Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198011	5.9	警告 Network	Wireshark	-	Wireshark の DCERPC ディセクタにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-9373	2016-11-18 16:12	2016-11-16	Show	GitHub Exploit DB Packet Storm

198012	5.9	警告 Network	Wireshark	-	Wireshark の Profinet I/O ディセクタにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 CWE-399	CVE-2016-9372	2016-11-18 16:12	2016-11-16	Show	GitHub Exploit DB Packet Storm

198013	8.8	重要 Network	Google openSUSE project	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2016-5167	2016-11-18 13:59	2016-08-31	Show	GitHub Exploit DB Packet Storm

198014	3.1	低 Network	Google openSUSE project	-	Google Chrome のダウンロードの実装における NetNTLM ハッシュを取得される脆弱性	CWE-200 情報漏えい	CVE-2016-5166	2016-11-18 13:59	2016-08-31	Show	GitHub Exploit DB Packet Storm

198015	6.1	警告 Network	Google openSUSE project	-	Google Chrome の Developer Tools サブシステムにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5165	2016-11-18 13:59	2016-08-31	Show	GitHub Exploit DB Packet Storm

198016	6.1	警告 Network	Google openSUSE project	-	Google Chrome で使用される Blink の WebKit/Source/platform/v8_inspector/V8Debugger.cpp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5164	2016-11-18 13:59	2016-08-31	Show	GitHub Exploit DB Packet Storm

198017	4.3	警告 Network	Google openSUSE project	-	Google Chrome の双方向テキストの実装におけるアドレスバーを偽装される脆弱性	CWE-Other その他	CVE-2016-5163	2016-11-18 13:59	2016-08-31	Show	GitHub Exploit DB Packet Storm

198018	6.5	警告 Network	Google openSUSE project	-	Google Chrome の extensions/browser/url_request_util.cc におけるクリックジャッキング攻撃を実行される脆弱性	CWE-Other その他	CVE-2016-5162	2016-11-18 13:59	2016-08-31	Show	GitHub Exploit DB Packet Storm

198019	8.8	重要 Network	Google openSUSE project	-	Google Chrome で使用される Blink におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-5161	2016-11-18 13:59	2016-08-31	Show	GitHub Exploit DB Packet Storm

198020	6.5	警告 Network	Google openSUSE project	-	Google Chrome の extensions/browser/url_request_util.cc におけるクリックジャッキング攻撃を実行される脆弱性	CWE-Other その他	CVE-2016-5160	2016-11-18 13:59	2016-08-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
401	6.3	MEDIUM Local	-	-	A flaw was found in Keylime. An attacker with root access on an enrolled monitored machine, where the Keylime agent runs, can exploit a vulnerability in the Keylime verifier. The verifier uses a hard… New	CWE-1241 Use of Predictable Algorithm in Random Number Generator	CVE-2026-6420	2026-05-6 20:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

402	3.1	LOW Network	-	-	HCL DFXAnalytics is affected by an Insecure Security Header Configuration vulnerability where the application utilizes the outdated X-XSS-Protection header, which could allow an attacker to exploit b… New	CWE-80 Basic XSS	CVE-2025-59854	2026-05-6 20:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

403	3.1	LOW Network	-	-	HCL DFXAnalytics is affected by an Improper Error Handling vulnerability where the application exposes detailed stack traces in responses, which could allow an attacker to gain insights into the appl… New	CWE-209 Information Exposure Through an Error Message	CVE-2025-59853	2026-05-6 20:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

404	3.7	LOW Network	-	-	HCL DFXAnalytics is affected by an Insufficient Transport Layer Protection vulnerability where data is transmitted over the network without encryption, which could allow an attacker to compromise t… New	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2025-59852	2026-05-6 20:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

405	3.7	LOW Network	-	-	HCL DFXAnalytics is affected by a Using Components with Known Vulnerabilities flaw where the application utilizes unpatched libraries or sub-components, which could allow an attacker to identify and … New	-	CVE-2025-59851	2026-05-6 20:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

406	5.3	MEDIUM Network	-	-	HCL DFXAnalytics is affected by an Insecure Security Header configuration vulnerability where the Content-Security-Policy does not define strict directives for object-src and base-uri, which could al… New	CWE-358 Improperly Implemented Security Check for Standard	CVE-2025-31970	2026-05-6 20:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

407	5.2	MEDIUM Local	-	-	There is a local privilege escalation vulnerability in the ZTE PROCESS Guard service of the cloud computer client, which may allow local arbitrary code execution, privilege escalation and path traver… New	CWE-269 Improper Privilege Management	CVE-2026-40001	2026-05-6 19:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

408	8.8	HIGH Network	-	-	A remote code execution vulnerability exists in Notification Settings on GeoVision GV-ASWeb 6.2.0. An authenticated user with System Setting permissions can execute arbitrary commands on the server b… New	CWE-94 Code Injection	CVE-2026-7841	2026-05-6 17:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

409	-		-	-	The Item history widget (in Zabbix 7.0+) or the Plain text widget (in Zabbix 6.0) can execute injected JavaScript when HTML display is enabled. This can allow an attacker to perform unauthorized acti… New	CWE-79 Cross-site Scripting	CVE-2026-23928	2026-05-6 17:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

410	-		-	-	A user able to connect to Agent 2 can inject an Oracle TNS connection string via the 'service' parameter. This can lead to Agent 2 connecting to an attacker-controlled server and leaking Oracle datab… New	CWE-522 Insufficiently Protected Credentials	CVE-2026-23927	2026-05-6 17:16	2026-05-6	Show	GitHub Exploit DB Packet Storm