Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 2:16 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
281	9.8	緊急 Network	BMC Software	Control-M Managed File Transfer	BMC SoftwareのControl-M Managed File Transferにおけるハードコードされた認証情報の使用に関する脆弱性 New	CWE-798 ハードコードされた認証情報の使用	CVE-2026-23781	2026-04-30 12:14	2026-04-10	Show	GitHub Exploit DB Packet Storm

282	7.5	重要 Network	BMC Software	Control-M Managed File Transfer	BMC SoftwareのControl-M Managed File Transferにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-23782	2026-04-30 12:14	2026-04-10	Show	GitHub Exploit DB Packet Storm

283	9.9	緊急 Network	Doorman	Doorman	Doormanにおける権限管理に関する脆弱性 New	CWE-269 不適切な権限管理	CVE-2026-30269	2026-04-30 12:14	2026-04-20	Show	GitHub Exploit DB Packet Storm

284	7.5	重要 Network	PowerDNS	PowerDNS Recursor dnsdist PowerDNS Authoritative Server	PowerDNSのPowerDNS Authoritative Server等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33257	2026-04-30 12:14	2026-04-22	Show	GitHub Exploit DB Packet Storm

285	7.5	重要 Network	PowerDNS	PowerDNS Recursor dnsdist PowerDNS Authoritative Server	PowerDNSのPowerDNS Authoritative Server等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33260	2026-04-30 12:14	2026-04-22	Show	GitHub Exploit DB Packet Storm

286	8.8	重要 Network	litellm	litellm	LiteLLMにおける保護されていない代替チャネルに関する脆弱性 New	CWE-420 保護されていない代替チャネル	CVE-2026-40217	2026-04-30 12:14	2026-04-10	Show	GitHub Exploit DB Packet Storm

287	7.8	重要 Local	radare	radare2	radareのradare2におけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-40517	2026-04-30 12:14	2026-04-22	Show	GitHub Exploit DB Packet Storm

288	6.7	警告 Local	The GnuPG Project	Libgcrypt	The GnuPG ProjectのLibgcryptにおける境界外書き込みに関する脆弱性 New	CWE-787 境界外書き込み	CVE-2026-41989	2026-04-30 12:14	2026-04-23	Show	GitHub Exploit DB Packet Storm

289	9.8	緊急 Network	OFFIS	DCMTK	OFFISのDCMTKにおける複数の脆弱性 New	CWE-77 CWE-78	CVE-2026-5663	2026-04-30 12:14	2026-04-6	Show	GitHub Exploit DB Packet Storm

290	5.5	警告 Local	Angry IP Scanner	Angry IP Scanner	Angry IP Scannerにおける境界外書き込みに関する脆弱性 New	CWE-787 境界外書き込み	CVE-2018-25262	2026-04-30 12:14	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348301	-	ibm	tivoli_management_framework	Buffer overflow in web server for Tivoli Management Framework (TMF) Endpoint 3.6.x through 3.7.1, before Fixpack 2, allows remote attackers to cause a denial of service or execute arbitrary code via …	NVD-CWE-Other	CVE-2002-1011	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

348302	-	ibm	tivoli_management_framework	Buffer overflow in web server for Tivoli Management Framework (TMF) ManagedNode 3.6.x through 3.7.1 allows remote attackers to cause a denial of service or execute arbitrary code via a long HTTP GET …	NVD-CWE-Other	CVE-2002-1012	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

348303	-	inktomi	media-ixt traffic_edge traffic_server	Buffer overflow in traffic_manager for Inktomi Traffic Server 4.0.18 through 5.2.2, Traffic Edge 1.1.2 and 1.5.0, and Media-IXT 3.0.4 allows local users to gain root privileges via a long -path argum…	NVD-CWE-Other	CVE-2002-1013	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

348304	-	realnetworks	realjukebox_2 realjukebox_2_plus realone_player	Buffer overflow in RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary code via an RFS skin file whose skin.ini contains a long val…	NVD-CWE-Other	CVE-2002-1014	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

348305	-	realnetworks	realjukebox_2 realjukebox_2_plus realone_player	RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary script in the Local computer zone by inserting the script into the skin.ini fil…	NVD-CWE-Other	CVE-2002-1015	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

348306	-	adobe	digital_editions	Adobe eBook Reader allows a user to bypass restrictions for copy, print, lend, and give operations by backing up key data files, performing the operations, and restoring the original data files.	NVD-CWE-Other	CVE-2002-1016	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

348307	-	adobe	digital_editions	Adobe eBook Reader 2.1 and 2.2 allows a user to copy eBooks to other systems by using the backup feature, capturing the encryption Challenge, and using the appropriate hash function to generate the a…	NVD-CWE-Other	CVE-2002-1017	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

348308	-	working_resources_inc.	badblue	BadBlue server allows remote attackers to read restricted files, such as EXT.INI, via an HTTP request that contains a hex-encoded null byte.	NVD-CWE-Other	CVE-2002-1021	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

348309	-	working_resources_inc.	badblue	BadBlue server stores passwords in plaintext in the ext.ini file, which could allow local and possibly remote attackers to gain privileges.	NVD-CWE-Other	CVE-2002-1022	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm

348310	-	working_resources_inc.	badblue	BadBlue server allows remote attackers to cause a denial of service (crash) via an HTTP GET request without a URI.	NVD-CWE-Other	CVE-2002-1023	2008-09-6 05:29	2002-10-4	Show	GitHub Exploit DB Packet Storm