Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 26, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 2931 | 7.2 |
重要
Network |
Amazon.com, Inc. | Amazon ECS container agent | Amazon.com, Inc.のAmazon ECS container agentにおけるOS コマンドインジェクションの脆弱性 |
CWE-78
OSコマンド・インジェクション |
CVE-2026-7461 | 2026-05-7 11:29 | 2026-04-30 | Show | GitHub Exploit DB Packet Storm |
| 2932 | 6.5 |
警告
Network |
Apache Software Foundation | Apache HTTP Server | Apache Software FoundationのApache HTTP ServerにおけるHTTPレスポンスの分割に関する脆弱性 |
CWE-443 CWE-Other |
CVE-2026-33523 | 2026-05-7 11:29 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 2933 | 3.3 |
低
Local |
Uutils | uutils coreutils | Uutilsのuutils coreutilsにおける不適切な短絡評価に関する脆弱性 |
CWE-768
不適切な短絡評価 |
CVE-2026-35378 | 2026-05-7 11:29 | 2026-04-22 | Show | GitHub Exploit DB Packet Storm |
| 2934 | 7.5 |
重要
Network |
- | 4D SASの4D ServerにおけるXML 外部エンティティの脆弱性 |
CWE-611
XML 外部エンティティ参照の不適切な制限 |
CVE-2024-39847 | 2026-05-7 11:29 | 2026-04-30 | Show | GitHub Exploit DB Packet Storm | |
| 2935 | 9.1 |
緊急
Network |
rti | RTI Connext Professional | rtiのRTI Connext ProfessionalにおけるXML 外部エンティティの脆弱性 |
CWE-611
XML 外部エンティティ参照の不適切な制限 |
CVE-2025-14543 | 2026-05-7 11:29 | 2026-04-30 | Show | GitHub Exploit DB Packet Storm |
| 2936 | 7.5 |
重要
Network |
XWiki | CryptPad | XWikiのCryptPadにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 |
CWE-770
制限またはスロットリング無しのリソースの割り当て |
CVE-2025-51846 | 2026-05-7 11:29 | 2026-04-30 | Show | GitHub Exploit DB Packet Storm |
| 2937 | 6.4 |
警告
Local |
レッドハット | process automation manager | レッドハットのprocess automation managerにおける不適切なデフォルトパーミッションに関する脆弱性 |
CWE-276
不適切なデフォルトパーミッション |
CVE-2025-58713 | 2026-05-7 11:29 | 2026-04-8 | Show | GitHub Exploit DB Packet Storm |
| 2938 | 4.8 |
警告
Network |
GNU Project | GNU Wget2 | GNU ProjectのGNU Wget2における入力確認に関する脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2026-1858 | 2026-05-7 11:28 | 2026-04-29 | Show | GitHub Exploit DB Packet Storm |
| 2939 | 6.5 |
警告
Adjacent |
シスコシステムズ |
Cisco Firepower Threat Defense ソフトウェア Adaptive Security Appliance (ASA) Software |
シスコシステムズのAdaptive Security Appliance (ASA) Software等の複数製品における範囲外のポインタオフセットの使用に関する脆弱性 |
CWE-823
範囲外のポインタオフセットの使用 |
CVE-2026-20022 | 2026-05-7 11:28 | 2026-03-4 | Show | GitHub Exploit DB Packet Storm |
| 2940 | 6.5 |
警告
Adjacent |
シスコシステムズ |
Cisco Firepower Threat Defense ソフトウェア Adaptive Security Appliance (ASA) Software |
シスコシステムズのAdaptive Security Appliance (ASA) Software等の複数製品における境界外書き込みに関する脆弱性 |
CWE-787
境界外書き込み |
CVE-2026-20023 | 2026-05-7 11:28 | 2026-03-4 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 26, 2026, 4:05 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 346171 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Apache for Apple Mac OS X 10.2.8 and 10.3.6 allows remote attackers to read files and resource fork content via HTTP requests to certain special file names related to multiple data streams in HFS+, w… |
NVD-CWE-Other
|
CVE-2004-1084 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 346172 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Human Interface Toolbox (HIToolBox) for Apple Mac 0S X 10.3.6 allows local users to exit applications via the force-quit key combination, even when the system is running in kiosk mode. |
NVD-CWE-Other
|
CVE-2004-1085 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 346173 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Buffer overflow in PSNormalizer for Apple Mac OS X 10.3.6 allows remote attackers to execute arbitrary code via a crafted PostScript input file. |
NVD-CWE-Other
|
CVE-2004-1086 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 346174 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Terminal for Apple Mac OS X 10.3.6 may indicate that "Secure Keyboard Entry" is enabled even when it is not, which could result in a false sense of security for the user. |
NVD-CWE-Other
|
CVE-2004-1087 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 346175 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Postfix server for Apple Mac OS X 10.3.6, when using CRAM-MD5, allows remote attackers to send mail without authentication by replaying authentication information. |
NVD-CWE-Other
|
CVE-2004-1088 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 346176 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Unknown vulnerability in Apple Mac OS X 10.3.6 server, when using Kerberos authentication and Cyrus IMAP allows local users to access mailboxes of other users. |
NVD-CWE-Other
|
CVE-2004-1089 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 346177 | - |
midnight_commander debian gentoo redhat suse turbolinux |
midnight_commander debian_linux linux enterprise_linux linux_advanced_workstation suse_linux turbolinux_server turbolinux_workstation |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "a corrupt section header." |
NVD-CWE-Other
|
CVE-2004-1090 | 2017-07-11 10:30 | 2005-04-14 | Show | GitHub Exploit DB Packet Storm | |
| 346178 | - |
midnight_commander debian gentoo redhat suse turbolinux |
midnight_commander debian_linux linux enterprise_linux linux_advanced_workstation suse_linux turbolinux_server turbolinux_workstation |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by triggering a null dereference. |
NVD-CWE-Other
|
CVE-2004-1091 | 2017-07-11 10:30 | 2005-04-14 | Show | GitHub Exploit DB Packet Storm | |
| 346179 | - |
midnight_commander debian gentoo redhat suse turbolinux |
midnight_commander debian_linux linux enterprise_linux linux_advanced_workstation suse_linux turbolinux_server turbolinux_workstation |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by causing mc to free unallocated memory. |
NVD-CWE-Other
|
CVE-2004-1092 | 2017-07-11 10:30 | 2005-04-14 | Show | GitHub Exploit DB Packet Storm | |
| 346180 | - |
midnight_commander debian gentoo redhat suse turbolinux |
midnight_commander debian_linux linux enterprise_linux linux_advanced_workstation suse_linux turbolinux_server turbolinux_workstation |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "use of already freed memory." |
NVD-CWE-Other
|
CVE-2004-1093 | 2017-07-11 10:30 | 2005-04-14 | Show | GitHub Exploit DB Packet Storm |