Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1011 7.5 重要
Network 		Belkin International N300 firmware U-SpeedのN300 Firmwareにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-36959 2026-05-7 11:29 2026-04-30 Show GitHub Exploit DB Packet Storm
1012 8.8 重要
Network 		Anviz Global Anviz CX7 Firmware
Anviz CX2 Lite Firmware 		Anviz GlobalのAnviz CX2 Lite Firmware等の複数製品におけるダウンロードしたコードの完全性検証不備に関する脆弱性 CWE-494
ダウンロードしたコードの完全性検証不備 		CVE-2026-40066 2026-05-7 11:29 2026-04-17 Show GitHub Exploit DB Packet Storm
1013 8.1 重要
Adjacent 		Anviz Global Crosschex Standard Anviz GlobalのCrosschex Standardにおける通信チャネルの送信元の不適切な検証に関する脆弱性 CWE-940
通信チャネルの送信元の不適切な検証 		CVE-2026-40434 2026-05-7 11:29 2026-04-17 Show GitHub Exploit DB Packet Storm
1014 7.5 重要
Network 		Anviz Global Anviz CX7 Firmware
Anviz CX2 Lite Firmware 		Anviz GlobalのAnviz CX2 Lite Firmware等の複数製品における重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-40461 2026-05-7 11:29 2026-04-17 Show GitHub Exploit DB Packet Storm
1015 5.3 警告
Network 		asrmicro ASR1901 Firmware
ASR1903 Firmware 		asrmicroのASR1901 Firmware等の複数製品におけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-42800 2026-05-7 11:29 2026-04-30 Show GitHub Exploit DB Packet Storm
1016 7.5 重要
Network 		OpenStack Ironic Python Agent OpenStackのIronic Python Agentにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-43003 2026-05-7 11:29 2026-05-1 Show GitHub Exploit DB Packet Storm
1017 5.9 警告
Network 		PerlDancer Dancer::Session::Abstract PerlDancerのDancer::Session::Abstractにおける複数の脆弱性 CWE-338
CWE-340
CVE-2026-5080 2026-05-7 11:29 2026-04-30 Show GitHub Exploit DB Packet Storm
1018 5.5 警告
Adjacent 		NASA Core Flight System (cFS) NASAのCore Flight System (cFS)におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-5475 2026-05-7 11:29 2026-04-3 Show GitHub Exploit DB Packet Storm
1019 4.6 警告
Adjacent 		NASA Core Flight System (cFS) NASAのCore Flight System (cFS)における複数の脆弱性 CWE-189
CWE-190
CVE-2026-5476 2026-05-7 11:29 2026-04-3 Show GitHub Exploit DB Packet Storm
1020 7.8 重要
Local 		IBM IBM Turbonomic Prometurbo agent IBMのIBM Turbonomic Prometurbo agentにおける権限管理に関する脆弱性 CWE-269
CWE-noinfo
CVE-2026-6389 2026-05-7 11:29 2026-04-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346811 - xclusive-software mccs Multi-Computer Control System (MCCS) 1.0 allows remote attackers to cause a denial of service via a malformed UDP packet. NVD-CWE-Other
CVE-2005-3002 2011-03-8 11:25 2005-09-21 Show GitHub Exploit DB Packet Storm
346812 - usermin
webmin 		usermin
webmin 		miniserv.pl in Webmin before 1.230 and Usermin before 1.160, when "full PAM conversations" is enabled, allows remote attackers to bypass authentication by spoofing session IDs via certain metacharact… NVD-CWE-Other
CVE-2005-3042 2011-03-8 11:25 2005-09-22 Show GitHub Exploit DB Packet Storm
346813 - scriptsolutions perldiver Cross-site scripting (XSS) vulnerability in perldiver.pl in PerlDiver 1.x allows remote attackers to inject arbitrary web script or HTML via the query string. NOTE: this issue was originally dispute… NVD-CWE-Other
CVE-2005-3066 2011-03-8 11:25 2005-09-28 Show GitHub Exploit DB Packet Storm
346814 - scriptsolutions perldiver Cross-site scripting (XSS) vulnerability in perldiver.cgi in PerlDiver 2.x allows remote attackers to inject arbitrary web script or HTML via the module parameter. NVD-CWE-Other
CVE-2005-3067 2011-03-8 11:25 2005-09-28 Show GitHub Exploit DB Packet Storm
346815 - qualcomm qpopper poppassd in Qualcomm qpopper 4.0.8 allows local users to modify arbitrary files and gain privileges via the -t (trace file) command line argument. NVD-CWE-Other
CVE-2005-3098 2011-03-8 11:25 2005-09-29 Show GitHub Exploit DB Packet Storm
346816 - william_stearns mason Mason before 1.0.0 does not install the init script after the user uses Mason to configure a firewall, which causes the system to run without a firewall after a reboot. NVD-CWE-Other
CVE-2005-3118 2011-03-8 11:25 2005-10-7 Show GitHub Exploit DB Packet Storm
346817 - gnu gnump3d Directory traversal vulnerability in GNUMP3D before 2.9.6 allows remote attackers to read arbitrary files via crafted sequences such as "/.//..//////././", which is collapsed into "/.././" after ".."… NVD-CWE-Other
CVE-2005-3123 2011-03-8 11:25 2005-10-31 Show GitHub Exploit DB Packet Storm
346818 - acme_labs thttpd syslogtocern in Acme thttpd before 2.23 allows local users to write arbitrary files via a symlink attack on a temporary file. NVD-CWE-Other
CVE-2005-3124 2011-03-8 11:25 2005-11-6 Show GitHub Exploit DB Packet Storm
346819 - uim uim Uim 0.4.x before 0.4.9.1 and 0.5.0 and earlier does not properly handle the LIBUIM_VANILLA environment variable when a suid or sgid application is linked to libuim, such as immodule for Qt, which all… NVD-CWE-Other
CVE-2005-3149 2011-03-8 11:25 2005-10-6 Show GitHub Exploit DB Packet Storm
346820 - bluecoat winproxy The listening daemon in Blue Coat Systems Inc. WinProxy before 6.1a allows remote attackers to cause a denial of service (crash) via a long HTTP request that causes an out-of-bounds read. NVD-CWE-Other
CVE-2005-3187 2011-03-8 11:25 2005-12-31 Show GitHub Exploit DB Packet Storm