Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1731 7.5 重要
Network 		uuidjs uuid uuidjsのuuidにおける複数の脆弱性 CWE-787
CWE-823
CVE-2026-41907 2026-05-12 10:19 2026-04-24 Show GitHub Exploit DB Packet Storm
1732 7.5 重要
Network 		Amazon.com, Inc. Bedrock Agentcore Starter Toolkit Amazon.com, Inc.のBedrock Agentcore Starter Toolkitにおける複数の脆弱性 CWE-283
CWE-340
CVE-2026-4269 2026-05-12 10:19 2026-03-16 Show GitHub Exploit DB Packet Storm
1733 7.5 重要
Network 		VEGA VEGAPULS 6X Firmware VEGAのVEGAPULS 6X Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-3323 2026-05-12 10:19 2026-04-28 Show GitHub Exploit DB Packet Storm
1734 3.3
Local 		ちとらソフト Lhaz+
Lhaz 		LhazおよびLhaz+におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41530 2026-05-11 17:15 2026-05-11 Show GitHub Exploit DB Packet Storm
1735 - - Apache Software Foundation Apache HTTP Server Apache HTTP Server 2.4における複数の脆弱性に対するアップデート(2026年5月) - CVE-2026-23918
CVE-2026-24072
CVE-2026-28780
CVE-2026-29168
CVE-2026-29169
CVE-2026-33006
CVE-2026-33007
CVE-2026-33523
CVE-2026-33857
CVE-2026-34032
CVE-2026-34059 		2026-05-11 16:29 2026-05-8 Show GitHub Exploit DB Packet Storm
1736 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年05月07日) - - 2026-05-11 16:29 2026-05-8 Show GitHub Exploit DB Packet Storm
1737 7.2 重要
Network 		株式会社GROWI GROWI GROWIにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41951 2026-05-11 15:29 2026-05-11 Show GitHub Exploit DB Packet Storm
1738 7.4 重要
Network 		株式会社EPG iOSアプリ「くら寿司 公式アプリ」
Androidアプリ「くら寿司 公式アプリ」 		スマートフォンアプリ「くら寿司 公式アプリ」における証明書検証不備の脆弱性 CWE-Other
その他 		CVE-2026-41872 2026-05-11 12:52 2026-05-11 Show GitHub Exploit DB Packet Storm
1739 3.3
Local 		X.Org Foundation libxpm libXpmにおける境界外読み取りの脆弱性 CWE-Other
その他 		CVE-2026-4367 2026-05-11 12:18 2026-05-11 Show GitHub Exploit DB Packet Storm
1740 7.3 重要
Network 		yeti-platform yeti yeti-platformのyetiにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2024-46507 2026-05-11 11:13 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345951 - frees_wan
openswan
strongswan 		frees_wan
super_frees_wan
openswan
strongswan 		FreeS/WAN 1.x and 2.x, and other related products including superfreeswan 1.x, openswan 1.x before 1.0.6, openswan 2.x before 2.1.4, and strongSwan before 2.1.3, allows remote attackers to authentica… NVD-CWE-Other
CVE-2004-0590 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
345952 - inter7 sqwebmail Cross-site scripting (XSS) vulnerability in the print_header_uc function for SqWebMail 4.0.4 and earlier, and possibly 3.x, allows remote attackers to inject arbitrary web script or HRML via (1) e-ma… NVD-CWE-Other
CVE-2004-0591 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
345953 - inter7 sqwebmail This vulnerability is addressed in the following product release: Inter7, SqWebMail, 4.0.5 NVD-CWE-Other
CVE-2004-0591 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
345954 - suse suse_linux The tcp_find_option function of the netfilter subsystem for IPv6 in the SUSE Linux 2.6.5 kernel with USAGI patches, when using iptables and TCP options rules, allows remote attackers to cause a denia… NVD-CWE-Other
CVE-2004-0592 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
345955 - sygate_technologies enforcer
secure_enterprise 		Sygate Enforcer 3.5MR1 and earlier passes broadcast traffic before authentication, which could allow remote attackers to bypass filtering rules. NVD-CWE-Other
CVE-2004-0593 2017-07-11 10:30 2004-09-28 Show GitHub Exploit DB Packet Storm
345956 - distcc distcc distcc before 2.16, when running on 64-bit platforms, does not interpret IP-based access control rules correctly, which could allow remote attackers to bypass intended restrictions. NVD-CWE-Other
CVE-2004-0601 2017-07-11 10:30 2004-12-23 Show GitHub Exploit DB Packet Storm
345957 - freebsd freebsd The binary compatibility mode for FreeBSD 4.x and 5.x does not properly handle certain Linux system calls, which could allow local users to access kernel memory to gain privileges or cause a system p… NVD-CWE-Other
CVE-2004-0602 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
345958 - gnu gzip gzexe in gzip 1.3.3 and earlier will execute an argument when the creation of a temp file fails instead of exiting the program, which could allow remote attackers or local users to execute arbitrary … NVD-CWE-Other
CVE-2004-0603 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
345959 - gift-fasttrack
gentoo 		gift-fasttrack
linux 		The HTTP client and server in giFT-FastTrack 0.8.6 and earlier allows remote attackers to cause a denial of service (crash), possibly via an empty search query, which triggers a NULL dereference. NVD-CWE-Other
CVE-2004-0604 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm
345960 - ircd-hybrid
ircd-ratbox 		ircd-hybrid
ircd-ratbox 		Non-registered IRC users using (1) ircd-hybrid 7.0.1 and earlier, (2) ircd-ratbox 1.5.1 and earlier, or (3) ircd-ratbox 2.0rc6 and earlier do not have a rate-limit imposed, which could allow remote a… CWE-16
Configuration 		CVE-2004-0605 2017-07-11 10:30 2004-12-6 Show GitHub Exploit DB Packet Storm