Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
234021 1.5 注意 IBM - IBM WebSphere Commerce における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2009-2752 2012-09-25 17:27 2010-02-5 Show GitHub Exploit DB Packet Storm
234022 4.3 警告 IBM - IBM WebSphere Commerce における脆弱性 CWE-310
暗号の問題 		CVE-2009-2751 2012-09-25 17:27 2010-02-5 Show GitHub Exploit DB Packet Storm
234023 5.5 警告 IBM - IBM WSRR におけるデータアクセス権を取得される脆弱性 CWE-16
環境設定 		CVE-2009-2750 2012-09-25 17:27 2010-01-7 Show GitHub Exploit DB Packet Storm
234024 7.2 危険 Linux - Linux kernel の kernel/posix-timers.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-2767 2012-09-25 17:27 2009-08-3 Show GitHub Exploit DB Packet Storm
234025 5 警告 マイクロソフト - Windows 7 RC の Microsoft Internet Explorer 8 におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-2764 2012-09-25 17:27 2009-08-14 Show GitHub Exploit DB Packet Storm
234026 6.4 警告 IBM - Feature Pack for CEA におけるコラボレーションセッションを偽装される脆弱性 CWE-310
暗号の問題 		CVE-2009-2749 2012-09-25 17:27 2009-12-8 Show GitHub Exploit DB Packet Storm
234027 10 危険 IBM - IBM WebSphere Business Events の test サーブレットにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2009-2741 2012-09-25 17:27 2009-09-18 Show GitHub Exploit DB Packet Storm
234028 5 警告 ntop - ntop の checkHTTPpassword 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-2732 2012-09-25 17:27 2009-08-21 Show GitHub Exploit DB Packet Storm
234029 4.9 警告 Novell - SLE の ia32el におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-2707 2012-09-25 17:27 2009-09-15 Show GitHub Exploit DB Packet Storm
234030 7.5 危険 KDE project - kdelibs の KSSL における任意の SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2009-2702 2012-09-25 17:27 2009-09-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
901 7.0 HIGH
Local 		sandboxie-plus sandboxie Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, a Time-of-Check-to-Time-of-Use (TOCTOU) race condition exists during addon installation.… CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2026-34596 2026-05-8 04:45 2026-05-6 Show GitHub Exploit DB Packet Storm
902 6.3 MEDIUM
Network 		openclaw openclaw OpenClaw before 2026.4.22 contains a time-of-check/time-of-use race condition in OpenShell sandbox filesystem writes that allows attackers to redirect writes outside the intended mount root. Attacker… CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2026-44112 2026-05-8 04:42 2026-05-7 Show GitHub Exploit DB Packet Storm
903 4.3 MEDIUM
Network 		openclaw openclaw OpenClaw before 2026.4.15 contains an arbitrary file read vulnerability in the QMD backend memory_get function that allows callers to read any Markdown files within the workspace root. Attackers with… CWE-183
 Permissive List of Allowed Inputs 		CVE-2026-44111 2026-05-8 04:42 2026-05-7 Show GitHub Exploit DB Packet Storm
904 8.8 HIGH
Network 		openclaw openclaw OpenClaw before 2026.4.15 contains an authorization bypass vulnerability in Matrix room control-command authorization that trusts DM pairing-store entries. Attackers with DM-paired sender IDs can exe… CWE-863
 Incorrect Authorization 		CVE-2026-44110 2026-05-8 04:41 2026-05-7 Show GitHub Exploit DB Packet Storm
905 9.8 CRITICAL
Network 		openclaw openclaw OpenClaw before 2026.4.15 contains an authentication bypass vulnerability in Feishu webhook and card-action validation that allows unauthenticated requests to reach command dispatch. Missing encryptK… CWE-1188
 Insecure Default Initialization of Resource 		CVE-2026-44109 2026-05-8 04:40 2026-05-7 Show GitHub Exploit DB Packet Storm
906 9.8 CRITICAL
Network 		openclaw openclaw OpenClaw before 2026.4.15 captures resolved bearer-auth configuration at startup, allowing revoked tokens to remain valid after SecretRef rotation. Gateway HTTP and WebSocket handlers fail to re-reso… CWE-672
 Operation on a Resource after Expiration or Release 		CVE-2026-43585 2026-05-8 04:36 2026-05-7 Show GitHub Exploit DB Packet Storm
907 8.8 HIGH
Network 		openclaw openclaw OpenClaw before 2026.4.10 contains an insufficient environment variable denylist vulnerability in its exec environment policy that allows operator-supplied overrides of high-risk interpreter startup … CWE-184
 Incomplete Blacklist 		CVE-2026-43584 2026-05-8 04:36 2026-05-7 Show GitHub Exploit DB Packet Storm
908 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nvmem: zynqmp_nvmem: Fix buffer size in DMA and memcpy Buffer size used in dma allocation and memcpy is wrong. It can lead to und… CWE-787
 Out-of-bounds Write 		CVE-2026-31743 2026-05-8 04:36 2026-05-2 Show GitHub Exploit DB Packet Storm
909 6.5 MEDIUM
Network 		openclaw openclaw OpenClaw versions 2026.4.10 before 2026.4.14 fail to persist session context during delivery queue recovery for media replay. Attackers can exploit recovered queued outbound media to bypass group too… CWE-862
 Missing Authorization 		CVE-2026-43583 2026-05-8 04:36 2026-05-7 Show GitHub Exploit DB Packet Storm
910 6.3 MEDIUM
Network 		openclaw openclaw OpenClaw before 2026.4.10 contains a server-side request forgery vulnerability in browser navigation policy that allows attackers to bypass hostname validation through DNS rebinding attacks. Attacker… CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2026-43582 2026-05-8 04:35 2026-05-7 Show GitHub Exploit DB Packet Storm