Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2971	3.5	低 Physics	Imagination Technologies Limited	GPU DDK	Imagination Technologies LimitedのGPU DDKにおけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2025-58409	2026-02-2 19:24	2026-01-13	Show	GitHub Exploit DB Packet Storm

2972	8.8	重要 Local	Imagination Technologies Limited	GPU DDK	Imagination Technologies LimitedのGPU DDKにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2025-58411	2026-02-2 19:23	2026-01-13	Show	GitHub Exploit DB Packet Storm

2973	7.5	重要 Network	EMQX	nanomq	EMQXのnanomqにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2025-59946	2026-02-2 19:23	2025-12-27	Show	GitHub Exploit DB Packet Storm

2974	9	緊急 Network	EMQX	nanomq	EMQXのnanomqにおける古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2025-59947	2026-02-2 19:23	2025-12-15	Show	GitHub Exploit DB Packet Storm

2975	7.5	重要 Network	The Go Project	Go	The Go ProjectのGoにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2025-61723	2026-02-2 19:23	2025-10-29	Show	GitHub Exploit DB Packet Storm

2976	5.3	警告 Network	The Go Project	Go	The Go ProjectのGoにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2025-61724	2026-02-2 19:23	2025-10-29	Show	GitHub Exploit DB Packet Storm

2977	9.1	緊急 Network	citeum	opencti	citeumのopenctiにおける複数の脆弱性	CWE-285 CWE-566 CWE-863 CWE-915	CVE-2025-61781	2026-02-2 19:23	2026-01-5	Show	GitHub Exploit DB Packet Storm

2978	6.5	警告 Network	averta	master slider pro	AvertaのWordPress用Master Slider Proにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-63045	2026-02-2 19:23	2025-12-9	Show	GitHub Exploit DB Packet Storm

2979	7.5	重要 Network	OwnTone project	OwnTone	OwnTone projectのOwnToneにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-63647	2026-02-2 19:23	2026-01-20	Show	GitHub Exploit DB Packet Storm

2980	7.5	重要 Network	OwnTone project	OwnTone	OwnTone projectのOwnToneにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-63648	2026-02-2 19:23	2026-01-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349661	-	cisco	resource_manager	Cisco Resource Manager (CRM) 1.0 and 1.1 creates world-readable log files and temporary files, which may expose sensitive information, to local users such as user IDs, passwords and SNMP community st…	NVD-CWE-Other	CVE-1999-1042	2008-09-6 05:18	1999-12-31	Show	GitHub Exploit DB Packet Storm

349662	-	matt_wright	formhandler.cgi	Default configuration in Matt Wright FormHandler.cgi script allows arbitrary directories to be used for attachments, and only restricts access to the /etc/ directory, which allows remote attackers to…	NVD-CWE-Other	CVE-1999-1051	2008-09-6 05:18	1999-11-16	Show	GitHub Exploit DB Packet Storm

349663	-	apache matt_wright	http_server matt_wright_guestbook	guestbook.pl cleanses user-inserted SSI commands by removing text between "<!--" and "-->" separators, which allows remote attackers to execute arbitrary commands when guestbook.pl is run on Apache 1…	NVD-CWE-Other	CVE-1999-1053	2008-09-6 05:18	1999-09-13	Show	GitHub Exploit DB Packet Storm

349664	-	digital	vms	VMS 4.0 through 5.3 allows local users to gain privileges via the ANALYZE/PROCESS_DUMP dcl command.	NVD-CWE-Other	CVE-1999-1057	2008-09-6 05:18	1990-10-25	Show	GitHub Exploit DB Packet Storm

349665	-	att	svr4	Vulnerability in rexec daemon (rexecd) in AT&T TCP/IP 4.0 for various SVR4 systems allows remote attackers to execute arbitrary commands.	NVD-CWE-Other	CVE-1999-1059	2008-09-6 05:18	1992-02-25	Show	GitHub Exploit DB Packet Storm

349666	-	xylogics	annex	Buffer overflow in ping CGI program in Xylogics Annex terminal service allows remote attackers to cause a denial of service via a long query parameter.	NVD-CWE-Other	CVE-1999-1070	2008-09-6 05:18	1998-07-25	Show	GitHub Exploit DB Packet Storm

349667	-	ipswitch	ws_ftp_pro	WS_FTP Pro 6.0 uses weak encryption for passwords in its initialization files, which allows remote attackers to easily decrypt the passwords and gain privileges.	NVD-CWE-Other	CVE-1999-1078	2008-09-6 05:18	1999-07-29	Show	GitHub Exploit DB Packet Storm

349668	-	bsd	bsd	Vulnerability in BSD Telnet client with encryption and Kerberos 4 authentication allows remote attackers to decrypt the session via sniffing.	NVD-CWE-Other	CVE-1999-1098	2008-09-6 05:18	1995-03-3	Show	GitHub Exploit DB Packet Storm

349669	-	sgi apple bsd sun	irix a_ux bsd sunos	lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to create or overwrite arbitrary files via a symlink attack that is triggered after invoking lpr 1000…	NVD-CWE-Other	CVE-1999-1102	2008-09-6 05:18	1999-12-31	Show	GitHub Exploit DB Packet Storm

349670	-	digital	osf_1	dxconsole in DEC OSF/1 3.2C and earlier allows local users to read arbitrary files by specifying the file with the -file parameter.	NVD-CWE-Other	CVE-1999-1103	2008-09-6 05:18	1996-04-3	Show	GitHub Exploit DB Packet Storm