Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 2:21 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193291 5.5 警告
Local 		レッドハット
firewalld		 - firewalld の firewalld.py における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2016-5410 2017-05-19 18:17 2016-08-16 Show GitHub Exploit DB Packet Storm
193292 7.8 重要
Local 		Tenable, Inc. - Nessus における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-7850 2017-05-19 18:16 2017-04-11 Show GitHub Exploit DB Packet Storm
193293 5.5 警告
Local 		Tenable, Inc. - Nessus における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-7849 2017-05-19 18:16 2017-04-11 Show GitHub Exploit DB Packet Storm
193294 6.1 警告
Network 		MantisBT Group - MantisBT におけるクロスサイトスクリプティングの脆弱性脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-7897 2017-05-19 18:11 2017-04-19 Show GitHub Exploit DB Packet Storm
193295 7.5 重要
Network 		Nettle project
Canonical
レッドハット		 - Nettle の RSA および DSA 暗号コードにおける秘密鍵を取得される脆弱性 CWE-310
暗号の問題 		CVE-2016-6489 2017-05-19 18:00 2016-06-21 Show GitHub Exploit DB Packet Storm
193296 7.5 重要
Network 		Digium - Asterisk Open Source および Certified Asterisk の chain_sip におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-7551 2017-05-19 17:02 2016-09-9 Show GitHub Exploit DB Packet Storm
193297 5.5 警告
Local 		シマンテック - 複数の Symantec 製品の AntiVirus Decomposer エンジンの RAR ファイルパーサコンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-5309 2017-05-19 17:01 2016-09-19 Show GitHub Exploit DB Packet Storm
193298 5.5 警告
Local 		シマンテック - 複数の Symantec 製品の AntiVirus Decomposer エンジンの RAR ファイルパーサコンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-5310 2017-05-19 17:01 2016-09-19 Show GitHub Exploit DB Packet Storm
193299 7.8 重要
Local 		Artifex Software - Artifex Ghostscript の mark_curve 関数における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2017-7948 2017-05-19 16:57 2017-04-18 Show GitHub Exploit DB Packet Storm
193300 6.1 警告
Network 		トレンドマイクロ - Trend Micro InterScan Messaging Security Virtual Appliance におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-7896 2017-05-19 16:57 2017-03-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1121 9.8 CRITICAL
Network 		synway smg_gateway_management_software Synway SMG Gateway Management Software contains an OS command injection vulnerability in the RADIUS configuration endpoint at /en/9-2radius.php where the radius_address POST parameter is split and in… Update CWE-78
OS Command  		CVE-2025-71284 2026-05-6 03:09 2026-05-1 Show GitHub Exploit DB Packet Storm
1122 8.0 HIGH
Network 		jenkins html_publisher Jenkins HTML Publisher Plugin 427 and earlier does not escape job name and URL in the legacy wrapper file, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with… Update CWE-79
Cross-site Scripting 		CVE-2026-42524 2026-05-6 03:06 2026-04-29 Show GitHub Exploit DB Packet Storm
1123 9.0 CRITICAL
Network 		jenkins github Jenkins GitHub Plugin 1.46.0 and earlier improperly processes the current job URL as part of JavaScript implementing validation of the feature "GitHub hook trigger for GITScm polling", resulting in a… Update CWE-79
Cross-site Scripting 		CVE-2026-42523 2026-05-6 03:06 2026-04-29 Show GitHub Exploit DB Packet Storm
1124 5.9 MEDIUM
Network 		elastic elastic_package_registry Improper Verification of Cryptographic Signature (CWE-347) in Elastic Package Registry could allow an attacker positioned to intercept network traffic, or to otherwise influence the contents served t… Update CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2026-33467 2026-05-6 02:55 2026-04-29 Show GitHub Exploit DB Packet Storm
1125 4.4 MEDIUM
Local 		oracle linux An unprivileged attacker can craft a user-space process with a malicious ELF binary containing an out-of-range sh_link field. When root-level dtrace attaches to -- or instruments -- that process (via… Update CWE-125
Out-of-bounds Read 		CVE-2026-35233 2026-05-6 02:46 2026-05-2 Show GitHub Exploit DB Packet Storm
1126 5.5 MEDIUM
Local 		oracle linux An unprivileged attacker can reliably trigger a crash of the dtrace process with a malicious ELF binary due to an integer Divide-by-Zero in Pbuild_file_symtab() Update CWE-369
 Divide By Zero 		CVE-2026-21996 2026-05-6 02:45 2026-05-2 Show GitHub Exploit DB Packet Storm
1127 7.3 HIGH
Network 		gnu glibc The deprecated functions ns_printrrf, ns_printrr and fp_nquery in the GNU C Library version 2.2 and newer fail to enforce the caller-supplied buffer length, and can result in an out-of-bounds write w… Update CWE-787
 Out-of-bounds Write 		CVE-2026-5435 2026-05-6 02:38 2026-04-28 Show GitHub Exploit DB Packet Storm
1128 7.8 HIGH
Local 		kde kcoreaddons In KDE KCoreAddons before 6.25, KShell::quoteArgs is intended to safely quote arguments so that they can be passed to a shell command. This parsing does not adequately handle metacharacters, leading … Update CWE-150
 Improper Neutralization of Escape, Meta, or Control Sequences 		CVE-2026-41526 2026-05-6 02:25 2026-04-28 Show GitHub Exploit DB Packet Storm
1129 2.6 LOW
Adjacent 		- - A vulnerability was found in chatchat-space Langchain-Chatchat up to 0.3.1.3. The affected element is the function _get_file_id of the file libs/chatchat-server/chatchat/server/api_server/openai_rout… New CWE-310
CWE-330
Cryptographic Issues
 Use of Insufficiently Random Values 		CVE-2026-7847 2026-05-6 02:17 2026-05-6 Show GitHub Exploit DB Packet Storm
1130 5.9 MEDIUM
Network 		- - A flaw was found in Open vSwitch. When Open vSwitch is configured with a conntrack flow using FTP helpers over the userspace datapath, a remote attacker can send a specially crafted FTP stream with a… New CWE-120
Classic Buffer Overflow 		CVE-2026-34956 2026-05-6 02:17 2026-05-6 Show GitHub Exploit DB Packet Storm