Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
191941 9.8 緊急
Network 		トレンドマイクロ - Trend Micro Threat Discovery Appliance における認証を回避される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-8584 2017-06-2 11:23 2016-10-10 Show GitHub Exploit DB Packet Storm
191942 8.8 重要
Adjacent 		Google - BlackBerry スマートフォンで使用される Android 用 Broadcom Wi-Fi ドライバにおけるカーネルのコンテキスト内で任意のコードを実行される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-2433 2017-06-2 10:40 2016-05-2 Show GitHub Exploit DB Packet Storm
191943 7.5 重要
Network 		Xstream - XStream における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-7957 2017-06-2 10:39 2017-04-19 Show GitHub Exploit DB Packet Storm
191944 7.8 重要
Local 		NVIDIA - 複数の NVIDIA 製品の nvhost_job.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-6917 2017-06-2 10:39 2016-12-9 Show GitHub Exploit DB Packet Storm
191945 7.8 重要
Local 		NVIDIA - 複数の NVIDIA 製品の nvhost_job.c における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-6916 2017-06-2 10:39 2016-12-9 Show GitHub Exploit DB Packet Storm
191946 7.8 重要
Local 		NVIDIA - 複数の NVIDIA 製品の nvhost_job.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-6915 2017-06-2 10:39 2016-12-9 Show GitHub Exploit DB Packet Storm
191947 8.8 重要
Network 		Roundcube.net - Roundcube Webmail における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-8114 2017-06-2 10:35 2017-04-28 Show GitHub Exploit DB Packet Storm
191948 8.8 重要
Network 		ImageWorsener project - ImageWorsener の libimageworsener.a におけるデータ処理に関する脆弱性 CWE-19
データ処理 		CVE-2017-8326 2017-06-2 10:21 2017-04-22 Show GitHub Exploit DB Packet Storm
191949 7.8 重要
Local 		rzip project - rzip の stream.c の read_buf 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2017-8364 2017-06-2 10:15 2017-04-29 Show GitHub Exploit DB Packet Storm
191950 9.8 緊急
Network 		Ettercap Project - Ettercap の ec_strings.c の strescape 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2017-8366 2017-06-2 10:08 2017-04-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
111 6.5 MEDIUM
Network 		- - OpenClaw versions 2026.4.5 before 2026.4.10 contain a privilege escalation vulnerability allowing write-scoped operators to modify persistent memory dreaming settings. Attackers with write-scoped gat… New CWE-862
 Missing Authorization 		CVE-2026-43568 2026-05-5 21:16 2026-05-5 Show GitHub Exploit DB Packet Storm
112 6.5 MEDIUM
Network 		- - OpenClaw before 2026.4.10 contains a path traversal vulnerability in the screen_record tool's outPath parameter that bypasses workspace-only filesystem guards. Attackers can exploit this by specifyin… New CWE-862
 Missing Authorization 		CVE-2026-43567 2026-05-5 21:16 2026-05-5 Show GitHub Exploit DB Packet Storm
113 9.1 CRITICAL
Network 		- - OpenClaw versions 2026.4.7 before 2026.4.14 contain a privilege escalation vulnerability where heartbeat owner downgrade logic skips webhook wake events carrying untrusted content. Attackers can expl… New CWE-184
 Incomplete Blacklist 		CVE-2026-43566 2026-05-5 21:16 2026-05-5 Show GitHub Exploit DB Packet Storm
114 6.8 MEDIUM
Network 		- - OpenClaw before 2026.4.14 contains an authorization context reuse vulnerability in collect-mode queue batches that allows messages from different senders to inherit the final sender's authorization c… New CWE-266
 Incorrect Privilege Assignment 		CVE-2026-43535 2026-05-5 21:16 2026-05-5 Show GitHub Exploit DB Packet Storm
115 9.1 CRITICAL
Network 		- - OpenClaw before 2026.4.10 contains an input validation vulnerability that allows external hook metadata to be enqueued as trusted system events. Attackers can supply malicious hook names to escalate … New CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2026-43534 2026-05-5 21:16 2026-05-5 Show GitHub Exploit DB Packet Storm
116 8.6 HIGH
Network 		- - OpenClaw before 2026.4.10 contains an arbitrary file read vulnerability in QQBot media tags that allows attackers to reference host-local paths outside the intended media storage boundary. Attackers … New CWE-23
 Relative Path Traversal 		CVE-2026-43533 2026-05-5 21:16 2026-05-5 Show GitHub Exploit DB Packet Storm
117 7.7 HIGH
Network 		- - OpenClaw versions 2026.4.7 before 2026.4.10 fail to normalize Discord event cover image parameters in sandbox media processing. Attackers can bypass media normalization to inject host-local media ref… New CWE-184
 Incomplete Blacklist 		CVE-2026-43532 2026-05-5 21:16 2026-05-5 Show GitHub Exploit DB Packet Storm
118 7.3 HIGH
Local 		- - OpenClaw before 2026.4.9 contains an environment variable injection vulnerability allowing malicious workspace .env files to set runtime-control variables. Attackers can inject variables affecting up… New CWE-15
 External Control of System or Configuration Setting 		CVE-2026-43531 2026-05-5 21:16 2026-05-5 Show GitHub Exploit DB Packet Storm
119 8.8 HIGH
Network 		- - OpenClaw versions 2026.2.23 before 2026.4.12 contain a weakened exec approval binding vulnerability in busybox and toybox applet execution that allows attackers to obscure which applet would actually… New CWE-863
 Incorrect Authorization 		CVE-2026-43530 2026-05-5 21:16 2026-05-5 Show GitHub Exploit DB Packet Storm
120 2.5 LOW
Local 		- - OpenClaw before 2026.4.10 contains a time-of-check-time-of-use vulnerability in the validateScriptFileForShellBleed function that allows local attackers to bypass workspace boundary checks. An attack… New CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2026-43529 2026-05-5 21:16 2026-05-5 Show GitHub Exploit DB Packet Storm