Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
195751 6.1 警告
Network 		IBM - IBM Security Key Lifecycle Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-6096 2017-02-21 16:55 2016-06-29 Show GitHub Exploit DB Packet Storm
195752 4.3 警告
Network 		IBM - IBM Security Key Lifecycle Manager における環境などに関する重要な情報を含むエラーメッセージを出力される脆弱性 CWE-200
情報漏えい 		CVE-2016-6094 2017-02-21 16:55 2016-06-29 Show GitHub Exploit DB Packet Storm
195753 6.2 警告
Local 		IBM - IBM Security Key Lifecycle Manager における平文で保存されたユーザの認証情報を読まれる脆弱性 CWE-200
情報漏えい 		CVE-2016-6092 2017-02-21 16:55 2016-06-29 Show GitHub Exploit DB Packet Storm
195754 5.4 警告
Network 		IBM - IBM Connections におけるホストヘッダを挿入される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-0310 2017-02-21 16:43 2016-08-9 Show GitHub Exploit DB Packet Storm
195755 4.3 警告
Network 		IBM - IBM Connections におけるリンクを改ざんされる脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-0308 2017-02-21 16:43 2016-08-9 Show GitHub Exploit DB Packet Storm
195756 4.3 警告
Network 		IBM - IBM Connections における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-0307 2017-02-21 16:43 2016-08-9 Show GitHub Exploit DB Packet Storm
195757 5.4 警告
Network 		IBM - IBM Connections におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-0305 2017-02-21 16:43 2016-08-9 Show GitHub Exploit DB Packet Storm
195758 5.3 警告
Network 		IBM - IBM Security Key Lifecycle Manager における認証されていないユーザに対して重要な情報を公開される脆弱性 CWE-200
情報漏えい 		CVE-2016-6099 2017-02-21 16:37 2016-06-29 Show GitHub Exploit DB Packet Storm
195759 8.1 重要
Network 		IBM - IBM InfoSphere Information Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2016-6059 2017-02-21 16:36 2016-10-28 Show GitHub Exploit DB Packet Storm
195760 5 警告
Network 		IBM - IBM Jazz Foundation における以前にログインしたユーザを継承される脆弱性 CWE-384
セッションの固定化 		CVE-2016-6040 2017-02-21 16:35 2016-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
31 5.5 MEDIUM
Local 		wireshark wireshark BEEP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service New CWE-121
Stack-based Buffer Overflow 		CVE-2026-6538 2026-05-2 03:15 2026-04-30 Show GitHub Exploit DB Packet Storm
32 5.5 MEDIUM
Local 		wireshark wireshark SMB2 protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service New CWE-1325
 Improperly Controlled Sequential Memory Allocation 		CVE-2026-6867 2026-05-2 03:15 2026-04-30 Show GitHub Exploit DB Packet Storm
33 5.5 MEDIUM
Local 		wireshark wireshark WebSocket protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service New CWE-1325
 Improperly Controlled Sequential Memory Allocation 		CVE-2026-6869 2026-05-2 03:15 2026-04-30 Show GitHub Exploit DB Packet Storm
34 5.5 MEDIUM
Local 		wireshark wireshark GSM RP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service New CWE-824
 Access of Uninitialized Pointer 		CVE-2026-6870 2026-05-2 03:11 2026-04-30 Show GitHub Exploit DB Packet Storm
35 7.5 HIGH
Network 		apache neethi Apache Neethi is vulnerable to a Denial of Service attack through algorithmic complexity in policy normalization. Specially crafted WS-Policy documents can trigger an exponential Cartesian cross-prod… New CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-42402 2026-05-2 03:08 2026-05-1 Show GitHub Exploit DB Packet Storm
36 7.5 HIGH
Network 		apache neethi Apache Neethi does not properly detect circular references in policy definitions. When a WS-Policy document contains circular policy references (where Policy A references Policy B which references Po… New CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-42403 2026-05-2 03:08 2026-05-1 Show GitHub Exploit DB Packet Storm
37 7.2 HIGH
Network 		apache neethi Apache Neethi does not impose any restrictions on URIs when manually fetching remote policy references through the PolicyReference API. When an application explicitly calls the API to retrieve a poli… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-42404 2026-05-2 03:06 2026-05-1 Show GitHub Exploit DB Packet Storm
38 9.8 CRITICAL
Network 		apache mina The fix for CVE-2026-41409 was not applied to the 2.1.X and 2.2.X branches. Here was the original issue description: The fix for CVE-2024-52046 in Apache MINA AbstractIoBuffer.getObject() was inc… New CWE-502
 Deserialization of Untrusted Data 		CVE-2026-42778 2026-05-2 02:55 2026-05-1 Show GitHub Exploit DB Packet Storm
39 9.8 CRITICAL
Network 		apache mina The fix for CVE-2026-41635 was not applied to the 2.1.X and 2.2.X branches. Here was the original issue description: Apache MINA's AbstractIoBuffer.resolveClass() contains two branches, on… New CWE-502
 Deserialization of Untrusted Data 		CVE-2026-42779 2026-05-2 02:55 2026-05-1 Show GitHub Exploit DB Packet Storm
40 5.9 MEDIUM
Network 		apache airflow Apache Airflow's SMTP provider `SmtpHook` called Python's `smtplib.SMTP.starttls()` without an SSL context, so no certificate validation was performed on the TLS upgrade. A man-in-the-middle between … New CWE-295
Improper Certificate Validation  		CVE-2026-41016 2026-05-2 02:54 2026-04-30 Show GitHub Exploit DB Packet Storm