Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2031 7 重要
Local 		VMware VMware Fusion VMwareのVMware FusionにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-41702 2026-05-20 13:31 2026-05-15 Show GitHub Exploit DB Packet Storm
2032 4.3 警告
Network 		Timo Sirainen
Open-Xchange		 Dovecot Pro
Dovecot 		Timo Sirainen等の複数ベンダの製品におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-42006 2026-05-20 13:31 2026-05-12 Show GitHub Exploit DB Packet Storm
2033 4.3 警告
Network 		getkirby kirby getkirbyのkirbyにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-42051 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
2034 6.5 警告
Network 		getkirby kirby getkirbyのkirbyにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-42069 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
2035 6.5 警告
Network 		getkirby kirby getkirbyのkirbyにおける複数の脆弱性 CWE-862
CWE-863
CVE-2026-42137 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
2036 7.8 重要
Local 		Nullsoft Nullsoft Scriptable Install System NullsoftのNullsoft Scriptable Install Systemにおける制御されていない検索パスの要素に関する脆弱性 CWE-427
制御されていない検索パスの要素 		CVE-2026-42171 2026-05-20 13:30 2026-04-24 Show GitHub Exploit DB Packet Storm
2037 4.3 警告
Network 		getkirby kirby getkirbyのkirbyにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-42174 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
2038 7.5 重要
Network 		OpenBao OpenBao OpenBaoにおける保存または転送前の重要な情報の削除に関する脆弱性 CWE-212
保存または転送前の重要な情報の不適切な削除 		CVE-2026-42186 2026-05-20 13:30 2026-05-14 Show GitHub Exploit DB Packet Storm
2039 7.5 重要
Network 		Ruby-lang.org Net::IMAP Ruby-lang.orgのNet::IMAPにおけるアルゴリズムの複雑さに関する脆弱性 CWE-407
アルゴリズムの複雑性 		CVE-2026-42245 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
2040 7.4 重要
Network 		Ruby-lang.org Net::IMAP Ruby-lang.orgのNet::IMAPにおける複数の脆弱性 CWE-392
CWE-393
CWE-636
CWE-754
CWE-841
CVE-2026-42246 2026-05-20 13:30 2026-05-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
354881 - hp hp-ux
vvos 		Vulnerability in shutdown command for HP-UX 11.X and 10.X allows allows local users to gain privileges via malformed input variables. NVD-CWE-Other
CVE-2000-0414 2008-09-11 04:04 2000-05-4 Show GitHub Exploit DB Packet Storm
354882 - cayman 3220-h_dsl_router
gatorsurf 		The HTTP administration interface to the Cayman 3220-H DSL router allows remote attackers to cause a denial of service via a long username or password. NVD-CWE-Other
CVE-2000-0417 2008-09-11 04:04 2000-05-17 Show GitHub Exploit DB Packet Storm
354883 - cayman 3220-h_dsl_router
gatorsurf 		The Cayman 3220-H DSL router allows remote attackers to cause a denial of service via oversized ICMP echo (ping) requests. NVD-CWE-Other
CVE-2000-0418 2008-09-11 04:04 2000-05-23 Show GitHub Exploit DB Packet Storm
354884 - microsoft windows_2000 The default configuration of SYSKEY in Windows 2000 stores the startup key in the registry, which could allow an attacker tor ecover it and use it to decrypt Encrypted File System (EFS) data. NVD-CWE-Other
CVE-2000-0420 2008-09-11 04:04 2000-05-11 Show GitHub Exploit DB Packet Storm
354885 - mozilla bugzilla The process_bug.cgi script in Bugzilla allows remote attackers to execute arbitrary commands via shell metacharacters. NVD-CWE-Other
CVE-2000-0421 2008-09-11 04:04 2000-05-11 Show GitHub Exploit DB Packet Storm
354886 - lsoft listserv Buffer overflow in the Web Archives component of L-Soft LISTSERV 1.8 allows remote attackers to execute arbitrary commands. NVD-CWE-Other
CVE-2000-0425 2008-09-11 04:04 2000-05-3 Show GitHub Exploit DB Packet Storm
354887 - ultrascripts ultraboard UltraBoard 1.6 and other versions allow remote attackers to cause a denial of service by referencing UltraBoard in the Session parameter, which causes UltraBoard to fork copies of itself. NVD-CWE-Other
CVE-2000-0426 2008-09-11 04:04 2000-05-5 Show GitHub Exploit DB Packet Storm
354888 - aladdin_knowledge_systems etoken The Aladdin Knowledge Systems eToken device allows attackers with physical access to the device to obtain sensitive information without knowing the PIN of the owner by resetting the PIN in the EEPROM. NVD-CWE-Other
CVE-2000-0427 2008-09-11 04:04 2000-05-4 Show GitHub Exploit DB Packet Storm
354889 - trend_micro interscan_viruswall Buffer overflow in the SMTP gateway for InterScan Virus Wall 3.32 and earlier allows a remote attacker to execute arbitrary commands via a long filename for a uuencoded attachment. NVD-CWE-Other
CVE-2000-0428 2008-09-11 04:04 2000-05-4 Show GitHub Exploit DB Packet Storm
354890 - matt_kruse calendar_script The calender.pl and the calendar_admin.pl calendar scripts by Matt Kruse allow remote attackers to execute arbitrary commands via shell metacharacters. NVD-CWE-Other
CVE-2000-0432 2008-09-11 04:04 2000-05-16 Show GitHub Exploit DB Packet Storm