Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
199021	7.5	重要 Network	アップル	-	Apple iOS および OS X の CommonCrypto の corecrypto の CCrypt における平文情報を取得される脆弱性	CWE-20 CWE-200	CVE-2016-4711	2016-09-30 15:18	2016-09-13	Show	GitHub Exploit DB Packet Storm

199022	4	警告 Local	アップル	-	Apple iOS および OS X の CFNetwork における任意のユーザの閲覧した Web サイトを取得される脆弱性	CWE-200 CWE-Other	CVE-2016-4707	2016-09-30 15:18	2016-09-13	Show	GitHub Exploit DB Packet Storm

199023	7.8	重要 Local	アップル	-	Apple iOS および OS X の AppleMobileFileIntegrity における特権付きコンテキスト内で任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2016-4698	2016-09-30 15:18	2016-09-13	Show	GitHub Exploit DB Packet Storm

199024	7.8	重要 Local	アップル	-	Apple OS X の Apple Type Services における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-4779	2016-09-30 14:46	2016-09-20	Show	GitHub Exploit DB Packet Storm

199025	5.5	警告 Local	アップル	-	Apple OS X のターミナルにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-4755	2016-09-30 14:46	2016-09-20	Show	GitHub Exploit DB Packet Storm

199026	5.5	警告 Local	アップル	-	Apple OS X の SecKeyDeriveFromPassword 関数におけるプロセスメモリから重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-4752	2016-09-30 14:46	2016-09-20	Show	GitHub Exploit DB Packet Storm

199027	5.3	警告 Local	アップル	-	Apple OS X の Perl における汚染モード保護メカニズムを回避される脆弱性	CWE-Other その他	CVE-2016-4748	2016-09-30 14:46	2016-09-20	Show	GitHub Exploit DB Packet Storm

199028	5.3	警告 Network	アップル	-	Apple OS X の Kerberos 5 PAM モジュールにおけるユーザアカウントを列挙される脆弱性	CWE-200 情報漏えい	CVE-2016-4745	2016-09-30 14:46	2016-09-20	Show	GitHub Exploit DB Packet Storm

199029	5.5	警告 Local	アップル	-	Apple OS X の NSSecureTextField における資格情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-4742	2016-09-30 14:46	2016-09-20	Show	GitHub Exploit DB Packet Storm

199030	3.7	低 Network	アップル	-	Apple OS X の mDNSResponder における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-4739	2016-09-30 14:46	2016-09-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
541	6.5	MEDIUM Network	-	-	Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.0.0 to before version 4.14.4, Wazuh's server API brute-force protection for POST /security… New	CWE-307 CWE-362 CWE-367 mproper Restriction of Excessive Authentication Attempts Race Condition Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-26206	2026-05-1 00:11	2026-04-30	Show	GitHub Exploit DB Packet Storm

542	6.5	MEDIUM Network	-	-	Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.8.0 to before version 4.14.4, a stack-based buffer overflow exists in print_hex_string() i… New	CWE-121 CWE-400 Stack-based Buffer Overflow Uncontrolled Resource Consumption	CVE-2026-28221	2026-05-1 00:11	2026-04-30	Show	GitHub Exploit DB Packet Storm

543	9.0	CRITICAL Network	-	-	Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.4.0 to before version 4.14.4, a path traversal vulnerability in Wazuh's cluster synchroniz… New	CWE-22 CWE-73 Path Traversal External Control of File Name or Path	CVE-2026-30893	2026-05-1 00:11	2026-04-30	Show	GitHub Exploit DB Packet Storm

544	9.8	CRITICAL Network	-	-	Tenda W308R v2 V5.07.48 contains a cookie session weakness vulnerability that allows unauthenticated attackers to modify DNS settings by exploiting insufficient session validation. Attackers can send… New	CWE-290 Authentication Bypass by Spoofing	CVE-2018-25316	2026-05-1 00:11	2026-04-30	Show	GitHub Exploit DB Packet Storm

545	9.8	CRITICAL Network	-	-	Tenda W3002R/A302/W309R wireless routers version V5.07.64_en contain a cookie session weakness vulnerability that allows unauthenticated attackers to modify DNS settings by exploiting insufficient se… New	CWE-290 Authentication Bypass by Spoofing	CVE-2018-25317	2026-05-1 00:11	2026-04-30	Show	GitHub Exploit DB Packet Storm

546	9.8	CRITICAL Network	-	-	Tenda FH303/A300 firmware V5.07.68_EN contains a session weakness vulnerability that allows unauthenticated attackers to modify DNS settings by exploiting insufficient cookie validation. Attackers ca… New	CWE-290 Authentication Bypass by Spoofing	CVE-2018-25318	2026-05-1 00:11	2026-04-30	Show	GitHub Exploit DB Packet Storm

547	5.5	MEDIUM Local	-	-	ICMPv6 PvD protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service New	CWE-674 Uncontrolled Recursion	CVE-2026-5299	2026-05-1 00:10	2026-04-30	Show	GitHub Exploit DB Packet Storm

548	5.5	MEDIUM Local	-	-	AFP Spotlight protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service New	CWE-674 Uncontrolled Recursion	CVE-2026-5401	2026-05-1 00:10	2026-04-30	Show	GitHub Exploit DB Packet Storm

549	5.5	MEDIUM Local	-	-	FC-SWILS protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service New	CWE-674 Uncontrolled Recursion	CVE-2026-5406	2026-05-1 00:10	2026-04-30	Show	GitHub Exploit DB Packet Storm

550	5.5	MEDIUM Local	-	-	SMB2 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service New	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-5407	2026-05-1 00:10	2026-04-30	Show	GitHub Exploit DB Packet Storm