Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199821 6.5 警告
Network 		オラクル - Oracle PeopleSoft Products の PeopleSoft Enterprise HCM における Fusion HR Talent Integration に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0407 2016-04-26 12:15 2016-04-19 Show GitHub Exploit DB Packet Storm
199822 8.2 重要
Network 		オラクル - Oracle Supply Chain Products Suite の Oracle Complex Maintenance Repair and Overhaul における Dialog Box に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3456 2016-04-26 11:24 2016-04-19 Show GitHub Exploit DB Packet Storm
199823 8.2 重要
Network 		オラクル - Oracle Supply Chain Products Suite の Oracle Configurator における JRAD Heartbeat に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3438 2016-04-26 11:24 2016-04-19 Show GitHub Exploit DB Packet Storm
199824 6.4 警告
Network 		オラクル - Oracle Supply Chain Products Suite の Oracle Agile PLM における Security に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3431 2016-04-26 11:24 2016-04-19 Show GitHub Exploit DB Packet Storm
199825 3.1
Adjacent 		オラクル - Oracle Supply Chain Products Suite の Oracle Agile Engineering Data Management における Engineering Communication Interface に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3428 2016-04-26 11:24 2016-04-19 Show GitHub Exploit DB Packet Storm
199826 6.4 警告
Network 		オラクル - Oracle Supply Chain Products Suite の Oracle Agile PLM における Security に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3420 2016-04-26 11:24 2016-04-19 Show GitHub Exploit DB Packet Storm
199827 4.5 警告
Physics 		オラクル - Oracle Retail Applications の Oracle Retail Xstore Point of Service における Xstore Services に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3429 2016-04-26 10:44 2016-04-19 Show GitHub Exploit DB Packet Storm
199828 6.5 警告
Network 		オラクル - Oracle Retail Applications の Oracle Retail MICROS ARS POS における POS に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0684 2016-04-26 10:44 2016-04-19 Show GitHub Exploit DB Packet Storm
199829 5.5 警告
Local 		オラクル - Oracle Retail Applications の Oracle Retail MICROS C2 における POS に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0469 2016-04-26 10:44 2016-04-19 Show GitHub Exploit DB Packet Storm
199830 9.1 緊急
Network 		オラクル - Oracle E-Business Suite の Oracle Field Service における Wireless に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-3466 2016-04-26 10:44 2016-04-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
341 6.2 MEDIUM
Local 		- - ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, a crafted image could result in an out of bounds heap write when writing a y… Update CWE-122
CWE-787
Heap-based Buffer Overflow
 Out-of-bounds Write 		CVE-2026-40169 2026-04-18 00:26 2026-04-14 Show GitHub Exploit DB Packet Storm
342 5.5 MEDIUM
Local 		- - ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, the JXL encoder has an heap write overflow when a user specifies that the im… Update CWE-122
Heap-based Buffer Overflow 		CVE-2026-40183 2026-04-18 00:26 2026-04-14 Show GitHub Exploit DB Packet Storm
343 5.5 MEDIUM
Local 		- - ImageMagick is free and open-source software used for editing and manipulating digital images. Versions below both 7.1.2-19 and 6.9.13-44, contain a heap out-of-bounds write in the JP2 encoder with w… Update CWE-122
CWE-787
Heap-based Buffer Overflow
 Out-of-bounds Write 		CVE-2026-40310 2026-04-18 00:26 2026-04-14 Show GitHub Exploit DB Packet Storm
344 5.5 MEDIUM
Local 		- - ImageMagick is free and open-source software used for editing and manipulating digital images. Versions below 7.1.2-19 and 6.9.13-44 contain a heap use-after-free vulnerability that can cause a crash… Update CWE-416
CWE-693
 Use After Free
 Protection Mechanism Failure 		CVE-2026-40311 2026-04-18 00:26 2026-04-14 Show GitHub Exploit DB Packet Storm
345 6.2 MEDIUM
Local 		- - jq is a command-line JSON processor. In versions 1.8.1 and below, functions jv_setpath(), jv_getpath(), and delpaths_sorted() in jq's src/jv_aux.c use unbounded recursion whose depth is controlled by… Update CWE-674
 Uncontrolled Recursion 		CVE-2026-33947 2026-04-18 00:26 2026-04-14 Show GitHub Exploit DB Packet Storm
346 6.2 MEDIUM
Local 		- - ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, an off by one error in the MSL decoder could result in a crash when a malico… Update CWE-193
 Off-by-one Error 		CVE-2026-40312 2026-04-18 00:26 2026-04-14 Show GitHub Exploit DB Packet Storm
347 6.1 MEDIUM
Local 		- - jq is a command-line JSON processor. In commits after 69785bf77f86e2ea1b4a20ca86775916889e91c9, the _strindices builtin in jq's src/builtin.c passes its arguments directly to jv_string_indexes() with… Update CWE-125
CWE-476
CWE-843
Out-of-bounds Read
 NULL Pointer Dereference
Type Confusion 		CVE-2026-39956 2026-04-18 00:26 2026-04-14 Show GitHub Exploit DB Packet Storm
348 - - - jq is a command-line JSON processor. In commits before 2f09060afab23fe9390cce7cb860b10416e1bf5f, the jv_parse_sized() API in libjq accepts a counted buffer with an explicit length parameter, but its … Update CWE-125
Out-of-bounds Read 		CVE-2026-39979 2026-04-18 00:26 2026-04-14 Show GitHub Exploit DB Packet Storm
349 - - - jq is a command-line JSON processor. Commits before 6374ae0bcdfe33a18eb0ae6db28493b1f34a0a5b contain a vulnerability where CLI input parsing allows validation bypass via embedded NUL bytes. When read… Update CWE-20
CWE-170
 Improper Input Validation 
 Improper Null Termination 		CVE-2026-33948 2026-04-18 00:26 2026-04-14 Show GitHub Exploit DB Packet Storm
350 5.3 MEDIUM
Network 		- - nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. In versions 1.2.2 and below, an unauthenticated p2p peer can cause th… Update CWE-617
 Reachable Assertion 		CVE-2026-34069 2026-04-18 00:26 2026-04-14 Show GitHub Exploit DB Packet Storm