Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3391 8.8 重要
Network 		langflow langflow
Langflow-base 		langflowのLangflow-base等の複数製品における複数の脆弱性 CWE-639
CWE-862
CVE-2026-34046 2026-05-12 10:19 2026-03-27 Show GitHub Exploit DB Packet Storm
3392 7.5 重要
Network 		Gazelle project Gazelle KazeburoのGazelleにおけるHTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2026-40562 2026-05-12 10:19 2026-05-6 Show GitHub Exploit DB Packet Storm
3393 5.3 警告
Network 		opentelemetry OpenTelemetry.Exporter.Zipkin opentelemetryのOpenTelemetry.Exporter.Zipkinにおける複数の脆弱性 CWE-400
CWE-770
CVE-2026-41310 2026-05-12 10:19 2026-05-6 Show GitHub Exploit DB Packet Storm
3394 7.5 重要
Network 		uuidjs uuid uuidjsのuuidにおける複数の脆弱性 CWE-787
CWE-823
CVE-2026-41907 2026-05-12 10:19 2026-04-24 Show GitHub Exploit DB Packet Storm
3395 7.5 重要
Network 		Amazon.com, Inc. Bedrock Agentcore Starter Toolkit Amazon.com, Inc.のBedrock Agentcore Starter Toolkitにおける複数の脆弱性 CWE-283
CWE-340
CVE-2026-4269 2026-05-12 10:19 2026-03-16 Show GitHub Exploit DB Packet Storm
3396 7.5 重要
Network 		VEGA VEGAPULS 6X Firmware VEGAのVEGAPULS 6X Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-3323 2026-05-12 10:19 2026-04-28 Show GitHub Exploit DB Packet Storm
3397 3.3
Local 		ちとらソフト Lhaz+
Lhaz 		LhazおよびLhaz+におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41530 2026-05-11 17:15 2026-05-11 Show GitHub Exploit DB Packet Storm
3398 - - Apache Software Foundation Apache HTTP Server Apache HTTP Server 2.4における複数の脆弱性に対するアップデート(2026年5月) - CVE-2026-23918
CVE-2026-24072
CVE-2026-28780
CVE-2026-29168
CVE-2026-29169
CVE-2026-33006
CVE-2026-33007
CVE-2026-33523
CVE-2026-33857
CVE-2026-34032
CVE-2026-34059 		2026-05-11 16:29 2026-05-8 Show GitHub Exploit DB Packet Storm
3399 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年05月07日) - - 2026-05-11 16:29 2026-05-8 Show GitHub Exploit DB Packet Storm
3400 7.2 重要
Network 		株式会社GROWI GROWI GROWIにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41951 2026-05-11 15:29 2026-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345591 - oracle oracle9i Oracle listener before Oracle 9i allows attackers to cause a denial of service by repeatedly sending the first portion of a fragmented Oracle command without sending the remainder of the command, whi… NVD-CWE-Other
CVE-2001-0518 2017-10-10 10:29 2001-07-21 Show GitHub Exploit DB Packet Storm
345592 - suse suse_linux Buffer overflow in dsh in dqs 3.2.7 in SuSE Linux 7.0 and earlier, and possibly other operating systems, allows local users to gain privileges via a long first command line argument. NVD-CWE-Other
CVE-2001-0525 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
345593 - dcscripts dcforum
dcforum_2000 		DCScripts DCForum versions 2000 and earlier allow a remote attacker to gain additional privileges by inserting pipe symbols (|) and newlines into the last name in the registration form, which will cr… NVD-CWE-Other
CVE-2001-0527 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
345594 - oracle e-business_suite Oracle E-Business Suite Release 11i Applications Desktop Integrator (ADI) version 7.x includes a debug version of FNDPUB11I.DLL, which logs the APPS schema password in cleartext in a debug file, whic… NVD-CWE-Other
CVE-2001-0528 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
345595 - openbsd openssh OpenSSH version 2.9 and earlier, with X forwarding enabled, allows a local attacker to delete any file named 'cookies' via a symlink attack. NVD-CWE-Other
CVE-2001-0529 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
345596 - spearhead netgap_200
netgap_300 		Spearhead NetGAP 200 and 300 before build 78 allow a remote attacker to bypass file blocking and content inspection via specially encoded URLs which include '%' characters. NVD-CWE-Other
CVE-2001-0530 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
345597 - symantec liveupdate Symantec LiveUpdate 1.5 stores proxy passwords in cleartext in a registry key, which could allow local users to obtain the passwords. NVD-CWE-Other
CVE-2001-0549 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
345598 - ssh secure_shell SSH Secure Shell 3.0.0 on Unix systems does not properly perform password authentication to the sshd2 daemon, which allows local users to gain access to accounts with short password fields, such as l… NVD-CWE-Other
CVE-2001-0553 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
345599 - t._hauck jana_web_server T. Hauck Jana Webserver 2.01 beta 1 and earlier allows a remote attacker to create a denial of service via a URL request which includes a MS-DOS device name (i.e. GET /aux HTTP/1.0). NVD-CWE-Other
CVE-2001-0558 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm
345600 - paul_vixie vixie_cron crontab in Vixie cron 3.0.1 and earlier does not properly drop privileges after the failed parsing of a modification operation, which could allow a local attacker to gain additional privileges when a… NVD-CWE-Other
CVE-2001-0559 2017-10-10 10:29 2001-08-14 Show GitHub Exploit DB Packet Storm