Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1091 5.5 警告
Local 		Weblate wlc Weblateのwlcにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-22250 2026-01-29 16:02 2026-01-12 Show GitHub Exploit DB Packet Storm
1092 5.5 警告
Local 		Weblate wlc Weblateのwlcにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-22251 2026-01-29 16:02 2026-01-12 Show GitHub Exploit DB Packet Storm
1093 9.8 緊急
Network 		デル powerscale onefs デルのPowerScale OneFSにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-22278 2026-01-29 16:02 2026-01-22 Show GitHub Exploit DB Packet Storm
1094 7.5 重要
Network 		デル powerscale onefs デルのPowerScale OneFSにおける不十分なロギングに関する脆弱性 CWE-778
不十分なロギング 		CVE-2026-22279 2026-01-29 16:02 2026-01-22 Show GitHub Exploit DB Packet Storm
1095 5.5 警告
Local 		デル powerscale onefs デルのPowerScale OneFSにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2026-22280 2026-01-29 16:02 2026-01-22 Show GitHub Exploit DB Packet Storm
1096 4.8 警告
Adjacent 		デル powerscale onefs デルのPowerScale OneFSにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-22281 2026-01-29 16:01 2026-01-22 Show GitHub Exploit DB Packet Storm
1097 7.5 重要
Network 		vLLM vLLM vLLMにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-22773 2026-01-29 16:01 2026-01-10 Show GitHub Exploit DB Packet Storm
1098 8.8 重要
Network 		Easy!Appointments project Easy!Appointments Easy!Appointmentsにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-23622 2026-01-29 16:01 2026-01-15 Show GitHub Exploit DB Packet Storm
1099 3.7
Network 		Apache Software Foundation Karaf Decanter Apache Software FoundationのKaraf Decanterにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-24656 2026-01-29 16:01 2026-01-26 Show GitHub Exploit DB Packet Storm
1100 9.9 緊急
Network 		Apache Software Foundation Apache Continuum Apache Software FoundationのApache Continuumにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2016-15057 2026-01-29 16:01 2026-01-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
304351 - zinf
debian 		zinf
debian_linux 		Buffer overflow in Zinf 2.2.1 on Windows, and other older versions for Linux, allows remote attackers or local users to execute arbitrary code via certain values in a .pls file. NVD-CWE-Other
CVE-2004-0964 2017-07-11 10:30 2005-02-9 Show GitHub Exploit DB Packet Storm
304352 - gnu
ubuntu 		gettext
ubuntu_linux 		The (1) autopoint and (2) gettextize scripts in the GNU gettext package 1.14 and later versions, as used in Trustix Secure Linux 1.5 through 2.1 and other operating systems, allows local users to ove… NVD-CWE-Other
CVE-2004-0966 2017-07-11 10:30 2005-02-9 Show GitHub Exploit DB Packet Storm
304353 - gnu
gentoo
ubuntu 		groff
linux
ubuntu_linux 		The groffer script in the Groff package 1.18 and later versions, as used in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a sym… NVD-CWE-Other
CVE-2004-0969 2017-07-11 10:30 2005-02-9 Show GitHub Exploit DB Packet Storm
304354 - gnu gzip The (1) gzexe, (2) zdiff, and (3) znew scripts in the gzip package, as used by other packages such as ncompress, allows local users to overwrite files via a symlink attack on temporary files. NOTE: … NVD-CWE-Other
CVE-2004-0970 2017-07-11 10:30 2005-02-9 Show GitHub Exploit DB Packet Storm
304355 - netatalk
mandrakesoft
redhat 		open_source_apple_file_share_protocol_suite
mandrake_linux
mandrake_linux_corporate_server
fedora_core 		The netatalk package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files. NVD-CWE-Other
CVE-2004-0974 2017-07-11 10:30 2005-02-9 Show GitHub Exploit DB Packet Storm
304356 - angus_mackay
debian
gentoo 		ez-ipupdate
debian_linux
linux 		Format string vulnerability in ez-ipupdate.c for ez-ipupdate 3.0.10 through 3.0.11b8, when running in daemon mode with certain service types in use, allows remote servers to execute arbitrary code. NVD-CWE-Other
CVE-2004-0980 2017-07-11 10:30 2005-02-9 Show GitHub Exploit DB Packet Storm
304357 - mpg123 mpg123 Buffer overflow in the getauthfromURL function in httpget.c in mpg123 pre0.59s and mpg123 0.59r could allow remote attackers or local users to execute arbitrary code via an mp3 file that contains a l… NVD-CWE-Other
CVE-2004-0982 2017-07-11 10:30 2005-02-9 Show GitHub Exploit DB Packet Storm
304358 - microsoft ie Internet Explorer 6.x on Windows XP SP2 allows remote attackers to execute arbitrary code, as demonstrated using a document with a draggable file type such as .xml, .doc, .py, .cdf, .css, .pdf, or .p… NVD-CWE-Other
CVE-2004-0985 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
304359 - suse
debian
linux
redhat 		suse_iptables
debian_linux
linux_kernel
fedora_core 		Iptables before 1.2.11, under certain conditions, does not properly load the required modules at system startup, which causes the firewall rules to fail to load and protect the system from remote att… NVD-CWE-Other
CVE-2004-0986 2017-07-11 10:30 2005-03-1 Show GitHub Exploit DB Packet Storm
304360 - proxytunnel proxytunnel Format string vulnerability in the -a option (daemon mode) in Proxytunnel before 1.2.3 allows remote attackers to execute arbitrary code via format string specifiers in an invalid proxy answer. NVD-CWE-Other
CVE-2004-0992 2017-07-11 10:30 2005-03-1 Show GitHub Exploit DB Packet Storm