Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249091	10	危険	シスコシステムズ	-	Cisco IOS の PKI 機能における認証を回避される脆弱性	CWE-310 暗号の問題	CVE-2011-0935	2011-05-19 11:10	2011-04-14	Show	GitHub Exploit DB Packet Storm

249092	7.2	危険	IBM	-	IBM Lotus Domino のサーバコンソールにおける重要な情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2011-1520	2011-05-19 11:08	2011-03-25	Show	GitHub Exploit DB Packet Storm

249093	10	危険	IBM	-	IBM Lotus Domino のリモートコンソールにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-1519	2011-05-19 11:06	2011-03-25	Show	GitHub Exploit DB Packet Storm

249094	4.3	警告	Apache Software Foundation Steinar H. Gunderson	-	Steinar H. Gunderson mpm-itk Multi-Processing Module における権限を取得される脆弱性	CWE-16 環境設定	CVE-2011-1176	2011-05-19 11:04	2011-03-29	Show	GitHub Exploit DB Packet Storm

249095	4.9	警告	IBM Apache Software Foundation アップルサイバートラスト株式会社ヒューレット・パッカードターボリナックスオラクルレッドハット	-	Apache HTTP Server における AllowOverride ディレクティブの処理に関する権限昇格の脆弱性	CWE-16 環境設定	CVE-2009-1195	2011-05-19 09:46	2009-05-28	Show	GitHub Exploit DB Packet Storm

249096	4.3	警告	KDE project レッドハット	-	KDE SC の Konqueror 内にある KHTMLPart::htmlError 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1168	2011-05-18 18:30	2011-04-21	Show	GitHub Exploit DB Packet Storm

249097	4.3	警告	KDE project レッドハット	-	kdelibs の kio/kio/tcpslavebase.cpp における任意の SSL サーバになりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2011-1094	2011-05-18 18:26	2011-04-21	Show	GitHub Exploit DB Packet Storm

249098	5.8	警告	KDE project レッドハット	-	KDE SC の KGet 内にある KGetMetalink::File::isValidNameAttr 関数におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-1586	2011-05-18 18:25	2011-04-21	Show	GitHub Exploit DB Packet Storm

249099	9.3	危険	アドビシステムズ	-	複数の Adobe 製品の CoolType ライブラリにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0610	2011-05-18 18:24	2011-04-21	Show	GitHub Exploit DB Packet Storm

249100	5.5	警告	オラクル	-	Oracle PeopleSoft Enterprise HRMS における Global Payroll Core に関する脆弱性	CWE-noinfo 情報不足	CVE-2011-0861	2011-05-18 18:23	2011-04-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
191	4.3	MEDIUM Network	-	-	The asset dependency graph did not restrict nodes by the viewer's DAG read permissions: a user with read access to at least one DAG could browse the asset graph for any other asset in the deployment … New	CWE-1220 Insufficient Granularity of Access Control	CVE-2026-40690	2026-04-25 02:16	2026-04-24	Show	GitHub Exploit DB Packet Storm

192	4.3	MEDIUM Network	-	-	The authenticated /ui/dags endpoint did not enforce per-DAG access control on embedded Human-in-the-Loop (HITL) and TaskInstance records: a logged-in Airflow user with read access to at least one DAG… New	CWE-1220 Insufficient Granularity of Access Control	CVE-2026-38743	2026-04-25 02:16	2026-04-24	Show	GitHub Exploit DB Packet Storm

193	-		-	-	Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to version 8.2.6.4, the /config/ < service > /find-in-config endpoint in Roxy-WI fails to sanitize the use… New	CWE-78 OS Command	CVE-2026-33208	2026-04-25 02:16	2026-04-24	Show	GitHub Exploit DB Packet Storm

194	6.3	MEDIUM Network	-	-	Deserialization of Untrusted Data vulnerability in Apache DolphinScheduler RPC module. This issue affects Apache DolphinScheduler: Version >= 3.2.0 and < 3.3.1. Attackers who can access the Maste… New	CWE-502 Deserialization of Untrusted Data	CVE-2025-62233	2026-04-25 02:16	2026-04-24	Show	GitHub Exploit DB Packet Storm

195	6.5	MEDIUM Network	nimiq	nimiq_proof-of-stake	nimiq-transaction provides the transaction primitive to be used in Nimiq's Rust implementation. Prior to version 1.3.0, `HistoryTreeProof::verify` panics on a malformed proof where `history.len() != … New	CWE-617 Reachable Assertion	CVE-2026-34067	2026-04-25 02:12	2026-04-23	Show	GitHub Exploit DB Packet Storm

196	5.3	MEDIUM Network	nimiq	nimiq_proof-of-stake	nimiq-blockchain provides persistent block storage for Nimiq's Rust implementation. Prior to version 1.3.0, `HistoryStore::put_historic_txns` uses an `assert!` to enforce invariants about `HistoricTr… New	CWE-20 CWE-617 CWE-754 Improper Input Validation Reachable Assertion Improper Check for Unusual or Exceptional Conditions	CVE-2026-34066	2026-04-25 02:12	2026-04-23	Show	GitHub Exploit DB Packet Storm

197	7.5	HIGH Network	nimiq	nimiq_proof-of-stake	nimiq-primitives contains primitives (e.g., block, account, transaction) to be used in Nimiq's Rust implementation. Prior to version 1.3.0, an untrusted p2p peer can cause a node to panic by announci… New	CWE-252 CWE-755 Unchecked Return Value Improper Handling of Exceptional Conditions	CVE-2026-34065	2026-04-25 02:12	2026-04-23	Show	GitHub Exploit DB Packet Storm

198	8.2	HIGH Network	nimiq	nimiq_proof-of-stake	nimiq-account contains account primitives to be used in Nimiq's Rust implementation. Prior to version 1.3.0, `VestingContract::can_change_balance` returns `AccountError::InsufficientFunds` when `new_… New	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2026-34064	2026-04-25 02:12	2026-04-23	Show	GitHub Exploit DB Packet Storm

199	7.5	HIGH Network	nimiq	nimiq_proof-of-stake	Nimiq's network-libp2p is a Nimiq network implementation based on libp2p. Prior to version 1.3.0, `network-libp2p` discovery uses a libp2p `ConnectionHandler` state machine. the handler assumes there… New	CWE-617 Reachable Assertion	CVE-2026-34063	2026-04-25 02:12	2026-04-23	Show	GitHub Exploit DB Packet Storm

200	5.3	MEDIUM Network	nimiq	nimiq_proof-of-stake	nimiq-libp2p is a Nimiq network implementation based on libp2p. Prior to version 1.3.0, `MessageCodec::read_request` and `read_response` call `read_to_end()` on inbound substreams, so a remote peer c… New	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-34062	2026-04-25 02:11	2026-04-23	Show	GitHub Exploit DB Packet Storm