Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194721	7.5	重要 Network	Aura Equipements	-	EasyCom SQL iPlug におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2017-5359	2017-04-14 14:35	2017-02-22	Show	GitHub Exploit DB Packet Storm

194722	9.8	緊急 Network	Aura Equipements	-	EasyCom for PHP の php_Easycom5_3_0.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-5358	2017-04-14 14:35	2017-02-22	Show	GitHub Exploit DB Packet Storm

194723	9.8	緊急 Network	Sawmill	-	Sawmill Enterprise におけるログインアクセス権を取得される脆弱性	CWE-200 情報漏えい	CVE-2017-5496	2017-04-14 14:25	2017-02-18	Show	GitHub Exploit DB Packet Storm

194724	9.1	緊急 Network	GNU Project	-	GNU Binutils の readelf におけるヒープベースのバッファオーバーリードの脆弱性	CWE-119 バッファエラー	CVE-2017-6969	2017-04-14 13:56	2017-02-20	Show	GitHub Exploit DB Packet Storm

194725	7.3	重要 Network	xrdp	-	xrdp における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-6967	2017-04-14 13:56	2017-03-15	Show	GitHub Exploit DB Packet Storm

194726	4.8	警告 Adjacent	アップル	-	Android 用 Apple Music アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2017-2387	2017-04-14 12:40	2017-04-4	Show	GitHub Exploit DB Packet Storm

194727	5.9	警告 Network	GNU Project	-	GNU C Library の fnmatch 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-125 境界外読み取り	CVE-2015-8984	2017-04-14 09:54	2015-02-26	Show	GitHub Exploit DB Packet Storm

194728	8.1	重要 Network	GNU Project	-	GNU C Library の libio/wstrops.c の _IO_wstr_overflow 関数における整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2015-8983	2017-04-14 09:54	2015-02-22	Show	GitHub Exploit DB Packet Storm

194729	9.8	緊急 Network	Chef Software, Inc.	-	Chef Manage のユーザアカウント作成機能における任意のコードを実行される脆弱性	CWE-254 セキュリティ機能	CVE-2017-7174	2017-04-13 17:49	2017-03-18	Show	GitHub Exploit DB Packet Storm

194730	9.8	緊急 Network	ERLANG	-	Erlang/OTP のコンパイルされた正規表現の生成におけるヒープオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-10253	2017-04-13 17:45	2016-06-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1181	7.5	HIGH Network	-	-	When using Google Secrets Manager as a backend for the Spring Cloud Config server a client can craft a request to the config server potentially exposing secrets from unintended GCP projects. Spring C…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-40981	2026-05-7 23:56	2026-05-7	Show	GitHub Exploit DB Packet Storm

1182	9.1	CRITICAL Network	-	-	Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially cra…	CWE-22 Path Traversal	CVE-2026-40982	2026-05-7 23:56	2026-05-7	Show	GitHub Exploit DB Packet Storm

1183	7.2	HIGH Local	-	-	The base directory (`spring.cloud.config.server.git.basedir`) used by the Spring Cloud Config Server to clone Git repositories to is susceptible to time-of-check-time-of-use (TOCTOU) attacks. Spring …	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-41002	2026-05-7 23:56	2026-05-7	Show	GitHub Exploit DB Packet Storm

1184	4.4	MEDIUM Local	-	-	When enabling trace logging in Spring Cloud Config Server sensitive information was placed in plain text in the logs. Spring Cloud Config 3.1.x: affected from 3.1.0 through 3.1.13 (inclusive); upgrad…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2026-41004	2026-05-7 23:56	2026-05-7	Show	GitHub Exploit DB Packet Storm

1185	4.7	MEDIUM Local	-	-	A remote denial-of-service vulnerability exists in the ZTE Cloud PC client uSmartview, which may lead to memory corruption and remote denial of service.	CWE-134 Use of Externally-Controlled Format String	CVE-2026-44407	2026-05-7 23:56	2026-05-7	Show	GitHub Exploit DB Packet Storm

1186	-		-	-	Vulnerability on the external sharing feature in Cryptobox allows an attacker knowing a sharing link URL to retrieve information from the server allowing an offline brute-force attack of the access c…	CWE-280 Improper Handling of Insufficient Permissions or Privileges	CVE-2026-6805	2026-05-7 23:56	2026-05-7	Show	GitHub Exploit DB Packet Storm

1187	6.8	MEDIUM Network	-	-	Admidio is an open-source user management solution. Prior to version 5.0.9, the OIDC token introspection endpoint (/modules/sso/index.php/oidc/introspect) always returns {"active": true} for every re…	CWE-287 Improper Authentication	CVE-2026-41671	2026-05-7 23:54	2026-05-7	Show	GitHub Exploit DB Packet Storm

1188	-		-	-	A hidden console command is vulnerable to command injection flaw when control characters are passed to its second argument. A third party researcher Eugene Lim had discovered vulnerability in the w…	CWE-88 Argument Injection	CVE-2026-7865	2026-05-7 23:53	2026-05-6	Show	GitHub Exploit DB Packet Storm

1189	8.0	HIGH Network	-	-	A low privileged remote attacker can gain the root password due to improper removal of sensitive information before storage or transfer.	CWE-212 Improper Removal of Sensitive Information Before Storage or Transfer	CVE-2024-43384	2026-05-7 23:53	2026-05-7	Show	GitHub Exploit DB Packet Storm

1190	-		-	-	A TCP client can perform a TLS handshake and present the server name extension with a server name that is accepted by a server wildcard name, e.g. if the server is configured with a certificate accep…	-	CVE-2026-6860	2026-05-7 23:52	2026-05-6	Show	GitHub Exploit DB Packet Storm