Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201281 6.8 警告
Network 		PowerDNS
openSUSE project		 - PowerDNS Authoritative Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-6172 2016-10-4 15:36 2016-07-29 Show GitHub Exploit DB Packet Storm
201282 5.1 警告
Local 		YaST
openSUSE project		 - libstorage および libstorage-ng ならびに yast-storage における重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2016-5746 2016-10-4 15:34 2016-07-14 Show GitHub Exploit DB Packet Storm
201283 6.5 警告
Network 		OpenStack - OpenStack Compute におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-7498 2016-10-4 15:10 2016-09-21 Show GitHub Exploit DB Packet Storm
201284 9.8 緊急
Network 		OpenStack - 複数の OpenStack 製品における任意の Python オブジェクトを作成される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-4972 2016-10-4 15:10 2016-06-23 Show GitHub Exploit DB Packet Storm
201285 9.8 緊急
Network 		iperf project
openSUSE project
SUSE		 - cJSON ライブラリの cjson.c 内の parse_string 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-4303 2016-10-4 14:26 2016-06-8 Show GitHub Exploit DB Packet Storm
201286 5.9 警告
Local 		openSUSE project
SQLite
Fedora Project		 - SQLite の os_unix.c における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6153 2016-10-4 14:07 2016-05-18 Show GitHub Exploit DB Packet Storm
201287 7.8 重要
Local 		シトリックス・システムズ - Citrix Linux Virtual Delivery Agent における root 権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-6276 2016-10-4 13:43 2016-09-15 Show GitHub Exploit DB Packet Storm
201288 6.5 警告
Network 		IBM - IBM AIX で使用される Tivoli Lightweight Infrastructure の Eclipse Help におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-6038 2016-10-4 11:52 2016-09-22 Show GitHub Exploit DB Packet Storm
201289 6.5 警告
Network 		IBM - IBM Tealeaf Customer Experience の Web ポータルにおけるアクセス権を取得される脆弱性 CWE-Other
その他 		CVE-2016-5997 2016-10-4 11:45 2016-09-14 Show GitHub Exploit DB Packet Storm
201290 7.5 重要
Network 		IBM - IBM Tealeaf Customer Experience の Web ポータルにおけるアクセス権を取得される脆弱性 CWE-Other
その他 		CVE-2016-5996 2016-10-4 11:45 2016-09-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1491 7.5 HIGH
Network 		- - When a Client SSL profile is configured with Allow Dynamic Record Sizing on a UDP virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate.  Note: Software … CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2026-42920 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
1492 8.7 HIGH
Network 		- - An authenticated attacker with the Resource Administrator or Administrator role can create SNMP configuration objects through iControl SOAP resulting in privilege escalation.  Note: Software versions… CWE-78
OS Command  		CVE-2026-42924 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
1493 5.8 MEDIUM
Network 		- - When NGINX Open Source is configured to proxy HTTP/2 traffic by setting proxy_http_version to 2, and also uses proxy_set_body, an attacker may be able to inject frame headers and payload bytes to the… CWE-172
 Encoding Error 		CVE-2026-42926 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
1494 8.7 HIGH
Network 		- - When running in Appliance mode, an authenticated attacker assigned the 'Administrator' role may be able to bypass Appliance mode restrictions on a BIG-IP system.  Note: Software versions which have … CWE-35
 Path Traversal: '.../...//' 		CVE-2026-42930 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
1495 4.8 MEDIUM
Network 		- - NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_charset_module module. When charset, source_charset, and charset_map and proxy_pass with disabled buffering ("off") directives ar… CWE-125
Out-of-bounds Read 		CVE-2026-42934 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
1496 6.5 MEDIUM
Network 		- - Incorrect permission assignment vulnerabilities exist in BIG-IP and BIG-IQ TMOS Shell (tmsh) arp and ndp commands, and in BIG-IP iControl REST. These vulnerabilities may allow an authenticated attack… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2026-42937 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
1497 6.5 MEDIUM
Network 		- - A vulnerability exists in the ngx_http_scgi_module and ngx_http_uwsgi_module modules that may result in excessive memory allocation or an over-read of data. When scgi_pass or uwsgi_pass is configured… CWE-789
CWE-823
 Memory Allocation with Excessive Size Value
 Use of Out-of-range Pointer Offset 		CVE-2026-42946 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
1498 8.8 HIGH
Network 		- - A potential vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow a remote authenticated user on the local network to execute arbitrary commands on the device. CWE-78
OS Command  		CVE-2026-6281 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
1499 8.1 HIGH
Network 		- - A potential improper file path validation vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow a remote authenticated user to move or access files belonging to ot… CWE-22
Path Traversal 		CVE-2026-6282 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
1500 4.8 MEDIUM
Network 		- - aria2c accepts a server certificate with incorrect Extended Key Usage (EKU). If the attackers compromise a certificate (with the associated private key) issued for a different purpose, they may be ab… CWE-295
Improper Certificate Validation  		CVE-2026-8367 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm