Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
301	6.1	警告 Network	Lee Peuker	Movary	Lee PeukerのMovaryにおける複数の脆弱性	CWE-20 CWE-79	CVE-2026-23840	2026-02-5 15:44	2026-01-19	Show	GitHub Exploit DB Packet Storm

302	6.5	警告 Network	BentoML	BentoML	BentoMLにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-24123	2026-02-5 15:44	2026-01-26	Show	GitHub Exploit DB Packet Storm

303	9.8	緊急 Network	マイクロソフト	Microsoft Entra ID	Azure Entra ID に存在する特権昇格の脆弱性	CWE-285 不適切な認可	CVE-2026-24305	2026-02-5 15:44	2026-01-22	Show	GitHub Exploit DB Packet Storm

304	8.1	重要 Network	International Color Consortium (ICC)	iccDEV	International Color Consortium (ICC)のiccDEVにおける複数の脆弱性	CWE-122 CWE-125 CWE-170	CVE-2026-24852	2026-02-5 15:44	2026-01-28	Show	GitHub Exploit DB Packet Storm

305	7.8	重要 Local	International Color Consortium (ICC)	iccDEV	International Color Consortium (ICC)のiccDEVにおける複数の脆弱性	CWE-20 CWE-681 CWE-704	CVE-2026-24856	2026-02-5 15:43	2026-01-28	Show	GitHub Exploit DB Packet Storm

306	-	-	Ubia	Ubox	Ubia 製 Ubox における認証情報の不十分な保護の脆弱性	CWE-522 認証情報の不十分な保護	CVE-2025-12636	2026-02-5 14:33	2025-11-7	Show	GitHub Exploit DB Packet Storm

307	4.5	警告 Network	Hitachi Energy	Relion 670 ファームウェア Relion 650 ファームウェア	Hitachi Energy 製 Relion 670、650 および SAM600-IO Series におけるデータの信頼性確認が不十分な脆弱性	CWE-345 データの信頼性についての不十分な検証	CVE-2022-3864	2026-02-5 14:30	2023-03-10	Show	GitHub Exploit DB Packet Storm

308	7.5	重要 Network	Hitachi Energy	Relion 670 ファームウェア Relion 650 ファームウェア	Hitachi Energy 製 IEC 61850 MMS-Server におけるリソースの不適切なシャットダウンまたはリリースの脆弱性	CWE-404 リソースの不適切なシャットダウンおよびリリース	CVE-2022-3353	2026-02-5 14:29	2023-03-31	Show	GitHub Exploit DB Packet Storm

309	4.7	警告 Network	web2py	web2py	web2pyにおけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2026-25198	2026-02-5 14:03	2026-02-5	Show	GitHub Exploit DB Packet Storm

310	-	-	RISS SRL	MOMA Seismic Station	RISS SRL製MOMA Seismic Stationにおける重要な機能に対する認証の欠如の脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-1632	2026-02-5 12:32	2026-02-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314021	-	hp	application_server	HP Application Server 8.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to…	NVD-CWE-Other	CVE-2002-1856	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

314022	-	jo	jo_webserver	jo! jo Webserver 1.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the …	NVD-CWE-Other	CVE-2002-1857	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

314023	-	oracle	application_server	Oracle Oracle9i Application Server 1.0.2.2 and 9.0.2 through 9.0.2.0.1, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files an…	NVD-CWE-Other	CVE-2002-1858	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

314024	-	pramati	pramati_server	Pramati Server 3.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WE…	NVD-CWE-Other	CVE-2002-1860	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

314025	-	sybase	easerver	Sybase Enterprise Application Server 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, v…	NVD-CWE-Other	CVE-2002-1861	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

314026	-	virtualzone	smartmail_server	SmartMail Server 2.0 allows remote attackers to cause a denial of service (crash) by sending data and closing the connection before all the data has been sent.	NVD-CWE-Other	CVE-2002-1862	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

314027	-	iomega	network_attached_storage	Iomega Network Attached Storage (NAS) A300U, and possibly other models, does not allow the FTP service to be disabled, which allows local users to access home directories via FTP even when access to …	NVD-CWE-Other	CVE-2002-1863	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

314028	-	sws	sws_simple_web_server	Directory traversal vulnerability in Simple Web Server (SWS) 0.0.4 through 0.1.0 allows remote attackers to read arbitrary files via a ".." (dot dot) in an HTTP request.	NVD-CWE-Other	CVE-2002-1864	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

314029	-	d-link linksys	di-804 dl-704 befw11s4 wap11	Buffer overflow in the Embedded HTTP server, as used in (1) D-Link DI-804 4.68, Dl-704 V2.56b6, and Dl-704 V2.56b5 and (2) Linksys Etherfast BEFW11S4 Wireless AP + Cable/DSL Router 1.37.2 through 1.4…	NVD-CWE-Other	CVE-2002-1865	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

314030	-	sws	sws_simple_web_server	Simple Web Server (SWS) 0.0.4 through 0.1.0 does not close file descriptors for 404 error messages, which could allow remote attackers to cause a denial of service (file descriptor exhaustion) via mu…	NVD-CWE-Other	CVE-2002-1866	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm