Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228711	5	警告	シスコシステムズ	-	Cisco Unity Connection におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-1129	2013-02-21 16:41	2013-02-15	Show	GitHub Exploit DB Packet Storm

228712	6.8	警告	シスコシステムズ	-	複数の Cisco 製品のコマンドラインインターフェイスにおける root 権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2013-1125	2013-02-21 16:40	2013-02-15	Show	GitHub Exploit DB Packet Storm

228713	2.6	注意	コンクリートファイブ	-	concrete5 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5181	2013-02-20 16:01	2012-12-21	Show	GitHub Exploit DB Packet Storm

228714	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0008	2013-02-20 14:31	2013-01-8	Show	GitHub Exploit DB Packet Storm

228715	7.5	危険	Google	-	Linux 上で稼働する Google Chrome における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0838	2013-02-20 13:41	2013-01-10	Show	GitHub Exploit DB Packet Storm

228716	7.5	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0837	2013-02-20 13:40	2013-01-10	Show	GitHub Exploit DB Packet Storm

228717	6.8	警告	Google	-	Google Chrome で使用される Google V8 におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-0836	2013-02-20 13:39	2013-01-10	Show	GitHub Exploit DB Packet Storm

228718	5	警告	Google	-	Google Chrome の Geolocation の実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-noinfo 情報不足	CVE-2013-0835	2013-02-20 13:37	2013-01-10	Show	GitHub Exploit DB Packet Storm

228719	5	警告	Google	-	Google Chrome におけるサービス運用妨害 (out-of-bounds read) の脆弱性	CWE-119 バッファエラー	CVE-2013-0834	2013-02-20 13:36	2013-01-10	Show	GitHub Exploit DB Packet Storm

228720	5	警告	Google	-	Google Chrome のサービス運用妨害 (out-of-bounds read) の脆弱性	CWE-119 バッファエラー	CVE-2013-0833	2013-02-20 13:35	2013-01-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194081	6.5	MEDIUM Network	fastify	fastify-csrf	fastify-csrf is an open-source plugin helps developers protect their Fastify server against CSRF attacks. Versions of fastify-csrf prior to 3.1.0 have a "double submit" mechanism using cookies with a…	CWE-352 Origin Validation Error	CVE-2021-29624	2024-11-21 15:01	2021-05-20	Show	GitHub Exploit DB Packet Storm

194082	6.1	MEDIUM Network	prometheus	prometheus	Prometheus is an open-source monitoring system and time series database. In 2.23.0, Prometheus changed its default UI to the New ui. To ensure a seamless transition, the URL's prefixed by /new redire…	-	CVE-2021-29622	2024-11-21 15:01	2021-05-20	Show	GitHub Exploit DB Packet Storm

194083	6.1	MEDIUM Network	hedgedoc	hedgedoc	HedgeDoc is a platform to write and share markdown. HedgeDoc before version 1.8.2 is vulnerable to a cross-site scripting attack using the YAML-metadata of a note. An attacker with write access to a …	CWE-79 Cross-site Scripting	CVE-2021-29503	2024-11-21 15:01	2021-05-20	Show	GitHub Exploit DB Packet Storm

194084	7.5	HIGH Network	ibm	infosphere_information_server	IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain highly sensitive information due to a vulnerability in the authentication mechanism. IBM X-Force ID: 201775.	NVD-CWE-noinfo	CVE-2021-29747	2024-11-21 15:01	2021-05-18	Show	GitHub Exploit DB Packet Storm

194085	5.5	MEDIUM Local	google	tensorflow	TensorFlow is an end-to-end open source platform for machine learning. Passing invalid arguments (e.g., discovered via fuzzing) to `tf.raw_ops.SparseCountSparseOutput` results in segfault. The fix wi…	-	CVE-2021-29619	2024-11-21 15:01	2021-05-15	Show	GitHub Exploit DB Packet Storm

194086	5.5	MEDIUM Local	google	tensorflow	TensorFlow is an end-to-end open source platform for machine learning. Passing a complex argument to `tf.transpose` at the same time as passing `conjugate=True` argument results in a crash. The fix w…	-	CVE-2021-29618	2024-11-21 15:01	2021-05-15	Show	GitHub Exploit DB Packet Storm

194087	5.5	MEDIUM Local	google	tensorflow	TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a denial of service via `CHECK`-fail in `tf.strings.substr` with invalid arguments. The fix will be includ…	-	CVE-2021-29617	2024-11-21 15:01	2021-05-15	Show	GitHub Exploit DB Packet Storm

194088	7.1	HIGH Local	google	tensorflow	TensorFlow is an end-to-end open source platform for machine learning. Incomplete validation in `tf.raw_ops.CTCLoss` allows an attacker to trigger an OOB read from heap. The fix will be included in T…	CWE-125 Out-of-bounds Read	CVE-2021-29613	2024-11-21 15:01	2021-05-15	Show	GitHub Exploit DB Packet Storm

194089	5.5	MEDIUM Local	google	tensorflow	TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a denial of service by exploiting a `CHECK`-failure coming from the implementation of `tf.raw_ops.IRFFT`. …	-	CVE-2021-29562	2024-11-21 15:01	2021-05-15	Show	GitHub Exploit DB Packet Storm

194090	5.5	MEDIUM Local	google	tensorflow	TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a denial of service via a FPE runtime error in `tf.raw_ops.SparseMatMul`. The division by 0 occurs deep in…	-	CVE-2021-29557	2024-11-21 15:01	2021-05-15	Show	GitHub Exploit DB Packet Storm