Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193271	9.8	緊急 Network	BusyBox	-	BusyBox の DHCP クライアントにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-2148	2017-03-3 17:20	2016-02-26	Show	GitHub Exploit DB Packet Storm

193272	7.5	重要 Network	BusyBox	-	BusyBox の DHCP クライアントにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2016-2147	2017-03-3 17:20	2016-03-10	Show	GitHub Exploit DB Packet Storm

193273	6.1	警告 Network	squidguard	-	squidGuard の squidGuard.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-8936	2017-03-3 17:16	2015-02-1	Show	GitHub Exploit DB Packet Storm

193274	5.3	警告 Network	SimpleSAMLphp	-	SimpleSAMLphp の sanitycheck モジュールにおけるシステムの PHP バージョンを取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3124	2017-03-3 17:10	2016-03-1	Show	GitHub Exploit DB Packet Storm

193275	8.8	重要 Network	ATutor	-	ATutor の install_modules.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2016-2539	2017-03-3 17:05	2016-03-6	Show	GitHub Exploit DB Packet Storm

193276	5.9	警告 Network	Debian Canonical Exim Development	-	Exim における DKIM 署名の秘密鍵を取得される脆弱性	CWE-320 鍵管理のエラー	CVE-2016-9963	2017-03-3 16:59	2016-12-15	Show	GitHub Exploit DB Packet Storm

193277	7.5	重要 Network	dhcpcd project	-	dhcpcd におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-1504	2017-03-3 16:58	2016-01-7	Show	GitHub Exploit DB Packet Storm

193278	6.1	警告 Network	GOsa project	-	GOsa の html/index.php の displayLogin 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9760	2017-03-3 16:46	2014-06-12	Show	GitHub Exploit DB Packet Storm

193279	7.8	重要 Local	IBM	-	IBM BigFix Platform における任意のファイルをアップロードされる脆弱性	CWE-284 不適切なアクセス制御	CVE-2016-0214	2017-03-3 16:42	2016-11-4	Show	GitHub Exploit DB Packet Storm

193280	5.3	警告 Network	IBM	-	IBM Sterling B2B Integrator Standard Edition における HTTP レスポンスの重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-0210	2017-03-3 16:27	2016-04-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
371	6.5	MEDIUM Network	-	-	IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for Linux, UNIX and Windows (includes Db2 Connect Server) could allow an authenticated user to cause a denial of service due to improper neutr… New	CWE-1284 Improper Validation of Specified Quantity in Input	CVE-2026-1352	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

372	4.8	MEDIUM Network	-	-	IBM Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2, 4.2.1, 5.0, and 5.1 New	CWE-269 Improper Privilege Management	CVE-2026-1726	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

373	9.8	CRITICAL Network	-	-	In Rocket.Chat <8.3.0, <8.2.1, <8.1.2, <8.0.3, <7.13.5, <7.12.6, <7.11.6, and <7.10.9, a NoSQL injection vulnerability can lead to account takeover of the first user with a generated token when an OA… New	CWE-89 SQL Injection	CVE-2026-29198	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

374	7.8	HIGH Local	-	-	The installers of LiveOn Meet Client for Windows (Downloader5Installer.exe and Downloader5InstallerForAdmin.exe) and the installers of Canon Network Camera Plugin (CanonNWCamPlugin.exe and CanonNWCam… New	CWE-427 Uncontrolled Search Path Element	CVE-2026-32679	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

375	7.5	HIGH Network	-	-	IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.4 IBM WebSphere Application Server Liberty is vulnerable to identity spoofing under limited conditions when an application is deploy… New	CWE-269 Improper Privilege Management	CVE-2026-3621	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

376	7.5	HIGH Network	-	-	A path Traversal vulnerability exists in Ziostation2 v2.9.8.7 and earlier. A remote unauthenticated attacker may get sensitive information on the operating system. New	CWE-22 Path Traversal	CVE-2026-40062	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

377	-		-	-	Rclone is a command-line program to sync files and directories to and from different cloud storage providers. The RC endpoint `options/set` is exposed without `AuthRequired: true`, but it can mutate … New	CWE-306 Missing Authentication for Critical Function	CVE-2026-41176	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

378	-		-	-	Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Starting in version 1.48.0 and prior to version 1.73.5, the RC endpoint `operations/fsinf… New	CWE-78 CWE-306 OS Command Missing Authentication for Critical Function	CVE-2026-41179	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

379	4.9	MEDIUM Network	-	-	IBM Guardium Data Protection 12.1 could allow an administrative user to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../… New	CWE-22 Path Traversal	CVE-2026-4917	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

380	5.5	MEDIUM Network	-	-	IBM Guardium Data Protection 12.1 is vulnerable to stored cross-site scripting. This vulnerability allows an administrative user to embed arbitrary JavaScript code in the Web UI thus altering the int… New	CWE-79 Cross-site Scripting	CVE-2026-4918	2026-04-24 23:50	2026-04-23	Show	GitHub Exploit DB Packet Storm