Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200371 4 警告 IBM - IBM Maximo Asset Management におけるアクセス制限を回避される脆弱性 CWE-Other
その他 		CVE-2016-0222 2016-03-18 15:51 2016-02-26 Show GitHub Exploit DB Packet Storm
200372 4.3 警告 IBM - IBM WebSphere Commerce におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-0208 2016-03-18 15:51 2016-03-7 Show GitHub Exploit DB Packet Storm
200373 6.8 警告 IBM - IBM FlashSystem V9000 におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2015-7446 2016-03-18 15:18 2015-09-29 Show GitHub Exploit DB Packet Storm
200374 5 警告 Debian
Canonical
Novell
Igor Sysoev		 - nginx のリゾルバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-0747 2016-03-18 14:52 2016-01-26 Show GitHub Exploit DB Packet Storm
200375 6.8 警告 The WebRTC project
Mozilla Foundation		 - Windows 上で稼動する Mozilla Firefox の WebRTC の実装の DesktopDisplayDevice クラスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-1976 2016-03-18 14:12 2016-03-8 Show GitHub Exploit DB Packet Storm
200376 6.8 警告 The WebRTC project
Mozilla Foundation		 - Windows 上で稼動する Mozilla Firefox の WebRTC の実装の dom/media/systemservices/CamerasChild.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2016-1975 2016-03-18 14:12 2016-03-8 Show GitHub Exploit DB Packet Storm
200377 6.8 警告 SIL International
Mozilla Foundation		 - Mozilla Firefox で使用される Graphite2 の setAttr 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-1969 2016-03-18 14:12 2016-03-8 Show GitHub Exploit DB Packet Storm
200378 6.8 警告 Mozilla Foundation - Mozilla Firefox で使用される Brotli における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2016-1968 2016-03-18 14:12 2016-03-8 Show GitHub Exploit DB Packet Storm
200379 4.3 警告 Mozilla Foundation - Mozilla Firefox における同一生成元ポリシーを回避される脆弱性 CWE-200
情報漏えい 		CVE-2016-1967 2016-03-18 14:12 2016-03-8 Show GitHub Exploit DB Packet Storm
200380 4.4 警告 Mozilla Foundation - Mozilla Firefox の FileReader クラスにおける権限を取得される脆弱性 CWE-119
CWE-264
CVE-2016-1963 2016-03-18 14:12 2016-03-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191 6.5 MEDIUM
Adjacent 		juniper junos A Missing Release of Memory after Effective Lifetime vulnerability in the DHCP daemon (jdhcpd) of Juniper Networks Junos OS on MX Series, allows an adjacent, unauthenticated attacker to cause a memor… Update CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2026-33782 2026-04-18 02:39 2026-04-10 Show GitHub Exploit DB Packet Storm
192 6.5 MEDIUM
Network 		praison praisonai PraisonAI is a multi-agent teams system. Prior to 4.5.128, the _safe_extractall() function in PraisonAI's recipe registry validates archive members against path traversal attacks but performs no chec… Update CWE-409
 Improper Handling of Highly Compressed Data (Data Amplification) 		CVE-2026-40148 2026-04-18 02:38 2026-04-10 Show GitHub Exploit DB Packet Storm
193 8.8 HIGH
Local 		juniper junos A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on MX Series allows a local, authenticated user with low privileges to execute specific commands which will lead to a com… Update CWE-862
 Missing Authorization 		CVE-2026-33785 2026-04-18 02:38 2026-04-10 Show GitHub Exploit DB Packet Storm
194 3.1 LOW
Network 		beszel beszel Beszel is a server monitoring platform. Prior to 0.18.7, some API endpoints in the Beszel hub accept a user-supplied system ID and proceed without further checks that the user should have access to t… Update CWE-184
 Incomplete Blacklist 		CVE-2026-40077 2026-04-18 02:37 2026-04-10 Show GitHub Exploit DB Packet Storm
195 8.1 HIGH
Network 		apollographql apollo_mcp_server Apollo MCP Server is a Model Context Protocol server that exposes GraphQL operations as MCP tools. Prior to version 1.7.0, the Apollo MCP Server did not validate the Host header on incoming HTTP requ… Update CWE-346
 Origin Validation Error 		CVE-2026-35577 2026-04-18 02:31 2026-04-10 Show GitHub Exploit DB Packet Storm
196 8.8 HIGH
Network 		google chrome Use after free in Video in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) Update CWE-416
 Use After Free 		CVE-2026-6302 2026-04-18 02:27 2026-04-16 Show GitHub Exploit DB Packet Storm
197 8.8 HIGH
Network 		google chrome Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) Update CWE-416
 Use After Free 		CVE-2026-6303 2026-04-18 02:27 2026-04-16 Show GitHub Exploit DB Packet Storm
198 8.3 HIGH
Network 		google chrome Use after free in Graphite in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.… Update CWE-416
 Use After Free 		CVE-2026-6304 2026-04-18 02:27 2026-04-16 Show GitHub Exploit DB Packet Storm
199 8.8 HIGH
Network 		google chrome Heap buffer overflow in PDFium in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: High) Update CWE-122
CWE-787
Heap-based Buffer Overflow
 Out-of-bounds Write 		CVE-2026-6305 2026-04-18 02:27 2026-04-16 Show GitHub Exploit DB Packet Storm
200 8.8 HIGH
Network 		google chrome Type Confusion in Turbofan in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) Update CWE-843
Type Confusion 		CVE-2026-6307 2026-04-18 02:27 2026-04-16 Show GitHub Exploit DB Packet Storm