Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3311 9.8 緊急
Network 		ggml.ai llama.cpp ggml.aiのllama.cppにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-21869 2026-02-4 18:36 2026-01-8 Show GitHub Exploit DB Packet Storm
3312 5.7 警告
Network 		getkirby kirby getkirbyのkirbyにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-21896 2026-02-4 18:36 2026-01-8 Show GitHub Exploit DB Packet Storm
3313 8.1 重要
Network 		オラクル Oracle FLEXCUBE Investor Servicing オラクルのOracle FLEXCUBE Investor Servicingにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-21973 2026-02-4 18:36 2026-01-20 Show GitHub Exploit DB Packet Storm
3314 6.5 警告
Network 		オラクル Oracle FLEXCUBE Universal Banking オラクルのOracle FLEXCUBE Universal Bankingにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-21978 2026-02-4 18:36 2026-01-20 Show GitHub Exploit DB Packet Storm
3315 9.9 緊急
Network 		The Kyverno Authors Kyverno The Kyverno AuthorsのKyvernoにおける複数の脆弱性 CWE-269
CWE-918
CVE-2026-22039 2026-02-4 18:36 2026-01-27 Show GitHub Exploit DB Packet Storm
3316 5.4 警告
Network 		charm soft serve charmのsoft serveにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-22253 2026-02-4 18:36 2026-01-8 Show GitHub Exploit DB Packet Storm
3317 6.5 警告
Network 		Spree Commerce Spree Spree CommerceのSpreeにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-22588 2026-02-4 18:36 2026-01-8 Show GitHub Exploit DB Packet Storm
3318 5.4 警告
Network 		cvat cvat cvatにおける複数の脆弱性 CWE-79
CWE-83
CVE-2026-23516 2026-02-4 18:36 2026-01-21 Show GitHub Exploit DB Packet Storm
3319 5.4 警告
Network 		OpenProject OpenProject OpenProjectにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-23625 2026-02-4 18:36 2026-01-19 Show GitHub Exploit DB Packet Storm
3320 6.5 警告
Network 		OpenProject OpenProject OpenProjectにおける誤ったセッションへのデータ要素の漏えいに関する脆弱性 CWE-488
誤ったセッションへのデータ要素の漏えい 		CVE-2026-23646 2026-02-4 18:36 2026-01-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348101 - hp hp-ux
vvos 		HP-UX 11.04 VirtualVault (VVOS) sends data to unprivileged processes via an interface that has multiple aliased IP addresses. NVD-CWE-Other
CVE-2000-0251 2008-09-11 04:03 2000-04-6 Show GitHub Exploit DB Packet Storm
348102 - nbase-xyplex edgeblaster The Nbase-Xyplex EdgeBlaster router allows remote attackers to cause a denial of service via a scan for the FormMail CGI program. NVD-CWE-Other
CVE-2000-0255 2008-09-11 04:03 2000-04-5 Show GitHub Exploit DB Packet Storm
348103 - redhat linux The X font server xfs in Red Hat Linux 6.x allows an attacker to cause a denial of service via a malformed request. NVD-CWE-Other
CVE-2000-0263 2008-09-11 04:03 2000-04-16 Show GitHub Exploit DB Packet Storm
348104 - cisco catos Cisco Catalyst 5.4.x allows a user to gain access to the "enable" mode without a password. NVD-CWE-Other
CVE-2000-0267 2008-09-11 04:03 2000-04-20 Show GitHub Exploit DB Packet Storm
348105 - cisco ios
accesspath
as5200
as5300
as5800
system_controller_3640
voice_gateway_as5800
3660_router
7100_router
7200_router
7500_router
ubr7200 		Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it, which causes the system to reboot. NVD-CWE-Other
CVE-2000-0268 2008-09-11 04:03 2000-04-20 Show GitHub Exploit DB Packet Storm
348106 - symantec pcanywhere PCAnywhere allows remote attackers to cause a denial of service by terminating the connection before PCAnywhere provides a login prompt. NVD-CWE-Other
CVE-2000-0273 2008-09-11 04:03 2000-04-9 Show GitHub Exploit DB Packet Storm
348107 - cryptocard cryptoadmin CRYPTOCard CryptoAdmin for PalmOS uses weak encryption to store a user's PIN number, which allows an attacker with access to the .PDB file to generate valid PT-1 tokens after cracking the PIN. NVD-CWE-Other
CVE-2000-0275 2008-09-11 04:03 2000-04-10 Show GitHub Exploit DB Packet Storm
348108 - saleslogix corporation_eviewer The SalesLogix Eviewer allows remote attackers to cause a denial of service by accessing the URL for the slxweb.dll administration program, which does not authenticate the user. NVD-CWE-Other
CVE-2000-0278 2008-09-11 04:03 2000-08-3 Show GitHub Exploit DB Packet Storm
348109 - be beos BeOS allows remote attackers to cause a denial of service via malformed packets whose length field is less than the length of the headers. NVD-CWE-Other
CVE-2000-0279 2008-09-11 04:03 2000-04-7 Show GitHub Exploit DB Packet Storm
348110 - talentsoft web\+ TalentSoft webpsvr daemon in the Web+ shopping cart application allows remote attackers to read arbitrary files via a .. (dot dot) attack on the webplus CGI program. NVD-CWE-Other
CVE-2000-0282 2008-09-11 04:03 2000-04-12 Show GitHub Exploit DB Packet Storm