Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241401 4.3 警告 FFmpeg
Libav		 - FFmpeg および Libav の libavcodec におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3936 2012-08-22 12:29 2012-01-27 Show GitHub Exploit DB Packet Storm
241402 6.8 警告 FFmpeg
Libav		 - FFmpeg および Libav の libavcodec におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-3929 2012-08-22 12:19 2012-01-27 Show GitHub Exploit DB Packet Storm
241403 10 危険 アドビシステムズ - Windows および Mac OS X 上の Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-4160 2012-08-21 18:30 2012-08-14 Show GitHub Exploit DB Packet Storm
241404 10 危険 アドビシステムズ - Windows および Mac OS X 上の Adobe Reader および Acrobat におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1525 2012-08-21 18:16 2012-08-14 Show GitHub Exploit DB Packet Storm
241405 10 危険 アドビシステムズ - Windows および Mac OS X 上の Adobe Reader および Acrobat におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-2049 2012-08-21 18:14 2012-08-14 Show GitHub Exploit DB Packet Storm
241406 10 危険 アドビシステムズ - Windows および Mac OS X 上の Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-2050 2012-08-21 18:12 2012-08-14 Show GitHub Exploit DB Packet Storm
241407 10 危険 アドビシステムズ - Windows および Mac OS X 上の Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-2051 2012-08-21 18:11 2012-08-14 Show GitHub Exploit DB Packet Storm
241408 10 危険 アドビシステムズ - Windows および Mac OS X 上の Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-4147 2012-08-21 18:09 2012-08-14 Show GitHub Exploit DB Packet Storm
241409 10 危険 アドビシステムズ - Windows および Mac OS X 上の Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-4148 2012-08-21 18:07 2012-08-14 Show GitHub Exploit DB Packet Storm
241410 10 危険 アドビシステムズ - Windows および Mac OS X 上の Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-4149 2012-08-21 18:05 2012-08-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1341 6.5 MEDIUM
Network 		shellhub shellhub ShellHub is a centralized SSH gateway. Prior to 0.24.2, GET /api/sessions/:uid returns the full session object for any authenticated caller, without scoping by the caller's tenant. An authenticated u… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-44423 2026-05-16 02:16 2026-05-14 Show GitHub Exploit DB Packet Storm
1342 7.5 HIGH
Network 		zitadel zitadel ZITADEL is an open source identity management platform. From 2.71.11 to before 3.4.10 and 4.15.0, a vulnerability was discovered in Zitadel's LDAP identity provider implementation, which fails to pro… CWE-90
LDAP Injection 		CVE-2026-44671 2026-05-16 02:15 2026-05-15 Show GitHub Exploit DB Packet Storm
1343 6.5 MEDIUM
Network 		frappe erpnext ERPNext is a free and open source Enterprise Resource Planning tool. Prior to 15.102.0 and 16.11.0, certain endpoints failed to enforce proper authorization checks, allowing users to modify data beyo… CWE-862
 Missing Authorization 		CVE-2026-44448 2026-05-16 01:20 2026-05-14 Show GitHub Exploit DB Packet Storm
1344 9.1 CRITICAL
Network 		opnsense opnsense OPNsense is a FreeBSD based firewall and routing platform. Prior to 26.1.8, unsanitized user input is passed to the DHCP configuration of the configured interface, which is processed by a shell scrip… CWE-88
Argument Injection 		CVE-2026-45158 2026-05-16 01:19 2026-05-14 Show GitHub Exploit DB Packet Storm
1345 6.5 MEDIUM
Network 		opnsense opnsense OPNsense is a FreeBSD based firewall and routing platform. Prior to 26.1.7, a logic flaw in the OPNsense lockout_handler allows an unauthenticated attacker to continuously reset the authentication fa… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2026-44195 2026-05-16 01:06 2026-05-14 Show GitHub Exploit DB Packet Storm
1346 9.8 CRITICAL
Network 		apache tomcat Improper Input Validation vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M1 through 9.0.117, from 10.0.0… CWE-20
 Improper Input Validation  		CVE-2026-41293 2026-05-16 00:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1347 9.8 CRITICAL
Network 		apache tomcat DEPRECATED: Authentication Bypass Issues vulnerability in digest authentication in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, fr… CWE-592
 DEPRECATED: Authentication Bypass Issues 		CVE-2026-43512 2026-05-16 00:54 2026-05-13 Show GitHub Exploit DB Packet Storm
1348 7.5 HIGH
Network 		espressif arduino-esp32 arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. Prior to 3.3.8, the WebServer Digest authentication implementation in arduino-esp… CWE-287
NVD-CWE-noinfo
Improper Authentication 		CVE-2026-42855 2026-05-16 00:54 2026-05-13 Show GitHub Exploit DB Packet Storm
1349 7.5 HIGH
Network 		apache tomcat Improper Handling of Case Sensitivity vulnerability in LockOutRealm in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M1 … CWE-178
 Improper Handling of Case Sensitivity 		CVE-2026-43513 2026-05-16 00:53 2026-05-13 Show GitHub Exploit DB Packet Storm
1350 9.1 CRITICAL
Network 		apache tomcat Improper Authorization vulnerability when multiple method constraints define an HTTP method for the same extension in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21,… CWE-285
Improper Authorization 		CVE-2026-43515 2026-05-16 00:52 2026-05-13 Show GitHub Exploit DB Packet Storm