Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
212901	5.4	警告	sportinginnovations	-	Android 用 Utah Jazz アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6704	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212902	5.4	警告	phonearabs4 project	-	Android 用 phonearabs4 アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6703	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212903	5.4	警告	starsat	-	Android 用 StarSat International アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6702	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212904	5.4	警告	vendormate	-	Android 用 Vendormate Mobile アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6701	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212905	5.4	警告	nba	-	Android 用 NBA Game Time 2013-2014 アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6700	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212906	5.4	警告	weather	-	Android 用 Weather Channel アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6699	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212907	5.4	警告	igg	-	Android 用 Galaxy Online 2 アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6698	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212908	5.4	警告	mobilesoft	-	Android 用 Morocco Weather アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6697	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212909	5.4	警告	candy girl party makeover project	-	Android 用 Candy Girl Party Makeover アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6696	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

212910	5.4	警告	wedding photo frames-love pics project	-	Android 用 Wedding Photo Frames-Love Pics アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-6695	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
831	5.5	MEDIUM Local	-	-	Open CASCADE Technology (OCCT) V8_0_0_rc5 contains multiple vulnerabilities in its IGES and STEP file parsers that can be triggered by crafted IGES or STEP files. These issues include an out-of-bound… Update	CWE-125 Out-of-bounds Read	CVE-2026-42481	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm

832	7.5	HIGH Network	-	-	AGL agl-service-can-low-level thru 17.1.12 contains a stack buffer overflow in the uds-c library. The send_diagnostic_request function in uds.c allocates a 6-byte stack buffer (MAX_DIAGNOSTIC_PAYLOAD… Update	CWE-121 Stack-based Buffer Overflow	CVE-2026-37530	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm

833	9.8	CRITICAL Network	-	-	Integer underflow vulnerability in Open-SAE-J1939 thru commit b6caf884df46435e539b1ecbf92b6c29b345bdfe (2025-11-30) in SAE_J1939_Read_Transport_Protocol_Data_Transfer,allows attackers to write to arb… Update	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2026-37534	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm

834	10.0	CRITICAL Network	-	-	Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_gvret.cpp, the length field in GVRET binary data is not properly validated, allowing remote attackers t… Update	CWE-121 Stack-based Buffer Overflow	CVE-2026-37541	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm

835	8.8	HIGH Network	-	-	Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_pcap.cpp , the parser's phdr.len field is not properly validated, allowing remote attackers to cause a … Update	CWE-121 Stack-based Buffer Overflow	CVE-2026-42468	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm

836	8.6	HIGH Network	-	-	Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_canswitch.cpp the parser does not properly validate a CANswitch DLC value, allowing remote attackers to… Update	CWE-121 Stack-based Buffer Overflow	CVE-2026-42469	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm

837	6.1	MEDIUM Network	-	-	Cross-Site Scripting (XSS) vulnerability was discovered in the GSVoIP web panel version 2.0.90. The `msg` parameter in the `/painel/gateways.php/error` endpoint does not properly sanitize user-suppli… Update	CWE-79 Cross-site Scripting	CVE-2025-69606	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm

838	6.5	MEDIUM Network	-	-	A Command Injection vulnerability in the web management interface in Aver PTC320UV2 0.1.0000.65 allows an unauthenticated attacker to execute arbitrary commands via a crafted web request. Update	CWE-77 Command Injection	CVE-2026-26461	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm

839	7.5	HIGH Network	-	-	An off-by-one out-of-bounds write vulnerability in the bgp_flowspec_op_decode() function (bgpd/bgp_flowspec_util.c) of FRRouting (FRR) stable/10.0 allows attackers to cause a Denial of Service (DoS) … Update	CWE-787 Out-of-bounds Write	CVE-2026-37457	2026-05-8 00:15	2026-05-2	Show	GitHub Exploit DB Packet Storm

840	6.5	MEDIUM Network	-	-	goshs is a SimpleHTTPServer written in Go. Prior to version 2.0.2, the PUT upload handler (httpserver/updown.go) lacks the CSRF token validation that was added to the POST upload handler during the C… Update	CWE-352 Origin Validation Error	CVE-2026-42091	2026-05-8 00:15	2026-05-5	Show	GitHub Exploit DB Packet Storm