Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203501	7.8	危険	シスコシステムズ	-	Cisco IOS および IOS XE の Smart Install クライアントの実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-1349	2016-03-29 11:59	2016-03-23	Show	GitHub Exploit DB Packet Storm

203502	7.8	危険	シスコシステムズ	-	Cisco IOS および IOS XE におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-1348	2016-03-29 11:59	2016-03-23	Show	GitHub Exploit DB Packet Storm

203503	7.1	危険	シスコシステムズ	-	Cisco IOS および IOS XE の IKEv2 の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-1344	2016-03-29 11:59	2016-03-23	Show	GitHub Exploit DB Packet Storm

203504	3.5	注意	MIT Kerberos	-	MIT Kerberos 5 の kadmind の LDAP KDB モジュールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2016-3119	2016-03-29 11:40	2016-03-15	Show	GitHub Exploit DB Packet Storm

203505	6.4	警告	CA Technologies	-	CA Single Sign-On の Domino 以外の Web エージェントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2015-6854	2016-03-28 17:13	2015-09-10	Show	GitHub Exploit DB Packet Storm

203506	6.4	警告	CA Technologies	-	CA Single Sign-On の Domino Web エージェントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2015-6853	2016-03-28 17:13	2015-09-10	Show	GitHub Exploit DB Packet Storm

203507	6.8	警告	シスコシステムズ	-	Cisco Network Convergence System 6000 デバイス上で稼動する IOS XR の SCP および SFTP モジュールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-1366	2016-03-28 16:42	2016-03-23	Show	GitHub Exploit DB Packet Storm

203508	7.8	危険	シスコシステムズ	-	Cisco IOS の Wide Area Application Services Express の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-1347	2016-03-28 16:42	2016-03-23	Show	GitHub Exploit DB Packet Storm

203509	4.3	警告	アップル	-	Apple iOS などで使用される WebKit におけるデバイスの物理環境に関する重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-1780	2016-03-28 15:36	2016-03-21	Show	GitHub Exploit DB Packet Storm

203510	5	警告	アップル	-	Apple iOS のプロファイルコンポーネントにおける MDM プロファイルの信頼関係を偽装される脆弱性	CWE-noinfo 情報不足	CVE-2016-1766	2016-03-28 15:36	2016-03-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
41	5.3	MEDIUM Network	-	-	OpenClaw before 2026.4.22 contains an authentication bypass vulnerability in the Control UI bootstrap config endpoint that allows unauthenticated attackers to read sensitive configuration fields. Att… New	CWE-862 Missing Authorization	CVE-2026-44994	2026-05-12 03:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

42	5.4	MEDIUM Network	-	-	OpenClaw before 2026.4.20 contains a message classification vulnerability in Feishu card-action callbacks that misclassifies direct messages as group conversations. Attackers can bypass dmPolicy enfo… New	CWE-184 Incomplete Blacklist	CVE-2026-44993	2026-05-12 03:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

43	5.0	MEDIUM Local	-	-	OpenClaw versions 2026.4.5 before 2026.4.20 contain an environment variable injection vulnerability allowing workspace dotenv to override MINIMAX_API_HOST. Attackers can redirect credentialed MiniMax… New	CWE-441 Confused Deputy	CVE-2026-44992	2026-05-12 03:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

44	4.2	MEDIUM Network	-	-	OpenClaw before 2026.4.21 contains an authorization bypass vulnerability in command-auth.ts that allows non-owner senders to execute owner-enforced slash commands when wildcard inbound senders are co… New	CWE-863 Incorrect Authorization	CVE-2026-44991	2026-05-12 03:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

45	3.0	LOW Network	-	-	In OpenStack Ironic through 35.x, instance_info['ks_template'] is rendered without sandboxing. New	CWE-1336 Improper Neutralization of Special Elements Used in a Template Engine	CVE-2026-44916	2026-05-12 03:16	2026-05-8	Show	GitHub Exploit DB Packet Storm

46	-		-	-	jq is a command-line JSON processor. In 1.8.2rc1 and earlier, the ordinary module loader recurses without cycle detection when two otherwise valid modules include each other. New	CWE-674 Uncontrolled Recursion	CVE-2026-44777	2026-05-12 03:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

47	4.7	MEDIUM Network	-	-	Zen is a firefox-based browser. Prior to 1.19.12b, the ZEN Browser incorrectly truncates long hostnames in the address bar and shows only the attacker-controlled prefix of the subdomain, hiding the a… New	CWE-451 User Interface (UI) Misrepresentation of Critical Information	CVE-2026-44659	2026-05-12 03:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

48	2.4	LOW Network	-	-	Zen is a firefox-based browser. Prior to 1.19.12b, RSS feed URLs entered by the user are validated to http: or https: in promptForFeedUrl, but item links inside the feed are not subject to the same r… New	CWE-20 Improper Input Validation	CVE-2026-44658	2026-05-12 03:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

49	8.2	HIGH Network	-	-	In JetBrains TeamCity before 2026.1 2025.11.5 authenticated users could expose server API to unauthorised access New	CWE-306 Missing Authentication for Critical Function	CVE-2026-44413	2026-05-12 03:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

50	9.1	CRITICAL Network	-	-	Linkwarden is a self-hosted, open-source collaborative bookmark manager to collect, organize and archive webpages. Prior to version 2.13.0, a Server-Side Request Forgery (SSRF) vulnerability in the f… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-44313	2026-05-12 03:16	2026-05-9	Show	GitHub Exploit DB Packet Storm