Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3401 8.8 重要
Network 		jellyfin jellyfin jellyfinにおける複数の脆弱性 CWE-187
CWE-20
CWE-22
CVE-2026-35031 2026-04-27 11:22 2026-04-14 Show GitHub Exploit DB Packet Storm
3402 6.5 警告
Network 		jellyfin jellyfin jellyfinにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-35034 2026-04-27 11:22 2026-04-14 Show GitHub Exploit DB Packet Storm
3403 8.8 重要
Network 		Glances project Glances Nicolas Hennion (nicolargo)のGlancesにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-35587 2026-04-27 11:21 2026-04-21 Show GitHub Exploit DB Packet Storm
3404 9.3 緊急
Network 		nanobot nanobot nanobotにおける WebSocket でのオリジン検証の欠如に関する脆弱性 CWE-1385
WebSocket でのオリジン検証の欠如 		CVE-2026-35589 2026-04-27 11:21 2026-04-14 Show GitHub Exploit DB Packet Storm
3405 8.8 重要
Network 		webkul krayin crm webkulのkrayin crmにおける複数の脆弱性 CWE-269
CWE-639
CVE-2026-38529 2026-04-27 11:21 2026-04-14 Show GitHub Exploit DB Packet Storm
3406 8.1 重要
Network 		webkul krayin crm webkulのkrayin crmにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-38530 2026-04-27 11:21 2026-04-14 Show GitHub Exploit DB Packet Storm
3407 8.1 重要
Network 		webkul krayin crm webkulのkrayin crmにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-38532 2026-04-27 11:21 2026-04-14 Show GitHub Exploit DB Packet Storm
3408 5.4 警告
Network 		Istio Istio Istioにおける複数の脆弱性 CWE-185
CWE-863
CVE-2026-39350 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
3409 6.5 警告
Network 		Project Jupyter nbconvert Project Jupyterのnbconvertにおける複数の脆弱性 CWE-22
CWE-73
CVE-2026-39377 2026-04-27 11:21 2026-04-21 Show GitHub Exploit DB Packet Storm
3410 6.5 警告
Network 		Project Jupyter nbconvert Project Jupyterのnbconvertにおける複数の脆弱性 CWE-22
CWE-73
CVE-2026-39378 2026-04-27 11:21 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347061 - apache_gallery apache_gallery Gallery.pm in Apache::Gallery (aka A::G) uses predictable temporary filenames when running Inline::C, which allows local users to execute arbitrary code by creating and modifying the files before Apa… NVD-CWE-Other
CVE-2003-0771 2016-10-18 11:37 2003-09-22 Show GitHub Exploit DB Packet Storm
347062 - gnu
quagga
sgi 		zebra
quagga
propack 		The vty layer in Quagga before 0.96.4, and Zebra 0.93b and earlier, does not verify that sub-negotiation is taking place when processing the SE marker, which allows remote attackers to cause a denial… CWE-20
 Improper Input Validation  		CVE-2003-0795 2016-10-18 11:37 2003-12-15 Show GitHub Exploit DB Packet Storm
347063 - university_of_minnesota gopherd Multiple buffer overflows in UMN gopher daemon (gopherd) 2.x and 3.x before 3.0.6 allows attackers to execute arbitrary code via (1) a long filename as a result of a LIST command, and (2) the GSisTex… NVD-CWE-Other
CVE-2003-0805 2016-10-18 11:37 2003-10-6 Show GitHub Exploit DB Packet Storm
347064 - gnu lsh lsh daemon (lshd) does not properly return from certain functions in (1) read_line.c, (2) channel_commands.c, or (3) client_keyexchange.c when long input is provided, which could allow remote attacke… NVD-CWE-Other
CVE-2003-0826 2016-10-18 11:37 2003-10-6 Show GitHub Exploit DB Packet Storm
347065 - ibm db2_universal_database The DB2 Discovery Service for IBM DB2 before FixPak 10a allows remote attackers to cause a denial of service (crash) via a long packet to UDP port 523. NVD-CWE-Other
CVE-2003-0827 2016-10-18 11:37 2003-10-6 Show GitHub Exploit DB Packet Storm
347066 - mplayer mplayer Multiple buffer overflows in asf_http_request of MPlayer before 0.92 allows remote attackers to execute arbitrary code via an ASX header with a long hostname. NVD-CWE-Other
CVE-2003-0835 2016-10-18 11:37 2003-11-17 Show GitHub Exploit DB Packet Storm
347067 - microsoft windows_2003_server Directory traversal vulnerability in the "Shell Folders" capability in Microsoft Windows Server 2003 allows remote attackers to read arbitrary files via .. (dot dot) sequences in a "shell:" link. NVD-CWE-Other
CVE-2003-0839 2016-10-18 11:37 2003-11-17 Show GitHub Exploit DB Packet Storm
347068 - hp hp-ux Buffer overflow in dtprintinfo on HP-UX 11.00, and possibly other operating systems, allows local users to gain root privileges via a long DISPLAY environment variable. NVD-CWE-Other
CVE-2003-0840 2016-10-18 11:37 2003-11-17 Show GitHub Exploit DB Packet Storm
347069 - dag_apt_repository mod_gzip Stack-based buffer overflow in mod_gzip_printf for mod_gzip 1.3.26.1a and earlier, and possibly later official versions, when running in debug mode, allows remote attackers to execute arbitrary code … NVD-CWE-Other
CVE-2003-0842 2016-10-18 11:37 2003-11-17 Show GitHub Exploit DB Packet Storm
347070 - dag_apt_repository mod_gzip Format string vulnerability in mod_gzip_printf for mod_gzip 1.3.26.1a and earlier, and possibly later official versions, when running in debug mode and using the Apache log, allows remote attackers t… NVD-CWE-Other
CVE-2003-0843 2016-10-18 11:37 2003-11-17 Show GitHub Exploit DB Packet Storm