Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2761 7.5 重要
Network 		Getarcane Arcane GetarcaneのArcaneにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-42461 2026-05-18 11:30 2026-05-9 Show GitHub Exploit DB Packet Storm
2762 8.1 重要
Network 		FIT2CLOUD SQLBot FIT2CLOUDのSQLBotにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-42463 2026-05-18 11:30 2026-05-13 Show GitHub Exploit DB Packet Storm
2763 7.8 重要
Local 		マイクロソフト Microsoft Office マイクロソフトのMicrosoft Officeにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-42831 2026-05-18 11:30 2026-05-12 Show GitHub Exploit DB Packet Storm
2764 5.5 警告
Local 		マイクロソフト Microsoft Word
Microsoft Office
Microsoft Excel 		マイクロソフトのMicrosoft Excel等の複数製品におけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-42832 2026-05-18 11:30 2026-05-12 Show GitHub Exploit DB Packet Storm
2765 7.5 重要
Network 		Espressif Systems ESP32 Arduino Espressif SystemsのESP32 Arduinoにおける認証に関する脆弱性 CWE-287
CWE-noinfo
CVE-2026-42855 2026-05-18 11:30 2026-05-12 Show GitHub Exploit DB Packet Storm
2766 6.1 警告
Network 		マイクロソフト Microsoft Exchange Server マイクロソフトのMicrosoft Exchange Serverにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42897 2026-05-18 11:30 2026-05-14 Show GitHub Exploit DB Packet Storm
2767 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-43286 2026-05-18 11:29 2026-05-8 Show GitHub Exploit DB Packet Storm
2768 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-43287 2026-05-18 11:29 2026-05-8 Show GitHub Exploit DB Packet Storm
2769 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける初期化されていないリソースの使用に関する脆弱性 CWE-908
初期化されていないリソースの使用 		CVE-2026-43288 2026-05-18 11:29 2026-05-8 Show GitHub Exploit DB Packet Storm
2770 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-43289 2026-05-18 11:29 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345331 - stalker communigate_pro POP3 daemon in Stalker CommuniGate Pro 3.3.2 generates different error messages for invalid usernames versus invalid passwords, which allows remote attackers to determine valid email addresses on the… NVD-CWE-Other
CVE-2000-1002 2017-10-10 10:29 2000-12-11 Show GitHub Exploit DB Packet Storm
345332 - microsoft windows_95
windows_98
windows_98se 		NETBIOS client in Windows 95 and Windows 98 allows a remote attacker to cause a denial of service by changing a file sharing service to return an unknown driver type, which causes the client to crash. NVD-CWE-Other
CVE-2000-1003 2017-10-10 10:29 2000-12-11 Show GitHub Exploit DB Packet Storm
345333 - openbsd openbsd Format string vulnerability in OpenBSD photurisd allows local users to execute arbitrary commands via a configuration file directory name that contains formatting characters. NVD-CWE-Other
CVE-2000-1004 2017-10-10 10:29 2000-12-11 Show GitHub Exploit DB Packet Storm
345334 - extropia extropia_webstore Directory traversal vulnerability in html_web_store.cgi and web_store.cgi CGI programs in eXtropia WebStore allows remote attackers to read arbitrary files via a .. (dot dot) attack on the page param… NVD-CWE-Other
CVE-2000-1005 2017-10-10 10:29 2000-12-11 Show GitHub Exploit DB Packet Storm
345335 - symantec i-gear I-gear 3.5.7 and earlier does not properly process log entries in which a URL is longer than 255 characters, which allows an attacker to cause reporting errors. NVD-CWE-Other
CVE-2000-1007 2017-10-10 10:29 2000-12-11 Show GitHub Exploit DB Packet Storm
345336 - openbsd
redhat 		openbsd
linux 		Format string vulnerability in talkd in OpenBSD and possibly other BSD-based OSes allows remote attackers to execute arbitrary commands via a user name that contains format characters. NVD-CWE-Other
CVE-2000-1010 2017-10-10 10:29 2000-12-11 Show GitHub Exploit DB Packet Storm
345337 - freebsd freebsd Buffer overflow in catopen() function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to gain root privileges via a long environmental variable. NVD-CWE-Other
CVE-2000-1011 2017-10-10 10:29 2000-12-11 Show GitHub Exploit DB Packet Storm
345338 - sco unixware Format string vulnerability in the search97.cgi CGI script in SCO help http server for Unixware 7 allows remote attackers to execute arbitrary commands via format characters in the queryText paramete… NVD-CWE-Other
CVE-2000-1014 2017-10-10 10:29 2000-12-11 Show GitHub Exploit DB Packet Storm
345339 - suse suse_linux The default configuration of Apache (httpd.conf) on SuSE 6.4 includes an alias for the /usr/doc directory, which allows remote attackers to read package documentation and obtain system configuration … NVD-CWE-Other
CVE-2000-1016 2017-10-10 10:29 2000-12-11 Show GitHub Exploit DB Packet Storm
345340 - mendel_cooper shred shred 1.0 file wiping utility does not properly open a file for overwriting or flush its buffers, which prevents shred from properly replacing the file's data and allows local users to recover the fi… NVD-CWE-Other
CVE-2000-1018 2017-10-10 10:29 2000-12-11 Show GitHub Exploit DB Packet Storm