Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3821 9.4 緊急
Network 		Apache Software Foundation Apache Camel Apache Software FoundationのApache Camelにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-33454 2026-04-30 11:03 2026-04-27 Show GitHub Exploit DB Packet Storm
3822 7.5 重要
Network 		Linaro OP-TEE Trusted OS LinaroのOP-TEE Trusted OSにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-33662 2026-04-30 11:03 2026-04-24 Show GitHub Exploit DB Packet Storm
3823 7.4 重要
Network 		OpenProject OpenProject OpenProjectにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-33667 2026-04-30 11:03 2026-04-15 Show GitHub Exploit DB Packet Storm
3824 6.7 警告
Local 		デル data domain operating system デルのdata domain operating systemにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-35154 2026-04-30 11:03 2026-04-20 Show GitHub Exploit DB Packet Storm
3825 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける指定された機能の不適切な提供に関する脆弱性 CWE-684
指定された機能の不適切な提供 		CVE-2026-35379 2026-04-30 11:03 2026-04-22 Show GitHub Exploit DB Packet Storm
3826 5.5 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-35380 2026-04-30 11:03 2026-04-22 Show GitHub Exploit DB Packet Storm
3827 10 緊急
Network 		マイクロソフト Microsoft Entra ID Microsoft Entra ID Entitlement Management Spoofing Vulnerability CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-35431 2026-04-30 11:03 2026-04-23 Show GitHub Exploit DB Packet Storm
3828 5.3 警告
Network 		oobabooga TextGen oobaboogaのTextGenにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-35484 2026-04-30 11:03 2026-04-7 Show GitHub Exploit DB Packet Storm
3829 7.5 重要
Network 		oobabooga TextGen oobaboogaのTextGenにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-35485 2026-04-30 11:03 2026-04-7 Show GitHub Exploit DB Packet Storm
3830 8.8 重要
Network 		Pi-hole FTLDNS Pi-holeのFTLDNSにおける複数の脆弱性 CWE-78
CWE-93
CVE-2026-35517 2026-04-30 11:03 2026-04-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346691 - mozilla mozilla Mozilla does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a secure channel (HTTPS/SSL) in the same domain, which could allow remote attackers to steal c… NVD-CWE-Other
CVE-2004-0871 2017-07-11 10:30 2004-09-16 Show GitHub Exploit DB Packet Storm
346692 - apple ichat
ichat_av 		Apple iChat AV 2.1, AV 2.0, and 1.0.1 allows remote attackers to execute arbitrary programs via a "link" that references the program. NVD-CWE-Other
CVE-2004-0873 2017-07-11 10:30 2004-12-23 Show GitHub Exploit DB Packet Storm
346693 - phpgroupware phpgroupware Multiple cross-site scripting (XSS) vulnerabilities in Phpgroupware (aka webdistro) 0.9.16.002 and earlier allow remote attackers to insert arbitrary HTML or web script, as demonstrated with a reques… NVD-CWE-Other
CVE-2004-0875 2017-07-11 10:30 2004-12-23 Show GitHub Exploit DB Packet Storm
346694 - getmail
gentoo
slackware 		getmail
linux
slackware_linux 		getmail 4.x before 4.2.0, when run as root, allows local users to overwrite arbitrary files via a symlink attack on an mbox file. NVD-CWE-Other
CVE-2004-0880 2017-07-11 10:30 2005-01-27 Show GitHub Exploit DB Packet Storm
346695 - getmail
gentoo
slackware 		getmail
linux
slackware_linux 		getmail 4.x before 4.2.0, and other versions before 3.2.5, when run as root, allows local users to write files in arbitrary directories via a symlink attack on subdirectories in the maildir. NVD-CWE-Other
CVE-2004-0881 2017-07-11 10:30 2005-01-27 Show GitHub Exploit DB Packet Storm
346696 - linux
suse 		linux_kernel
suse_linux 		SUSE Linux Enterprise Server 9 on the S/390 platform does not properly handle a certain privileged instruction, which allows local users to gain root privileges. NVD-CWE-Other
CVE-2004-0887 2017-07-11 10:30 2005-01-27 Show GitHub Exploit DB Packet Storm
346697 - easy_software_products
gnome
kde
pdftohtml
tetex
xpdf
debian
gentoo
redhat
suse
ubuntu 		cups
gpdf
koffice
kpdf
pdftohtml
tetex
xpdf
debian_linux
linux
kde
enterprise_linux
enterprise_linux_desktop
fedora_core
linux_advanced_workstation
suse_linu… 		Multiple integer overflows in xpdf 3.0, and other packages that use xpdf code such as CUPS, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a differen… NVD-CWE-Other
CVE-2004-0889 2017-07-11 10:30 2005-01-27 Show GitHub Exploit DB Packet Storm
346698 - mozilla mozilla
thunderbird 		The Linux install .tar.gz archives for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8, create certain files with insecure permissions, which could allow … NVD-CWE-Other
CVE-2004-0907 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
346699 - mozilla mozilla
thunderbird 		Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 may allow remote attackers to trick users into performing unexpected actions, including installing softwar… NVD-CWE-Other
CVE-2004-0909 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
346700 - debian netkit telnetd for netkit 0.17 and earlier, and possibly other versions, on Debian GNU/Linux allows remote attackers to cause a denial of service (free of an invalid pointer), a different vulnerability than… NVD-CWE-Other
CVE-2004-0911 2017-07-11 10:30 2004-11-3 Show GitHub Exploit DB Packet Storm