Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2761	7.5	重要 Network	mongoosejs	mongoose	mongoosejsのmongooseにおけるインジェクションに関する脆弱性	CWE-74 インジェクション	CVE-2026-42334	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

2762	7.5	重要 Network	Getarcane	Arcane	GetarcaneのArcaneにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-42461	2026-05-18 11:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

2763	8.1	重要 Network	FIT2CLOUD	SQLBot	FIT2CLOUDのSQLBotにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-42463	2026-05-18 11:30	2026-05-13	Show	GitHub Exploit DB Packet Storm

2764	7.8	重要 Local	マイクロソフト	Microsoft Office	マイクロソフトのMicrosoft Officeにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-42831	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

2765	5.5	警告 Local	マイクロソフト	Microsoft Word Microsoft Office Microsoft Excel	マイクロソフトのMicrosoft Excel等の複数製品におけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-42832	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

2766	7.5	重要 Network	Espressif Systems	ESP32 Arduino	Espressif SystemsのESP32 Arduinoにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2026-42855	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

2767	6.1	警告 Network	マイクロソフト	Microsoft Exchange Server	マイクロソフトのMicrosoft Exchange Serverにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42897	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

2768	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43286	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

2769	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43287	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

2770	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2026-43288	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345251	-	clam_anti-virus	clamav	libclamav in Clam AntiVirus 0.65 allows remote attackers to cause a denial of service (crash) via a uuencoded e-mail message with an invalid line length (e.g., a lowercase character), which causes an…	NVD-CWE-Other	CVE-2004-0270	2017-10-10 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

345252	-	realnetworks	realone_desktop_manager realone_enterprise_desktop realone_player	Directory traversal vulnerability in RealOne Player, RealOne Player 2.0, and RealOne Enterprise Desktop allows remote attackers to upload arbitrary files via an RMP file that contains .. (dot dot) se…	CWE-22 Path Traversal	CVE-2004-0273	2017-10-10 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

345253	-	eggheads	eggdrop_irc_bot	Share.mod in Eggheads Eggdrop IRC bot 1.6.10 through 1.6.15 can mistakenly assign STAT_OFFERED status to a bot that is not a sharebot, which allows remote attackers to use STAT_OFFERED to promote a b…	NVD-CWE-Other	CVE-2004-0274	2017-10-10 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

345254	-	ipswitch	imail	Buffer overflow in the Lightweight Directory Access Protocol (LDAP) daemon (iLDAP.exe 3.9.15.10) in Ipswitch IMail Server 8.03 allows remote attackers to cause a denial of service (crash) and execute…	NVD-CWE-Other	CVE-2004-0297	2017-10-10 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

345255	-	zonelabs	integrity zonealarm	Stack-based buffer overflow in the SMTP service support in vsmon.exe in Zone Labs ZoneAlarm before 4.5.538.001, ZoneLabs Integrity client 4.0 before 4.0.146.046, and 4.5 before 4.5.085, allows remote…	NVD-CWE-Other	CVE-2004-0309	2017-10-10 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

345256	-	ncipher	nshield	Unknown vulnerability in nCipher Hardware Security Modules (HSM) 1.67.x through 1.99.x allows local users to access secrets stored in the module's run-time memory via certain sequences of commands.	NVD-CWE-Other	CVE-2004-0320	2017-10-10 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

345257	-	software602	602pro_lan_suite	LAN SUITE Web Mail 602Pro allows remote attackers to gain sensitive information via the mail login form, which contains the path to the mail directory.	NVD-CWE-Other	CVE-2004-0336	2017-10-10 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

345258	-	netscreen	netscreen-sa_5000_series	Cross-site scripting (XSS) vulnerability in delhomepage.cgi in NetScreen-SA 5000 Series running firmware 3.3 Patch 1 (build 4797) allows remote authenticated users to execute arbitrary script as othe…	NVD-CWE-Other	CVE-2004-0347	2017-10-10 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

345259	-	seattle_lab_software	slmail_pro	Stack-based buffer overflow in Supervisor Report Center in SL Mail Pro 2.0.9 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a long HTTP sub-version.	NVD-CWE-Other	CVE-2004-0356	2017-10-10 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

345260	-	isc	dhcpd	ISC dhcrelay (dhcp-relay) 3.0rc9 and earlier, and possibly other versions, allows remote attackers to cause a denial of service (packet storm) via a certain BOOTP packet that is forwarded to a broadc…	NVD-CWE-Other	CVE-2003-0039	2017-10-10 10:30	2003-02-7	Show	GitHub Exploit DB Packet Storm