Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
191821	7.5	重要 Network	シスコシステムズ	-	Cisco WebEx Meetings Server おける予定された顧客会議にアクセスできるような情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2017-6651	2017-06-16 17:35	2017-05-10	Show	GitHub Exploit DB Packet Storm

191822	9.8	緊急 Network	HooToo Inc.	-	HooToo Trip Mate 6 ファームウェアの vshttpd におけるスタックのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-9026	2017-06-16 17:09	2017-05-17	Show	GitHub Exploit DB Packet Storm

191823	6.5	警告 Network	HooToo Inc.	-	HooToo Trip Mate 6 ファームウェアの vshttpd におけるヒープのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-9025	2017-06-16 17:08	2017-05-17	Show	GitHub Exploit DB Packet Storm

191824	9.8	緊急 Network	libdwarf project	-	libdwarf における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2017-9055	2017-06-16 17:07	2017-03-21	Show	GitHub Exploit DB Packet Storm

191825	9.8	緊急 Network	libdwarf project	-	libdwarf における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2017-9054	2017-06-16 17:07	2017-03-21	Show	GitHub Exploit DB Packet Storm

191826	9.8	緊急 Network	libdwarf project	-	libdwarf における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2017-9053	2017-06-16 17:07	2017-03-21	Show	GitHub Exploit DB Packet Storm

191827	9.8	緊急 Network	libdwarf project	-	libdwarf におけるバッファエラーの脆弱性	CWE-119 CWE-125	CVE-2017-9052	2017-06-16 17:07	2017-03-21	Show	GitHub Exploit DB Packet Storm

191828	7.5	重要 Adjacent	シスコシステムズ	-	Cisco Lightweight アクセスポイントまたは Mobility Express イメージを実行する Aironet アクセスポイントにおける root 権限で任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2017-3873	2017-06-16 17:02	2017-05-3	Show	GitHub Exploit DB Packet Storm

191829	7.5	重要 Network	シスコシステムズ	-	Cisco TelePresence IX5000 シリーズの Web フレームワークにおける影響を受けるデバイス上の任意のファイルにアクセスされる脆弱性	CWE-20 CWE-22	CVE-2017-6652	2017-06-16 16:57	2017-05-17	Show	GitHub Exploit DB Packet Storm

191830	7.8	重要 Local	シスコシステムズ	-	アプライアンス用 Cisco Policy Suite ソフトウェア配布の一部としてインストールされたスクリプトファイルにおける特権レベルを root に昇格される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-6623	2017-06-16 16:57	2017-05-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
401	6.3	MEDIUM Local	-	-	A flaw was found in Keylime. An attacker with root access on an enrolled monitored machine, where the Keylime agent runs, can exploit a vulnerability in the Keylime verifier. The verifier uses a hard… New	CWE-1241 Use of Predictable Algorithm in Random Number Generator	CVE-2026-6420	2026-05-6 20:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

402	3.1	LOW Network	-	-	HCL DFXAnalytics is affected by an Insecure Security Header Configuration vulnerability where the application utilizes the outdated X-XSS-Protection header, which could allow an attacker to exploit b… New	CWE-80 Basic XSS	CVE-2025-59854	2026-05-6 20:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

403	3.1	LOW Network	-	-	HCL DFXAnalytics is affected by an Improper Error Handling vulnerability where the application exposes detailed stack traces in responses, which could allow an attacker to gain insights into the appl… New	CWE-209 Information Exposure Through an Error Message	CVE-2025-59853	2026-05-6 20:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

404	3.7	LOW Network	-	-	HCL DFXAnalytics is affected by an Insufficient Transport Layer Protection vulnerability where data is transmitted over the network without encryption, which could allow an attacker to compromise t… New	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2025-59852	2026-05-6 20:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

405	3.7	LOW Network	-	-	HCL DFXAnalytics is affected by a Using Components with Known Vulnerabilities flaw where the application utilizes unpatched libraries or sub-components, which could allow an attacker to identify and … New	-	CVE-2025-59851	2026-05-6 20:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

406	5.3	MEDIUM Network	-	-	HCL DFXAnalytics is affected by an Insecure Security Header configuration vulnerability where the Content-Security-Policy does not define strict directives for object-src and base-uri, which could al… New	CWE-358 Improperly Implemented Security Check for Standard	CVE-2025-31970	2026-05-6 20:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

407	5.2	MEDIUM Local	-	-	There is a local privilege escalation vulnerability in the ZTE PROCESS Guard service of the cloud computer client, which may allow local arbitrary code execution, privilege escalation and path traver… New	CWE-269 Improper Privilege Management	CVE-2026-40001	2026-05-6 19:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

408	8.8	HIGH Network	-	-	A remote code execution vulnerability exists in Notification Settings on GeoVision GV-ASWeb 6.2.0. An authenticated user with System Setting permissions can execute arbitrary commands on the server b… New	CWE-94 Code Injection	CVE-2026-7841	2026-05-6 17:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

409	-		-	-	The Item history widget (in Zabbix 7.0+) or the Plain text widget (in Zabbix 6.0) can execute injected JavaScript when HTML display is enabled. This can allow an attacker to perform unauthorized acti… New	CWE-79 Cross-site Scripting	CVE-2026-23928	2026-05-6 17:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

410	-		-	-	A user able to connect to Agent 2 can inject an Oracle TNS connection string via the 'service' parameter. This can lead to Agent 2 connecting to an attacker-controlled server and leaking Oracle datab… New	CWE-522 Insufficiently Protected Credentials	CVE-2026-23927	2026-05-6 17:16	2026-05-6	Show	GitHub Exploit DB Packet Storm