Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228951 5.8 警告 Eduserv - Java 用 Eduserv OpenAthens におけるメッセージを偽造される脆弱性 CWE-287
不適切な認証 		CVE-2012-5353 2012-10-26 15:25 2012-10-9 Show GitHub Exploit DB Packet Storm
228952 4.3 警告 シマンテック - Symantec Messaging Gateway におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0307 2012-10-26 14:37 2012-08-27 Show GitHub Exploit DB Packet Storm
228953 4.6 警告 (複数のベンダ) - 複数の DomainKeys Identified Mail (DKIM) 実装に問題 - - 2012-10-26 12:22 2012-10-25 Show GitHub Exploit DB Packet Storm
228954 4.3 警告 Come on Girls Interface - 東京BBS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4019 2012-10-26 12:00 2012-10-26 Show GitHub Exploit DB Packet Storm
228955 4.3 警告 マイクロソフト - Microsoft Office 2007 の Excel 2007 および Microsoft Excel Viewer におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-5672 2012-10-26 10:55 2012-10-25 Show GitHub Exploit DB Packet Storm
228956 10 危険 Apache Software Foundation - Apache Open For Business Project における脆弱性 CWE-noinfo
情報不足 		CVE-2012-3506 2012-10-26 10:34 2012-10-25 Show GitHub Exploit DB Packet Storm
228957 4.3 警告 Video User Manuals - WordPress 用 White Label CMS プラグインの wlcms-plugin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5388 2012-10-25 15:03 2012-10-24 Show GitHub Exploit DB Packet Storm
228958 6.8 警告 Video User Manuals - WordPress 用 White Label CMS プラグインの wlcms-plugin.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5387 2012-10-25 14:16 2012-10-24 Show GitHub Exploit DB Packet Storm
228959 7.5 危険 TIBCO Software - TIBCO Formvine における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5302 2012-10-25 14:15 2012-10-23 Show GitHub Exploit DB Packet Storm
228960 10 危険 アドビシステムズ - Adobe Shockwave Player におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5273 2012-10-25 11:44 2012-10-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198691 6.3 MEDIUM
Local 		cisco nx-os
unified_computing_system
firepower_extensible_operating_system 		A vulnerability in the CLI of Cisco Firepower Extensible Operating System (FXOS) and NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack. The vuln… CWE-77
Command Injection 		CVE-2017-12329 2024-11-21 12:09 2017-11-30 Show GitHub Exploit DB Packet Storm
198692 5.8 MEDIUM
Network 		cisco ip_phone_8800_series_firmware A vulnerability in Session Initiation Protocol (SIP) call handling in Cisco IP Phone 8800 Series devices could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition b… CWE-20
 Improper Input Validation  		CVE-2017-12328 2024-11-21 12:09 2017-11-30 Show GitHub Exploit DB Packet Storm
198693 5.0 MEDIUM
Network 		cisco webex_meeting_center A vulnerability in Cisco WebEx Meeting Center could allow an authenticated, remote attacker to initiate connections to arbitrary hosts, aka a "URL Redirection Vulnerability." The vulnerability is due… CWE-20
 Improper Input Validation  		CVE-2017-12297 2024-11-21 12:09 2017-11-30 Show GitHub Exploit DB Packet Storm
198694 5.5 MEDIUM
Local 		linux linux_kernel The assoc_array_insert_into_terminal_node function in lib/assoc_array.c in the Linux kernel before 4.13.11 mishandles node splitting, which allows local users to cause a denial of service (NULL point… - CVE-2017-12193 2024-11-21 12:09 2017-11-23 Show GitHub Exploit DB Packet Storm
198695 6.5 MEDIUM
Local 		linux linux_kernel The bio_map_user_iov and bio_unmap_user functions in block/bio.c in the Linux kernel before 4.13.8 do unbalanced refcounting when a SCSI I/O vector has small consecutive buffers belonging to the same… - CVE-2017-12190 2024-11-21 12:09 2017-11-23 Show GitHub Exploit DB Packet Storm
198696 7.8 HIGH
Local 		apache
debian 		openoffice
debian_linux 		A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in ImportOldFormatStyles, allows attackers to craft malicious documents that cause denial of service (memory… CWE-787
 Out-of-bounds Write 		CVE-2017-12608 2024-11-21 12:09 2017-11-21 Show GitHub Exploit DB Packet Storm
198697 7.8 HIGH
Local 		apache
debian 		openoffice
debian_linux 		A vulnerability in OpenOffice's PPT file parser before 4.1.4, and specifically in PPTStyleSheet, allows attackers to craft malicious documents that cause denial of service (memory corruption and appl… CWE-787
 Out-of-bounds Write 		CVE-2017-12607 2024-11-21 12:09 2017-11-21 Show GitHub Exploit DB Packet Storm
198698 8.2 HIGH
Local 		cisco umbrella_insights_virtual_appliance A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier could allow an authenticated, local attacker to log in to an affected virtual appliance with root privileges. The vulne… CWE-798
 Use of Hard-coded Credentials 		CVE-2017-12350 2024-11-21 12:09 2017-11-16 Show GitHub Exploit DB Packet Storm
198699 9.8 CRITICAL
Network 		cisco finesse
hosted_collaboration_solution
emergency_responder
unity_connection
socialminer
mediasense
unified_communications_manager
prime_license_manager
unified_communications_m… 		A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating System software platform could allow an unauthenticated, remote attacker to gain unauthoriz… CWE-287
Improper Authentication 		CVE-2017-12337 2024-11-21 12:09 2017-11-16 Show GitHub Exploit DB Packet Storm
198700 6.1 MEDIUM
Network 		cisco registered_envelope_service Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-based service) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) … CWE-79
Cross-site Scripting 		CVE-2017-12323 2024-11-21 12:09 2017-11-16 Show GitHub Exploit DB Packet Storm