Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256511	7.5	危険	アップルサイバートラスト株式会社 Python Software Foundation サン・マイクロシステムズレッドハット	-	Python における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-2315	2010-01-19 15:48	2008-08-1	Show	GitHub Exploit DB Packet Storm

256512	7.5	危険	アップルサイバートラスト株式会社 Python Software Foundation サン・マイクロシステムズレッドハット	-	Python の zlib 拡張モジュールにおける任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2008-1721	2010-01-19 15:48	2008-04-10	Show	GitHub Exploit DB Packet Storm

256513	6.8	警告	アップルサイバートラスト株式会社 Python Software Foundation サン・マイクロシステムズレッドハット	-	Python の imageop.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-1679	2010-01-19 15:48	2008-04-22	Show	GitHub Exploit DB Packet Storm

256514	5.8	警告	アップルサイバートラスト株式会社 Python Software Foundation サン・マイクロシステムズレッドハット	-	Python の imageop モジュールにおける複数の整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2007-4965	2010-01-19 15:47	2007-09-18	Show	GitHub Exploit DB Packet Storm

256515	7.5	危険	アップル	-	Mac OS X 用の Java における任意のコードを実行される脆弱性	CWE-310 暗号の問題	CVE-2009-2843	2010-01-18 12:22	2009-12-3	Show	GitHub Exploit DB Packet Storm

256516	6.8	警告	アップル GNU Project サン・マイクロシステムズサイバートラスト株式会社レッドハット	-	GNU tar の contains_dot_dot() 関数におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-4131	2010-01-18 12:21	2007-08-23	Show	GitHub Exploit DB Packet Storm

256517	4.6	警告	IBM	-	IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4150	2010-01-15 14:10	2009-12-2	Show	GitHub Exploit DB Packet Storm

256518	2.1	注意	サン・マイクロシステムズ	-	Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-4080	2010-01-15 14:10	2009-11-24	Show	GitHub Exploit DB Packet Storm

256519	5	警告	サン・マイクロシステムズ	-	Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4075	2010-01-15 14:09	2009-11-23	Show	GitHub Exploit DB Packet Storm

256520	2.6	注意	オラクル	-	Oracle Application Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2010-01-14 15:01	2010-01-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
61	8.8	HIGH Network	mozilla	firefox thunderbird	Privilege escalation in the WebRTC: Audio/Video component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. New	CWE-269 Improper Privilege Management	CVE-2026-8972	2026-05-21 02:16	2026-05-19	Show	GitHub Exploit DB Packet Storm

62	8.8	HIGH Network	mozilla	firefox thunderbird	Privilege escalation in the Enterprise Policies component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. New	CWE-269 Improper Privilege Management	CVE-2026-8957	2026-05-21 02:16	2026-05-19	Show	GitHub Exploit DB Packet Storm

63	8.8	HIGH Network	mozilla	firefox thunderbird	Privilege escalation in the DOM: Workers component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. New	CWE-269 Improper Privilege Management	CVE-2026-8955	2026-05-21 02:16	2026-05-19	Show	GitHub Exploit DB Packet Storm

64	8.8	HIGH Network	mozilla	firefox thunderbird	Privilege escalation in the Application Update component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. New	CWE-269 Improper Privilege Management	CVE-2026-8952	2026-05-21 02:16	2026-05-19	Show	GitHub Exploit DB Packet Storm

65	-		-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid… New	-	CVE-2026-8342	2026-05-21 02:16	2026-05-21	Show	GitHub Exploit DB Packet Storm

66	7.1	HIGH Network	-	-	A flaw was found in Keycloak. A low-privilege user, with knowledge of user credentials and client ID, can bypass a security control intended to disable the implicit flow in OpenID Connect (OIDC) clie… New	CWE-472 External Control of Assumed-Immutable Web Parameter	CVE-2026-7571	2026-05-21 02:16	2026-05-19	Show	GitHub Exploit DB Packet Storm

67	7.5	HIGH Network	-	-	A session fixation vulnerability was found in Keycloak's login-actions endpoints. An unauthenticated attacker could exploit this flaw by pre-creating an authentication session and tricking a victim i… New	CWE-290 Authentication Bypass by Spoofing	CVE-2026-7507	2026-05-21 02:16	2026-05-19	Show	GitHub Exploit DB Packet Storm

68	8.1	HIGH Network	-	-	A flaw was found in Keycloak's URL validation logic during redirect operations. By crafting a malicious request, an attacker could bypass validation to redirect users to unauthorized URLs, potentiall… New	CWE-601 Open Redirect	CVE-2026-7504	2026-05-21 02:16	2026-05-19	Show	GitHub Exploit DB Packet Storm

69	7.5	HIGH Network	-	-	A flaw was found in Keycloak. A remote, unauthenticated attacker can send a specially crafted XML input to the Security Assertion Markup Language (SAML) endpoint. This malicious input can cause high … New	CWE-1286 Improper Validation of Syntactic Correctness of Input	CVE-2026-7307	2026-05-21 02:16	2026-05-19	Show	GitHub Exploit DB Packet Storm

70	6.8	MEDIUM Network	-	-	A flaw was found in Keycloak. An authenticated client could exploit an Insecure Direct Object Reference (IDOR) vulnerability in the Authorization Services Protection API endpoint. By knowing or obtai… New	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-4630	2026-05-21 02:16	2026-05-19	Show	GitHub Exploit DB Packet Storm