Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252251 6.4 警告 ターボリナックス
Timo Sirainen		 - Dovecot の ACL プラグインにおけるメールボックスを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3304 2011-07-4 08:32 2010-07-24 Show GitHub Exploit DB Packet Storm
252252 5.8 警告 レッドハット - TigerVNC の vncviewer コンポネント内にある CSecurityTLS::processMsg 関数における TLS VNC サーバを偽造される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1775 2011-07-4 08:30 2011-05-26 Show GitHub Exploit DB Packet Storm
252253 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-2128 2011-07-1 15:32 2011-06-14 Show GitHub Exploit DB Packet Storm
252254 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-2127 2011-07-1 15:31 2011-06-14 Show GitHub Exploit DB Packet Storm
252255 9.3 危険 アドビシステムズ - Adobe Shockwave Player におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2126 2011-07-1 15:30 2011-06-14 Show GitHub Exploit DB Packet Storm
252256 9.3 危険 アドビシステムズ - Adobe Shockwave Player の Dirapix.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2125 2011-07-1 10:19 2011-06-14 Show GitHub Exploit DB Packet Storm
252257 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-2124 2011-07-1 10:17 2011-06-14 Show GitHub Exploit DB Packet Storm
252258 9.3 危険 アドビシステムズ - Adobe Shockwave Player の Shockwave 3D Asset x32 コンポーネントにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-2123 2011-07-1 10:15 2011-06-14 Show GitHub Exploit DB Packet Storm
252259 9.3 危険 アドビシステムズ - Adobe Shockwave Player の Dirapi.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-2122 2011-07-1 10:14 2011-06-14 Show GitHub Exploit DB Packet Storm
252260 9.3 危険 アドビシステムズ - Adobe Shockwave Player における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-2121 2011-06-30 10:59 2011-06-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4291 6.5 MEDIUM
Network 		- - The API function `ssh_get_hexa()` is vulnerable, when 0-lenght input is provided to this function. This function is used internally in `ssh_get_fingerprint_hash()` and `ssh_print_hexa()` (deprecated)… CWE-124
Buffer Underflow 		CVE-2026-0966 2026-04-25 08:16 2026-03-27 Show GitHub Exploit DB Packet Storm
4292 6.5 MEDIUM
Network 		- - La función API 'ssh_get_hexa()' es vulnerable cuando se proporciona una entrada de longitud 0 a esta función. Esta función se utiliza internamente en 'ssh_get_fingerprint_hash()' y 'ssh_print_hexa()'… CWE-124
Buffer Underflow 		CVE-2026-0966 2026-04-25 08:16 2026-03-27 Show GitHub Exploit DB Packet Storm
4293 3.7 LOW
Network 		- - A flaw was found in glib. Missing validation of offset and count parameters in the g_buffered_input_stream_peek() function can lead to an integer overflow during length calculation. When specially cr… CWE-190
 Integer Overflow or Wraparound 		CVE-2026-0988 2026-04-25 06:16 2026-01-21 Show GitHub Exploit DB Packet Storm
4294 3.7 LOW
Network 		- - Se encontró una vulnerabilidad en glib. La falta de validación de los parámetros offset y count en la función g_buffered_input_stream_peek() puede conducir a un desbordamiento de entero durante el cá… CWE-190
 Integer Overflow or Wraparound 		CVE-2026-0988 2026-04-25 06:16 2026-01-21 Show GitHub Exploit DB Packet Storm
4295 6.5 MEDIUM
Network 		linuxfoundation tekton_pipelines Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. From 1.0.0 to 1.10.0, the Tekton Pipelines git resolver in API mode sends the system-configured Git API toke… CWE-201
NVD-CWE-noinfo
 Insertion of Sensitive Information Into Sent Data 		CVE-2026-40161 2026-04-25 05:55 2026-04-22 Show GitHub Exploit DB Packet Storm
4296 7.5 HIGH
Network 		signalk signal_k_server Signal K Server is a server application that runs on a central hub in a boat. Versions prior to 2.25.0 are vulnerable to an unauthenticated Regular Expression Denial of Service (ReDoS) attack within … CWE-400
CWE-1333
 Uncontrolled Resource Consumption
 Inefficient Regular Expression Complexity 		CVE-2026-39320 2026-04-25 05:51 2026-04-21 Show GitHub Exploit DB Packet Storm
4297 7.1 HIGH
Local 		craigjbass clearancekit ClearanceKit intercepts file-system access events on macOS and enforces per-process access policies. Prior to 5.0.5, ClearanceKit incorrectly treats a process with an empty Team ID and a non-empty Si… CWE-863
 Incorrect Authorization 		CVE-2026-40599 2026-04-25 05:50 2026-04-22 Show GitHub Exploit DB Packet Storm
4298 4.4 MEDIUM
Local 		craigjbass clearancekit ClearanceKit intercepts file-system access events on macOS and enforces per-process access policies. Prior to 5.0.6, the opfilter Endpoint Security system extension (bundle ID uk.craigbass.clearancek… CWE-693
 Protection Mechanism Failure 		CVE-2026-40604 2026-04-25 05:49 2026-04-22 Show GitHub Exploit DB Packet Storm
4299 8.8 HIGH
Network 		goshs goshs goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.6, goshs contains an SFTP root escape caused by prefix-based path validation. An authenticated SFTP user can read from and write to file… CWE-22
Path Traversal 		CVE-2026-40876 2026-04-25 05:38 2026-04-22 Show GitHub Exploit DB Packet Storm
4300 5.5 MEDIUM
Local 		hkuds openharness OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers to read sensitive files by exploiting incomplete path normalization in the permission checker. Attac… CWE-863
 Incorrect Authorization 		CVE-2026-40515 2026-04-25 05:34 2026-04-18 Show GitHub Exploit DB Packet Storm