Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
197981	6.5	警告 Network	マイクロソフト	-	複数の Microsoft Windows 製品のローカルセキュリティ機関サブシステムサービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-7237	2016-11-15 10:34	2016-11-8	Show	GitHub Exploit DB Packet Storm

197982	7.8	重要 Local	マイクロソフト	-	複数の Microsoft Windows 製品の Microsoft ビデオコントロールにおける任意のコードを実行される脆弱性	CWE-Other その他	CVE-2016-7248	2016-11-15 10:13	2016-11-8	Show	GitHub Exploit DB Packet Storm

197983	7.8	重要 Local	マイクロソフト	-	複数の Microsoft Windows 製品における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2016-7212	2016-11-15 10:13	2016-11-8	Show	GitHub Exploit DB Packet Storm

197984	4.7	警告 Local	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルモードドライバの Bowser.sys における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-7218	2016-11-15 10:01	2016-11-8	Show	GitHub Exploit DB Packet Storm

197985	5.5	警告 Local	Fabrice Bellard Canonical オラクル	-	QEMU の hw/virtio/virtio.c の virtqueue_pop 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-5403	2016-11-14 17:56	2016-07-20	Show	GitHub Exploit DB Packet Storm

197986	8.6	重要 Network	ISC, Inc. 日本電気 SUSE	-	ISC BIND の named におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-1286	2016-11-14 17:56	2016-03-9	Show	GitHub Exploit DB Packet Storm

197987	6.8	警告 Network	ISC, Inc. 日本電気 SUSE	-	ISC BIND の named におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-1285	2016-11-14 17:56	2016-03-9	Show	GitHub Exploit DB Packet Storm

197988	10	危険	アップル Debian Canonical	-	libxml2 の xmlNextChar 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-1762	2016-11-14 17:56	2016-03-21	Show	GitHub Exploit DB Packet Storm

197989	7.5	重要 Network	OpenSSL Project オラクル	-	OpenSSL における整数オーバーフローの脆弱性	CWE-Other その他	CVE-2016-0797	2016-11-14 17:56	2016-03-1	Show	GitHub Exploit DB Packet Storm

197990	5.9	警告 Network	日立 OpenSSL Project ヒューレット・パッカード・エンタープライズオラクル	-	SSLv2 の暗号通信を解読可能な脆弱性 (DROWN 攻撃)	CWE-200 CWE-310	CVE-2016-0800	2016-11-14 17:56	2016-03-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
241	-	-	-	WDR201A WiFi Extender (HW V2.1, FW LFMZX28040922V1.02) contains a stack-based buffer overflow vulnerability in the firewall.cgi and makeRequest.cgi binaries that allows unauthenticated attackers to o… New	CWE-121 Stack-based Buffer Overflow	CVE-2026-41927	2026-05-5 05:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

242	-	-	-	WDR201A WiFi Extender (HW V2.1, FW LFMZX28040922V1.02) contains an OS command injection vulnerability in the firewall.cgi binary across five request handlers that apply insufficient input validation.… New	CWE-78 OS Command	CVE-2026-41926	2026-05-5 05:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

243	-	-	-	WDR201A WiFi Extender (HW V2.1, FW LFMZX28040922V1.02) contains an OS command injection vulnerability in the adm.cgi binary's reboot_time function that allows unauthenticated remote attackers to exec… New	CWE-78 OS Command	CVE-2026-41925	2026-05-5 05:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

244	-	-	-	WDR201A WiFi Extender (HW V2.1, FW LFMZX28040922V1.02) contains an OS command injection vulnerability in the makeRequest.cgi binary that allows unauthenticated remote attackers to execute arbitrary s… New	CWE-78 OS Command	CVE-2026-41924	2026-05-5 05:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

245	-	-	-	WDR201A WiFi Extender (HW V2.1, FW LFMZX28040922V1.02) contains an OS command injection vulnerability in the internet.cgi binary that allows unauthenticated remote attackers to execute arbitrary shel… New	CWE-78 OS Command	CVE-2026-41923	2026-05-5 05:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

246	-	-	-	WDR201A WiFi Extender (HW V2.1, FW LFMZX28040922V1.02) contains an OS command injection vulnerability in the wireless.cgi binary that allow unauthenticated remote attackers to execute arbitrary shell… New	CWE-78 OS Command	CVE-2026-41922	2026-05-5 05:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

247	-	-	-	Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2026-6074. Reason: This record is a reservation duplicate of CVE-2026-6074. Notes: All CVE users should reference CVE-2026-6074 instead of… New	-	CVE-2026-34882	2026-05-5 05:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

248	-	-	-	n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the fix for GHSA-f3f2-mcxc-pwjx did not cover the Snowflake node or the legacy MySQL v1 node. Both … New	CWE-89 SQL Injection	CVE-2026-42237	2026-05-5 04:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

249	-	-	-	n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the MCP OAuth client registration endpoint accepted unauthenticated requests and stored client data… New	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-42236	2026-05-5 04:16	2026-05-5	Show	GitHub Exploit DB Packet Storm

250	-	-	-	n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an unauthenticated attacker could register a malicious MCP OAuth client with a crafted client_name.… New	CWE-79 CWE-87 Cross-site Scripting Improper Neutralization of Alternate XSS Syntax	CVE-2026-42235	2026-05-5 04:16	2026-05-5	Show	GitHub Exploit DB Packet Storm