Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228821 5.8 警告 PayPal - PayPal Payments Standard PHP ライブラリにおける SSL サーバを偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-5789 2012-11-7 14:44 2012-11-4 Show GitHub Exploit DB Packet Storm
228822 5.8 警告 PayPal - PayPal IPN ユーティリティにおける SSL サーバを偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-5788 2012-11-7 14:30 2012-11-4 Show GitHub Exploit DB Packet Storm
228823 5.8 警告 PayPal - PayPal merchant SDK における SSL サーバを偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-5787 2012-11-7 14:29 2012-11-4 Show GitHub Exploit DB Packet Storm
228824 5.8 警告 Apache Software Foundation - Apache CXF における SSL サーバを偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-5786 2012-11-7 14:28 2012-11-4 Show GitHub Exploit DB Packet Storm
228825 5.8 警告 Apache Software Foundation - Apache Axis2/Java における SSL サーバを偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-5785 2012-11-7 14:28 2012-11-4 Show GitHub Exploit DB Packet Storm
228826 5.8 警告 Amazon.com, Inc. - Amazon Flexible Payments Service PHP ライブラリにおける SSL サーバを偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-5782 2012-11-7 14:25 2012-11-4 Show GitHub Exploit DB Packet Storm
228827 5.8 警告 Amazon.com, Inc. - Amazon Elastic Load Balancing API Tools における SSL サーバを偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-5781 2012-11-7 14:24 2012-11-4 Show GitHub Exploit DB Packet Storm
228828 5.8 警告 Amazon.com, Inc. - Amazon merchant SDK における SSL サーバを偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-5780 2012-11-7 14:22 2012-11-4 Show GitHub Exploit DB Packet Storm
228829 5.8 警告 Apache Software Foundation - Apache Libcloud における SSL サーバを偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3446 2012-11-7 14:21 2012-11-4 Show GitHub Exploit DB Packet Storm
228830 4.3 警告 有限会社ビーグラフ - BeZIP 日本語対応版におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-5171 2012-11-7 14:00 2012-11-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198281 5.9 MEDIUM
Network 		wolfssl
siemens
arubanetworks 		wolfssl
scalance_w1750d_firmware
instant 		wolfSSL prior to version 3.12.2 provides a weak Bleichenbacher oracle when any TLS cipher suite using RSA key exchange is negotiated. An attacker can recover the private key from a vulnerable wolfSSL… CWE-203
 Information Exposure Through Discrepancy 		CVE-2017-13099 2024-11-21 12:10 2017-12-13 Show GitHub Exploit DB Packet Storm
198282 5.9 MEDIUM
Network 		bouncycastle legion-of-the-bouncy-castle-java-crytography-api BouncyCastle TLS prior to version 1.0.3, when configured to use the JCE (Java Cryptography Extension) for cryptographic functions, provides a weak Bleichenbacher oracle when any TLS cipher suite usin… CWE-203
 Information Exposure Through Discrepancy 		CVE-2017-13098 2024-11-21 12:10 2017-12-13 Show GitHub Exploit DB Packet Storm
198283 7.8 HIGH
Local 		qnap qsync A DLL Hijacking vulnerability in QNAP Qsync for Windows (exe) version 4.2.2.0724 and earlier could allow remote attackers to execute arbitrary code on Windows machines. CWE-426
 Untrusted Search Path 		CVE-2017-13070 2024-11-21 12:10 2017-12-12 Show GitHub Exploit DB Packet Storm
198284 7.8 HIGH
Local 		kaspersky embedded_systems_security Kernel pool memory corruption in one of drivers in Kaspersky Embedded Systems Security version 1.2.0.300 leads to local privilege escalation. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-12823 2024-11-21 12:10 2017-12-9 Show GitHub Exploit DB Packet Storm
198285 9.8 CRITICAL
Network 		qnap video_station QNAP has already patched this vulnerability. This security concern allows a remote attacker to run arbitrary commands on the QNAP Video Station 5.1.3 (for QTS 4.3.3), 5.2.0 (for QTS 4.3.4), and earli… CWE-77
Command Injection 		CVE-2017-13071 2024-11-21 12:10 2017-11-23 Show GitHub Exploit DB Packet Storm
198286 9.8 CRITICAL
Network 		siemens sm-2556_firmware An issue was discovered on Siemens SICAM RTUs SM-2556 COM Modules with the firmware variants ENOS00, ERAC00, ETA2, ETLS00, MODi00, and DNPi00. The integrated web server (port 80/tcp) of the affected … CWE-1188
 Insecure Default Initialization of Resource 		CVE-2017-12739 2024-11-21 12:10 2017-11-15 Show GitHub Exploit DB Packet Storm
198287 6.1 MEDIUM
Network 		siemens sm-2556_firmware An issue was discovered on Siemens SICAM RTUs SM-2556 COM Modules with the firmware variants ENOS00, ERAC00, ETA2, ETLS00, MODi00, and DNPi00. The integrated web server (port 80/tcp) of the affected … CWE-79
Cross-site Scripting 		CVE-2017-12738 2024-11-21 12:10 2017-11-15 Show GitHub Exploit DB Packet Storm
198288 5.3 MEDIUM
Network 		siemens sm-2556_firmware An issue was discovered on Siemens SICAM RTUs SM-2556 COM Modules with the firmware variants ENOS00, ERAC00, ETA2, ETLS00, MODi00, and DNPi00. The integrated web server (port 80/tcp) of the affected … CWE-200
Information Exposure 		CVE-2017-12737 2024-11-21 12:10 2017-11-15 Show GitHub Exploit DB Packet Storm
198289 8.8 HIGH
Network 		avaya ip_office_contact_center Buffer overflow in the ViewerCtrlLib.ViewerCtrl ActiveX control in Avaya IP Office Contact Center before 10.1.1 allows remote attackers to cause a denial of service (heap corruption and crash) or exe… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-12969 2024-11-21 12:10 2017-11-10 Show GitHub Exploit DB Packet Storm
198290 6.5 MEDIUM
Network 		matroska mkclean The Node_ValidatePtr function in corec/corec/node/node.c in mkclean 0.8.9 allows remote attackers to cause a denial of service (assert fault) via a crafted mkv file. CWE-476
 NULL Pointer Dereference 		CVE-2017-12803 2024-11-21 12:10 2017-11-10 Show GitHub Exploit DB Packet Storm