Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3301	9.8	緊急 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-42589	2026-05-20 13:29	2026-05-14	Show	GitHub Exploit DB Packet Storm

3302	8.2	重要 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおける不完全なブラックリストに関する脆弱性	CWE-184 不完全なブラックリスト	CVE-2026-42590	2026-05-20 13:29	2026-05-14	Show	GitHub Exploit DB Packet Storm

3303	8.2	重要 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42591	2026-05-20 13:29	2026-05-14	Show	GitHub Exploit DB Packet Storm

3304	5.3	警告 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおける複数の脆弱性	CWE-367 CWE-918	CVE-2026-42592	2026-05-20 13:29	2026-05-14	Show	GitHub Exploit DB Packet Storm

3305	5.3	警告 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおける複数の脆弱性	CWE-22 CWE-73	CVE-2026-42593	2026-05-20 13:29	2026-05-14	Show	GitHub Exploit DB Packet Storm

3306	7.5	重要 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-42594	2026-05-20 13:29	2026-05-14	Show	GitHub Exploit DB Packet Storm

3307	8.6	重要 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42595	2026-05-20 13:29	2026-05-14	Show	GitHub Exploit DB Packet Storm

3308	9.4	緊急 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42596	2026-05-20 13:29	2026-05-14	Show	GitHub Exploit DB Packet Storm

3309	5.9	警告 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおける複数の脆弱性	CWE-73 CWE-918	CVE-2026-42597	2026-05-20 13:28	2026-05-14	Show	GitHub Exploit DB Packet Storm

3310	9.8	緊急 Network	Espressif Systems	ESP32 Arduino	Espressif SystemsのESP32 Arduinoにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-42854	2026-05-20 13:28	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345051	-	id_software	quake_2_server	Quake 2 server 3.13 on Linux does not properly check file permissions for the config.cfg configuration file, which allows local users to read arbitrary files via a symlink from config.cfg to the targ…	NVD-CWE-Other	CVE-1999-1229	2017-12-19 11:29	1998-02-25	Show	GitHub Exploit DB Packet Storm

345052	-	id_software	quake_2	Quake 2 server allows remote attackers to cause a denial of service via a spoofed UDP packet with a source address of 127.0.0.1, which causes the server to attempt to connect to itself.	NVD-CWE-Other	CVE-1999-1230	2017-12-19 11:29	1997-12-24	Show	GitHub Exploit DB Packet Storm

345053	-	ssh	ssh2	ssh 2.0.12, and possibly other versions, allows valid user names to attempt to enter the correct password multiple times, but only prompts an invalid user name for a password once, which allows remot…	NVD-CWE-Other	CVE-1999-1231	2017-12-19 11:29	1999-06-9	Show	GitHub Exploit DB Packet Storm

345054	-	sgi	irix	Untrusted search path vulnerability in day5datacopier in SGI IRIX 6.2 allows local users to execute arbitrary commands via a modified PATH environment variable that points to a malicious cp program.	NVD-CWE-Other	CVE-1999-1232	2017-12-19 11:29	1997-05-16	Show	GitHub Exploit DB Packet Storm

345055	-	microsoft	windows_nt	LSA (LSASS.EXE) in Windows NT 4.0 allows remote attackers to cause a denial of service via a NULL policy handle in a call to (1) SamrOpenDomain, (2) SamrEnumDomainUsers, and (3) SamrQueryDomainInfo.	NVD-CWE-Other	CVE-1999-1234	2017-12-19 11:29	1999-10-26	Show	GitHub Exploit DB Packet Storm

345056	-	true_north	internet_anywhere_mail_server	Internet Anywhere Mail Server 2.3.1 stores passwords in plaintext in the msgboxes.dbf file, which could allow local users to gain privileges by extracting the passwords from msgboxes.dbf.	NVD-CWE-Other	CVE-1999-1236	2017-12-19 11:29	1999-10-1	Show	GitHub Exploit DB Packet Storm

345057	-	hp	hp-ux	Vulnerability in CORE-DIAG fileset in HP message catalog in HP-UX 9.05 and earlier allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-1238	2017-12-19 11:29	1994-09-21	Show	GitHub Exploit DB Packet Storm

345058	-	hp	hp-ux	HP-UX 9.x does not properly enable the Xauthority mechanism in certain conditions, which could allow local users to access the X display even when they have not explicitly been authorized to do so.	NVD-CWE-Other	CVE-1999-1239	2017-12-19 11:29	1994-07-13	Show	GitHub Exploit DB Packet Storm

345059	-	gracenote	cddbd	Buffer overflow in cddbd CD database server allows remote attackers to execute arbitrary commands via a long log message.	NVD-CWE-Other	CVE-1999-1240	2017-12-19 11:29	1996-11-26	Show	GitHub Exploit DB Packet Storm

345060	-	hp	hp-ux	Vulnerability in subnetconfig in HP-UX 9.01 and 9.0 allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-1242	2017-12-19 11:29	1994-02-7	Show	GitHub Exploit DB Packet Storm