Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1821	9.8	緊急 Network	Elasticsearch B.V.	Logstash	Elasticsearch B.V.のLogstashにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-33466	2026-04-23 10:13	2026-04-8	Show	GitHub Exploit DB Packet Storm

1822	4.3	警告 Network	EspoCRM	EspoCRM	EspoCRMにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-33534	2026-04-23 10:13	2026-04-13	Show	GitHub Exploit DB Packet Storm

1823	7.8	重要 Local	Craig J. Bass (craigjbass)	ClearanceKit	Craig J. Bass (craigjbass)のClearanceKitにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-33632	2026-04-23 10:13	2026-03-26	Show	GitHub Exploit DB Packet Storm

1824	5.4	警告 Network	EspoCRM	EspoCRM	EspoCRMにおける複数の脆弱性	CWE-116 CWE-80	CVE-2026-33657	2026-04-23 10:13	2026-04-13	Show	GitHub Exploit DB Packet Storm

1825	3.1	低 Network	EspoCRM	EspoCRM	EspoCRMにおける複数の脆弱性	CWE-367 CWE-918	CVE-2026-33659	2026-04-23 10:12	2026-04-13	Show	GitHub Exploit DB Packet Storm

1826	5.4	警告 Network	EspoCRM	EspoCRM	EspoCRMにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-33740	2026-04-23 10:12	2026-04-13	Show	GitHub Exploit DB Packet Storm

1827	5.3	警告 Network	The Go Project	tiff	The Go Projectのtiffにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2026-33809	2026-04-23 10:12	2026-03-25	Show	GitHub Exploit DB Packet Storm

1828	5.5	警告 Local	jqlang	jq	jqlangのjqにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-33947	2026-04-23 10:12	2026-04-13	Show	GitHub Exploit DB Packet Storm

1829	5.3	警告 Network	jqlang	jq	jqlangのjqにおける複数の脆弱性	CWE-170 CWE-20	CVE-2026-33948	2026-04-23 10:12	2026-04-14	Show	GitHub Exploit DB Packet Storm

1830	4.3	警告 Network	openwebui	open webui	openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-34225	2026-04-23 10:12	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
731	7.5	HIGH Network	prosody	prosody	An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5. A Denial of Service can occur via memory exhaustion caused by XML parsing resource amplification from unauthen…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-43507	2026-05-2 02:09	2026-05-2	Show	GitHub Exploit DB Packet Storm

732	7.5	HIGH Network	wireshark	wireshark	DCP-ETSI protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service	CWE-122 Heap-based Buffer Overflow	CVE-2026-5653	2026-05-2 02:04	2026-04-30	Show	GitHub Exploit DB Packet Storm

733	7.5	HIGH Network	wireshark	wireshark	AMR-NB codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service	CWE-121 Stack-based Buffer Overflow	CVE-2026-5654	2026-05-2 02:02	2026-04-30	Show	GitHub Exploit DB Packet Storm

734	7.5	HIGH Network	wireshark	wireshark	SDP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 allows denial of service	CWE-416 Use After Free	CVE-2026-5655	2026-05-2 01:49	2026-04-30	Show	GitHub Exploit DB Packet Storm

735	7.5	HIGH Network	wireshark	wireshark	iLBC codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service	CWE-415 Double Free	CVE-2026-5657	2026-05-2 01:45	2026-04-30	Show	GitHub Exploit DB Packet Storm

736	7.5	HIGH Network	wireshark	wireshark	MBIM protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-6519	2026-05-2 01:41	2026-04-30	Show	GitHub Exploit DB Packet Storm

737	7.5	HIGH Network	wireshark	wireshark	OpenFlow v6 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-6520	2026-05-2 01:37	2026-04-30	Show	GitHub Exploit DB Packet Storm

738	4.3	MEDIUM Network	-	-	A weakness has been identified in Open5GS up to 2.7.7. Affected is the function ogs_id_get_value of the file /src/amf/nudm-handler.c of the component AMF. This manipulation causes denial of service. …	CWE-404 Improper Resource Shutdown or Release	CVE-2026-7586	2026-05-2 01:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

739	4.3	MEDIUM Network	-	-	A vulnerability was determined in Open5GS up to 2.7.7. The impacted element is the function amf_nudm_sdm_handle_provisioned of the file /src/amf/nudm-handler.c of the component AMF. Executing a manip…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-7585	2026-05-2 01:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

740	7.5	HIGH Network	-	-	Text::Minify::XS versions from 0.3.0 before 0.7.8 for Perl have a heap overflow when processing some malformed UTF-8 characters. The minify functions mishandled some malformed UTF-8 characters, lead…	CWE-122 CWE-176 Heap-based Buffer Overflow Improper Handling of Unicode Encoding	CVE-2026-7040	2026-05-2 01:16	2026-04-27	Show	GitHub Exploit DB Packet Storm