Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2611	8.8	重要 Network	Apache Software Foundation	Apache NiFi	Apache Software FoundationのApache NiFiにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-39816	2026-05-11 11:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

2612	8.2	重要 Network	Quarkus	Quarkus	Quarkusにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-39852	2026-05-11 11:10	2026-05-5	Show	GitHub Exploit DB Packet Storm

2613	4.8	警告 Network	Linux Containers	Incus	Linux ContainersのIncusにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-40243	2026-05-11 11:10	2026-05-6	Show	GitHub Exploit DB Packet Storm

2614	7.5	重要 Network	Gotenberg, Inc.	Gotenberg	TheCodingMachineのGotenbergにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-40280	2026-05-11 11:10	2026-05-5	Show	GitHub Exploit DB Packet Storm

2615	8.8	重要 Network	Math.js	Math.js	Math.jsにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性	CWE-915 動的に決定されたオブジェクト属性の不適切に制御された変更	CVE-2026-41139	2026-05-11 11:10	2026-05-7	Show	GitHub Exploit DB Packet Storm

2616	8.8	重要 Network	OpenEXR	OpenEXR	OpenEXRにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-41142	2026-05-11 11:10	2026-05-7	Show	GitHub Exploit DB Packet Storm

2617	7.7	重要 Network	Istio	Istio	Istioにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-41413	2026-05-11 11:09	2026-05-7	Show	GitHub Exploit DB Packet Storm

2618	8.1	重要 Network	Mervin Praison (MervinPraison)	PraisonAI	Mervin Praison (MervinPraison)のPraisonAI等の複数製品におけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-41496	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

2619	9.8	緊急 Network	Mervin Praison (MervinPraison)	PraisonAI	Mervin Praison (MervinPraison)のPraisonAIにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-41497	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

2620	9.8	緊急 Network	Electerm project	Electerm	Electerm projectのElectermにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-41500	2026-05-11 11:09	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345651	-	powerdns	powerdns	The recursor in PowerDNS before 3.0.1 allows remote attackers to cause a denial of service (application crash) via malformed EDNS0 packets.	CWE-399 Resource Management Errors	CVE-2006-2069	2017-07-20 10:31	2006-04-27	Show	GitHub Exploit DB Packet Storm

345652	-	delegate	delegate	Multiple unspecified vulnerabilities in DeleGate 9.x before 9.0.6 and 8.x before 8.11.6 allow remote attackers to cause a denial of service via crafted DNS responses messages that cause (1) a buffer …	NVD-CWE-Other	CVE-2006-2072	2017-07-20 10:31	2006-04-28	Show	GitHub Exploit DB Packet Storm

345653	-	isc	bind	Unspecified vulnerability in ISC BIND allows remote attackers to cause a denial of service via a crafted DNS message with a "broken" TSIG, as demonstrated by the OUSPG PROTOS DNS test suite.	NVD-CWE-Other	CVE-2006-2073	2017-07-20 10:31	2006-04-28	Show	GitHub Exploit DB Packet Storm

345654	-	juniper	junose	Unspecified vulnerability in Juniper Networks JUNOSe E-series routers before 7-1-1 has unknown impact and remote attack vectors related to the DNS "client code," as demonstrated by the OUSPG PROTOS D…	NVD-CWE-Other	CVE-2006-2074	2017-07-20 10:31	2006-04-28	Show	GitHub Exploit DB Packet Storm

345655	-	don_moore	mydns	Unspecified vulnerability in MyDNS 1.1.0 allows remote attackers to cause a denial of service via a crafted DNS message, aka "Query-of-death," as demonstrated by the OUSPG PROTOS DNS test suite.	NVD-CWE-Other	CVE-2006-2075	2017-07-20 10:31	2006-04-28	Show	GitHub Exploit DB Packet Storm

345656	-	pdnsd	pdnsd	Memory leak in Paul Rombouts pdnsd before 1.2.4 allows remote attackers to cause a denial of service (memory consumption) via a DNS query with an unsupported (1) QTYPE or (2) QCLASS, as demonstrated …	NVD-CWE-Other	CVE-2006-2076	2017-07-20 10:31	2006-04-28	Show	GitHub Exploit DB Packet Storm

345657	-	pdnsd	pdnsd	Buffer overflow in Paul Rombouts pdnsd before 1.2.4 has unknown impact and attack vectors. NOTE: this issue might be related to the OUSPG PROTOS DNS test suite.	NVD-CWE-Other	CVE-2006-2077	2017-07-20 10:31	2006-04-28	Show	GitHub Exploit DB Packet Storm

345658	-	furukawa_electric	fitelnet mucho-ev_pk	Multiple unspecified vulnerabilities in multiple FITELnet products, including FITELnet-F40, F80, F100, F120, F1000, and E20/E30, allow remote attackers to cause a denial of service via crafted DNS me…	NVD-CWE-Other	CVE-2006-2078	2017-07-20 10:31	2006-04-28	Show	GitHub Exploit DB Packet Storm

345659	-	andrew_tridgell	rsync	Integer overflow in the receive_xattr function in the extended attributes patch (xattr.c) for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that t…	NVD-CWE-Other	CVE-2006-2083	2017-07-20 10:31	2006-04-29	Show	GitHub Exploit DB Packet Storm

345660	-	hitachi	groupmax_integrated_desktop groupmax_mail groupmax_world_wide_web groupmax_world_wide_web_desktop	The Gmax Mail client in Hitachi Groupmax before 20060426 allows remote attackers to cause a denial of service (application hang or erroneous behavior) via an attachment with an MS-DOS device filename.	NVD-CWE-Other	CVE-2006-2087	2017-07-20 10:31	2006-04-29	Show	GitHub Exploit DB Packet Storm