Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3651	9.8	緊急 Network	Apache Software Foundation	Apache Tomcat	Apache Software FoundationのApache Tomcatにおける認証回避に関する脆弱性	CWE-592 認証回避の問題	CVE-2026-43512	2026-05-18 11:26	2026-05-12	Show	GitHub Exploit DB Packet Storm

3652	7.5	重要 Network	Apache Software Foundation	Apache Tomcat	Apache Software FoundationのApache Tomcatにおける大文字と小文字の区別の不適切な処理に関する脆弱性	CWE-178 大文字と小文字の区別の不適切な処理	CVE-2026-43513	2026-05-18 11:25	2026-05-12	Show	GitHub Exploit DB Packet Storm

3653	9.1	緊急 Network	Apache Software Foundation	Apache Tomcat	Apache Software FoundationのApache Tomcatにおける認可に関する脆弱性	CWE-285 不適切な認可	CVE-2026-43515	2026-05-18 11:25	2026-05-12	Show	GitHub Exploit DB Packet Storm

3654	7.5	重要 Network	Web Technologies	Change Detection	Web TechnologiesのChange Detectionにおけるファイル名やパス名の外部制御に関する脆弱性	CWE-73 ファイル名やパス名の外部制御	CVE-2026-43891	2026-05-18 11:25	2026-05-12	Show	GitHub Exploit DB Packet Storm

3655	8.7	重要 Network	Daniel Garcia	Vaultwarden	Daniel GarciaのVaultwardenにおける認可に関する脆弱性	CWE-285 不適切な認可	CVE-2026-43912	2026-05-18 11:25	2026-05-11	Show	GitHub Exploit DB Packet Storm

3656	9.1	緊急 Network	OPNsense project	OPNsense	OPNsenseにおける引数の挿入または変更に関する脆弱性	CWE-88 引数の挿入または変更	CVE-2026-44193	2026-05-18 11:25	2026-05-13	Show	GitHub Exploit DB Packet Storm

3657	9.1	緊急 Network	OPNsense project	OPNsense	OPNsenseにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-44194	2026-05-18 11:25	2026-05-13	Show	GitHub Exploit DB Packet Storm

3658	6.5	警告 Network	OPNsense project	OPNsense	OPNsenseにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-44195	2026-05-18 11:25	2026-05-13	Show	GitHub Exploit DB Packet Storm

3659	9.8	緊急 Network	フォーティネット	FortiAuthenticator	フォーティネットのFortiAuthenticatorにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-44277	2026-05-18 11:25	2026-05-12	Show	GitHub Exploit DB Packet Storm

3660	5.5	警告 Local	フォーティネット	FortiClient	フォーティネットのFortiClientにおけるハードコードされた暗号鍵の使用に関する脆弱性	CWE-321 ハードコードされた暗号鍵の使用	CVE-2026-44278	2026-05-18 11:25	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345391	-	wireshark	wireshark	Multiple off-by-one errors in the IPSec ESP preference parser in Wireshark (formerly Ethereal) 0.99.2 allow remote attackers to cause a denial of service (crash) via unspecified vectors.	NVD-CWE-Other	CVE-2006-4331	2017-10-11 10:31	2006-08-25	Show	GitHub Exploit DB Packet Storm

345392	-	mysql	mysql	MySQL before 4.1.13 allows local users to cause a denial of service (persistent replication slave crash) via a query with multiupdate and subselects.	NVD-CWE-Other	CVE-2006-4380	2017-10-11 10:31	2006-08-29	Show	GitHub Exploit DB Packet Storm

345393	-	sun	solaris	pkgadd in Sun Solaris 10 before 20060825 installs files with insecure file and directory permissions (755 or 777) if the pkgmap file contains a "?" (question mark) in the mode field, which allows loc…	NVD-CWE-Other	CVE-2006-4439	2017-10-11 10:31	2006-08-30	Show	GitHub Exploit DB Packet Storm

345394	-	ay_system_solutions	ay_system_solutions_cms	PHP remote file inclusion vulnerability in main.php in Ay System Solutions CMS 2.6 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path[ShowProcessHandle] parameter.	NVD-CWE-Other	CVE-2006-4440	2017-10-11 10:31	2006-08-30	Show	GitHub Exploit DB Packet Storm

345395	-	mozilla	seamonkey thunderbird	Mozilla Thunderbird before 1.5.0.7 and SeaMonkey before 1.0.5, with "Load Images" enabled, allows remote user-assisted attackers to bypass settings that disable JavaScript via a remote XBL file in a …	NVD-CWE-Other	CVE-2006-4570	2017-10-11 10:31	2006-09-16	Show	GitHub Exploit DB Packet Storm

345396	-	gnu	gnutls	verify.c in GnuTLS before 1.4.4, when using an RSA key with exponent 3, does not properly handle excess data in the digestAlgorithm.parameters field when generating a hash, which allows remote attack…	NVD-CWE-Other	CVE-2006-4790	2017-10-11 10:31	2006-09-15	Show	GitHub Exploit DB Packet Storm

345397	-	cisco	ios	Cisco IOS 12.2 through 12.4 before 20060920, as used by Cisco IAD2430, IAD2431, and IAD2432 Integrated Access Devices, the VG224 Analog Phone Gateway, and the MWR 1900 and 1941 Mobile Wireless Edge R…	NVD-CWE-Other	CVE-2006-4950	2017-10-11 10:31	2006-09-23	Show	GitHub Exploit DB Packet Storm

345398	-	squirrelmail	squirrelmail	webmail.php in SquirrelMail 1.4.0 to 1.4.5 allows remote attackers to inject arbitrary web pages into the right frame via a URL in the right_frame parameter. NOTE: this has been called a cross-site …	NVD-CWE-Other	CVE-2006-0188	2017-10-11 10:30	2006-02-24	Show	GitHub Exploit DB Packet Storm

345399	-	sun	solaris	Unspecified vulnerability in Sun Solaris 9 and 10 for the x86 platform allows local users to gain privileges or cause a denial of service (panic) via unspecified vectors, possibly involving functions…	NVD-CWE-Other	CVE-2006-0190	2017-10-11 10:30	2006-01-13	Show	GitHub Exploit DB Packet Storm

345400	-	sun	solaris	Unspecified vulnerability in Sun Solaris 10 allows local users to cause a denial of service (null dereference) via unspecified vectors involving the use of the find command on the "/proc" filesystem.…	NVD-CWE-Other	CVE-2006-0191	2017-10-11 10:30	2006-01-13	Show	GitHub Exploit DB Packet Storm