00:38 2026-04-14 Show GitHub Exploit DB Packet Storm