Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239291 10 危険 オラクル - Oracle E-Business Suite における脆弱性 CWE-noinfo
情報不足 		CVE-2007-2127 2012-09-25 16:47 2007-04-17 Show GitHub Exploit DB Packet Storm
239292 10 危険 オラクル - Oracle E-Business Suite における脆弱性 - CVE-2007-2126 2012-09-25 16:47 2007-04-17 Show GitHub Exploit DB Packet Storm
239293 10 危険 オラクル - Oracle Collaboration Suite の Collaborative Workspace における脆弱性 - CVE-2007-2125 2012-09-25 16:47 2007-04-17 Show GitHub Exploit DB Packet Storm
239294 7.5 危険 kai content management system - K-CMS の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2106 2012-09-25 16:47 2007-04-18 Show GitHub Exploit DB Packet Storm
239295 7.5 危険 monkey cms - Monkey CMS の admin/index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2105 2012-09-25 16:47 2007-04-18 Show GitHub Exploit DB Packet Storm
239296 6.8 警告 my little homepage - my little weblog の weblog.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2102 2012-09-25 16:47 2007-04-18 Show GitHub Exploit DB Packet Storm
239297 6.8 警告 openconcept - OpenConcept Back-End CMS の htdocs/php.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2099 2012-09-25 16:47 2007-04-18 Show GitHub Exploit DB Packet Storm
239298 7.5 危険 hinton design - Hinton Design における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2096 2012-09-25 16:47 2007-04-18 Show GitHub Exploit DB Packet Storm
239299 7.5 危険 myspeach - MySpeach の chat.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2095 2012-09-25 16:47 2007-04-18 Show GitHub Exploit DB Packet Storm
239300 7.5 危険 limesoft - LS Simple Guestbook の index.php における任意の PHP コードを挿入される脆弱性 - CVE-2007-2093 2012-09-25 16:47 2007-04-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2161 4.4 MEDIUM
Local 		- - When BIG-IP DNS is provisioned, a vulnerability exists in the gtm_add and bigip_add iControl REST commands that return the ssh-password parameter in cleartext in the iControl REST response and is als… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2026-28758 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2162 8.7 HIGH
Network 		- - A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at least the Certificate Manager role can modify configuration objects that allow running ar… CWE-250
 Execution with Unnecessary Privileges 		CVE-2026-32643 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2163 8.7 HIGH
Network 		- - A vulnerability exists in BIG-IP scripted monitors that may allow an authenticated attacker with the Resource Administrator or Administrator role to execute arbitrary system commands with higher priv… CWE-250
 Execution with Unnecessary Privileges 		CVE-2026-32673 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2164 5.3 MEDIUM
Network 		- - When Bidirectional Forwarding Detection (BFD) is configured in Static and Dynamic routing protocols, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to stop processing BFD pack… CWE-410
 Insufficient Resource Pool 		CVE-2026-34019 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2165 8.7 HIGH
Network 		- - When running in Appliance mode, an authenticated remote command injection vulnerability exists in an undisclosed iControl REST endpoint. A successful exploit can allow the attacker to cross a securit… CWE-78
OS Command  		CVE-2026-34176 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2166 6.5 MEDIUM
Network 		- - An authenticated iControl SOAP user may be able to obtain information of other accounts.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated. CWE-266
 Incorrect Privilege Assignment 		CVE-2026-35062 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2167 7.5 HIGH
Network 		- - When the BIG-IP Configuration utility is configured to use Lightweight Directory Access Protocol (LDAP) authentication, undisclosed traffic can cause the httpd process to exhaust the available file d… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2026-39455 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2168 7.5 HIGH
Network 		- - When a BIG-IP DNS profile enabled with DNS cache is configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate.  Note: Software versions which… CWE-824
 Access of Uninitialized Pointer 		CVE-2026-39458 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2169 7.2 HIGH
Network 		- - A vulnerability exists in iControl REST and the TMOS Shell (tmsh) where a highly privileged, authenticated attacker with at least the Manager role can create configuration objects that allow running … CWE-272
 Least Privilege Violation 		CVE-2026-39459 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2170 7.5 HIGH
Network 		- - When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate.  Note: Software versions which have reached End o… CWE-252
 Unchecked Return Value 		CVE-2026-40060 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm