Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254891 6.8 警告 フェンリル株式会社 - ActiveGeckoBrowser における複数の脆弱性 CWE-Other
その他 		CVE-2010-2420 2010-06-14 12:01 2010-06-14 Show GitHub Exploit DB Packet Storm
254892 6.8 警告 サン・マイクロシステムズ
GNU Project
ターボリナックス
サイバートラスト株式会社
レッドハット		 - GNU tar および GNU cpio の rmt_read__ 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0624 2010-06-11 18:45 2010-03-15 Show GitHub Exploit DB Packet Storm
254893 3.5 注意 PostgreSQL.org
サイバートラスト株式会社
レッドハット		 - PostgreSQL における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0733 2010-06-9 16:54 2010-03-19 Show GitHub Exploit DB Packet Storm
254894 6.5 警告 PostgreSQL.org
サイバートラスト株式会社
レッドハット		 - PostgreSQL の bitsubstr 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2010-0442 2010-06-9 16:54 2010-02-2 Show GitHub Exploit DB Packet Storm
254895 6.8 警告 アップル - Java の window drawing 実装における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2010-0539 2010-06-7 17:58 2010-05-18 Show GitHub Exploit DB Packet Storm
254896 6.8 警告 アップル - Apple Mac OS X 上で稼働する Java における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0538 2010-06-7 17:58 2010-05-18 Show GitHub Exploit DB Packet Storm
254897 6.5 警告 PostgreSQL.org
サイバートラスト株式会社
ターボリナックス
サン・マイクロシステムズ
レッドハット		 - PostgreSQL におけるインデックスの処理に関する権限を取得される脆弱性 CWE-Other
その他 		CVE-2009-4136 2010-06-7 16:48 2009-12-15 Show GitHub Exploit DB Packet Storm
254898 - - コンソナ - Consona (旧 SupportSoft) Intelligent Assistance Suite (IAS) に複数の脆弱性 - - 2010-06-4 17:58 2010-05-13 Show GitHub Exploit DB Packet Storm
254899 7.5 危険 アップル
VMware
サン・マイクロシステムズ
ヒューレット・パッカード
レッドハット		 - JDK および JRE の Java プラグインにおける古い JRE バージョンで動作可能な脆弱性 CWE-DesignError
CVE-2009-1105 2010-06-4 15:54 2009-03-24 Show GitHub Exploit DB Packet Storm
254900 10 危険 日立 - Collaboration - Common Utility におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		- 2010-06-3 15:19 2010-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3861 7.3 HIGH
Network 		dlink dir-822_firmware A vulnerability was determined in D-Link DIR-822 A_101. The impacted element is the function system of the file /udhcpcd/dhcpd.c of the component udhcpd DHCP Service. This manipulation of the argumen… CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-7067 2026-04-30 23:09 2026-04-27 Show GitHub Exploit DB Packet Storm
3862 8.8 HIGH
Adjacent 		dlink dir-825_firmware A vulnerability was identified in D-Link DIR-825 3.00b32. This affects the function NMBD_process of the file sserver.c of the component nmbd. Such manipulation leads to buffer overflow. The attack ca… CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error') 
Classic Buffer Overflow 		CVE-2026-7068 2026-04-30 23:08 2026-04-27 Show GitHub Exploit DB Packet Storm
3863 8.0 HIGH
Adjacent 		dlink dir-825_firmware A security flaw has been discovered in D-Link DIR-825 up to 3.00b32. This impacts the function AddPortMapping of the file upnpsoap.c of the component miniupnpd. Performing a manipulation of the argum… CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error') 
Classic Buffer Overflow 		CVE-2026-7069 2026-04-30 23:08 2026-04-27 Show GitHub Exploit DB Packet Storm
3864 7.8 HIGH
Local 		openclaw openclaw OpenClaw before 2026.4.8 contains a privilege escalation vulnerability allowing previously paired nodes to reconnect with exec-capable commands without operator.admin scope requirement. Attackers can… CWE-863
 Incorrect Authorization 		CVE-2026-42432 2026-04-30 23:06 2026-04-29 Show GitHub Exploit DB Packet Storm
3865 8.1 HIGH
Network 		openclaw openclaw OpenClaw before 2026.4.8 contains a security bypass vulnerability in node.invoke(browser.proxy) that allows mutation of persistent browser profiles. Attackers can exploit this path to circumvent the … CWE-863
 Incorrect Authorization 		CVE-2026-42431 2026-04-30 23:06 2026-04-29 Show GitHub Exploit DB Packet Storm
3866 7.1 HIGH
Network 		openclaw openclaw OpenClaw before 2026.4.8 contains a privilege escalation vulnerability in the gateway plugin HTTP authentication mechanism that widens identity-bearing operator.read requests into runtime operator.wr… CWE-863
 Incorrect Authorization 		CVE-2026-42429 2026-04-30 23:06 2026-04-29 Show GitHub Exploit DB Packet Storm
3867 6.5 MEDIUM
Network 		openclaw openclaw OpenClaw before 2026.4.8 contains a server-side request forgery vulnerability in Playwright redirect handling that allows attackers to bypass strict SSRF checks. Attackers can exploit request-time na… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-42430 2026-04-30 23:05 2026-04-29 Show GitHub Exploit DB Packet Storm
3868 7.1 HIGH
Network 		openclaw openclaw OpenClaw versions before 2026.4.8 fail to enforce integrity verification on downloaded plugin archives. Attackers can install malicious or tampered plugin packages without detection, compromising the… CWE-353
 Missing Support for Integrity Check 		CVE-2026-42428 2026-04-30 23:05 2026-04-29 Show GitHub Exploit DB Packet Storm
3869 5.3 MEDIUM
Local 		openclaw openclaw OpenClaw before 2026.4.8 contains a remote code execution vulnerability caused by missing environment variable denylist entries for HGRCPATH, CARGO_BUILD_RUSTC_WRAPPER, RUSTC_WRAPPER, and MAKEFLAGS. … CWE-184
 Incomplete Blacklist 		CVE-2026-42427 2026-04-30 23:05 2026-04-29 Show GitHub Exploit DB Packet Storm
3870 5.0 MEDIUM
Local 		openclaw openclaw OpenClaw before 2026.4.8 treats shared reply MEDIA paths as trusted, allowing crafted references to trigger cross-channel local file exfiltration. Attackers can exploit this by crafting malicious sha… CWE-73
 External Control of File Name or Path 		CVE-2026-42424 2026-04-30 23:05 2026-04-29 Show GitHub Exploit DB Packet Storm