Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2141 5.9 警告
Network 		オラクル Oracle Identity Manager Connector オラクルのOracle Identity Manager Connectorにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-34289 2026-04-24 11:29 2026-04-21 Show GitHub Exploit DB Packet Storm
2142 7.5 重要
Network 		オラクル Oracle Identity Manager Connector オラクルのOracle Identity Manager Connectorにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-34290 2026-04-24 11:29 2026-04-21 Show GitHub Exploit DB Packet Storm
2143 4.9 警告
Network 		オラクル MySQL Server オラクルのMySQL Serverにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-34293 2026-04-24 11:29 2026-04-21 Show GitHub Exploit DB Packet Storm
2144 5.9 警告
Network 		オラクル Oracle Identity Manager Connector オラクルのOracle Identity Manager Connectorにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-34294 2026-04-24 11:29 2026-04-21 Show GitHub Exploit DB Packet Storm
2145 6.5 警告
Network 		オラクル MySQL Server オラクルのMySQL Serverにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-34303 2026-04-24 11:29 2026-04-21 Show GitHub Exploit DB Packet Storm
2146 4.9 警告
Network 		オラクル MySQL Server オラクルのMySQL Serverにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-34304 2026-04-24 11:29 2026-04-21 Show GitHub Exploit DB Packet Storm
2147 6.5 警告
Network 		オラクル MySQL Server オラクルのMySQL Serverにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-34308 2026-04-24 11:29 2026-04-21 Show GitHub Exploit DB Packet Storm
2148 6.5 警告
Network 		Chamilo Association Chamilo LMS Chamilo AssociationのChamilo LMSにおける複数の脆弱性 CWE-285
CWE-639
CVE-2026-34370 2026-04-24 11:28 2026-04-14 Show GitHub Exploit DB Packet Storm
2149 8.1 重要
Network 		nginxui nginx ui Nginx UI TeamのNginx UIにおける WebSocket でのオリジン検証の欠如に関する脆弱性 CWE-1385
WebSocket でのオリジン検証の欠如 		CVE-2026-34403 2026-04-24 11:28 2026-04-20 Show GitHub Exploit DB Packet Storm
2150 3.5
Physics 		oauth2_proxy project oauth2_proxy oauth2_proxy projectのoauth2_proxyにおける複数の脆弱性 CWE-384
CWE-613
CVE-2026-34454 2026-04-24 11:28 2026-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1041 5.3 MEDIUM
Network 		- - A vulnerability was found in ggerve coding-standards-mcp. This issue affects the function get_style_guide/get_best_practices of the file server.py. The manipulation of the argument Language results i… CWE-22
Path Traversal 		CVE-2026-7588 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
1042 7.3 HIGH
Network 		hashcat hashcat A heap-based buffer overflow in the Kerberos hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code via a crafted Kerberos hash file. The iss… CWE-787
CWE-122
 Out-of-bounds Write
Heap-based Buffer Overflow 		CVE-2026-42483 2026-05-2 03:16 2026-05-1 Show GitHub Exploit DB Packet Storm
1043 8.6 HIGH
Network 		- - Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_canswitch.cpp the parser does not properly validate a CANswitch DLC value, allowing remote attackers to… CWE-121
Stack-based Buffer Overflow 		CVE-2026-42469 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
1044 7.5 HIGH
Network 		- - Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_pcap.cpp , the parser's phdr.len field is not properly validated, allowing remote attackers to cause a … CWE-121
Stack-based Buffer Overflow 		CVE-2026-42468 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
1045 7.5 HIGH
Network 		exim exim In Exim before 4.99.2, on systems using musl libc (not glibc), an attacker can crash the connection instance when malformed DNS data is present in PTR records. This is caused by a dn_expand oddity in… CWE-684
 Incorrect Provision of Specified Functionality 		CVE-2026-40684 2026-05-2 03:16 2026-05-1 Show GitHub Exploit DB Packet Storm
1046 10.0 CRITICAL
Network 		- - Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_gvret.cpp, the length field in GVRET binary data is not properly validated, allowing remote attackers t… CWE-121
Stack-based Buffer Overflow 		CVE-2026-37541 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
1047 8.4 HIGH
Local 		- - OpenAMP v2025.10.0 ELF loader contains an integer overflow vulnerability in firmware image parsing. In elf_loader.c, it performs multiplication of two attacker-controlled 16-bit values from the ELF h… CWE-190
 Integer Overflow or Wraparound 		CVE-2026-37540 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
1048 - - - An off-by-one out-of-bounds write vulnerability in the bgp_flowspec_op_decode() function (bgpd/bgp_flowspec_util.c) of FRRouting (FRR) stable/10.0 allows attackers to cause a Denial of Service (DoS) … - CVE-2026-37457 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
1049 - - - A Command Injection vulnerability in the web management interface in Aver PTC320UV2 0.1.0000.65 allows an unauthenticated attacker to execute arbitrary commands via a crafted web request. - CVE-2026-26461 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
1050 9.6 CRITICAL
Network 		- - A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger write UAF crash in the GPU GLES user-space shared library. On certain platforms, when the proce… CWE-416
 Use After Free 		CVE-2026-22166 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm