Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 2:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3921	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-6920	2026-04-27 10:45	2026-04-23	Show	GitHub Exploit DB Packet Storm

3922	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-6921	2026-04-27 10:45	2026-04-23	Show	GitHub Exploit DB Packet Storm

3923	-	-	三菱電機	MELSEC iQ-F FX5-EIP形EtherNet/IPユニット MELSEC iQ-Fシリーズ FX5-ENET/IP形Ethernetユニット	MELSEC iQ-FシリーズのEtherNet/IPユニットおよびEthernetユニットのEthernet機能における複数の脆弱性	CWE-404 CWE-670	CVE-2026-1874 CVE-2026-1875 CVE-2026-1876	2026-04-24 17:45	2026-03-3	Show	GitHub Exploit DB Packet Storm

3924	5.4	警告 Network	Apache Software Foundation	Apache ActiveMQ Apache ActiveMQ MQTT	Apache ActiveMQシリーズにおけるMQTTパケット検証不備の脆弱性［AMQ-9810］	CWE-Other その他	CVE-2025-66168 CVE-2026-40046	2026-04-24 12:11	2026-03-4	Show	GitHub Exploit DB Packet Storm

3925	9.1	緊急 Network	oauth2_proxy project	oauth2_proxy	oauth2_proxy projectのoauth2_proxyにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2026-34457	2026-04-24 11:44	2026-04-14	Show	GitHub Exploit DB Packet Storm

3926	5.9	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不十分なランダム値の使用に関する脆弱性	CWE-330 不十分なランダム値の使用	CVE-2026-34511	2026-04-24 11:44	2026-04-3	Show	GitHub Exploit DB Packet Storm

3927	7.1	重要 Network	Chamilo Association	Chamilo LMS	Chamilo AssociationのChamilo LMSにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-34602	2026-04-24 11:44	2026-04-14	Show	GitHub Exploit DB Packet Storm

3928	8.8	重要 Network	Electron	electron	Electronのelectronにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34770	2026-04-24 11:44	2026-04-4	Show	GitHub Exploit DB Packet Storm

3929	8.8	重要 Network	Electron	electron	Electronのelectronにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34771	2026-04-24 11:44	2026-04-4	Show	GitHub Exploit DB Packet Storm

3930	8.8	重要 Network	Electron	electron	Electronのelectronにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34772	2026-04-24 11:44	2026-04-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347641	-	sendmail netbsd	sendmail netbsd	Sendmail Consortium's Restricted Shell (SMRSH) in Sendmail 8.12.6, 8.11.6-15, and possibly other versions after 8.11 from 5/19/1998, allows attackers to bypass the intended restrictions of smrsh by i…	NVD-CWE-Other	CVE-2002-1165	2016-10-18 11:24	2002-10-11	Show	GitHub Exploit DB Packet Storm

347642	-	john_franks	wn_server	Buffer overflow in John Franks WN Server 1.18.2 through 2.0.0 allows remote attackers to execute arbitrary code via a long GET request.	NVD-CWE-Other	CVE-2002-1166	2016-10-18 11:24	2002-10-11	Show	GitHub Exploit DB Packet Storm

347643	-	fetchmail	fetchmail	Buffer overflows in Fetchmail 6.0.0 and earlier allow remote attackers to cause a denial of service (crash) or execute arbitrary code via (1) long headers that are not properly processed by the readh…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2002-1174	2016-10-18 11:24	2002-10-11	Show	GitHub Exploit DB Packet Storm

347644	-	fetchmail	fetchmail	The getmxrecord function in Fetchmail 6.0.0 and earlier does not properly check the boundary of a particular malformed DNS packet from a malicious DNS server, which allows remote attackers to cause a…	CWE-20 Improper Input Validation	CVE-2002-1175	2016-10-18 11:24	2002-10-11	Show	GitHub Exploit DB Packet Storm

347645	-	nullsoft	winamp	Buffer overflow in Winamp 2.81 allows remote attackers to execute arbitrary code via a long Artist ID3v2 tag in an MP3 file.	NVD-CWE-Other	CVE-2002-1176	2016-10-18 11:24	2002-12-26	Show	GitHub Exploit DB Packet Storm

347646	-	nullsoft	winamp	Multiple buffer overflows in Winamp 3.0, when displaying an MP3 in the Media Library window, allows remote attackers to execute arbitrary code via an MP3 file containing a long (1) Artist or (2) Albu…	NVD-CWE-Other	CVE-2002-1177	2016-10-18 11:24	2002-12-26	Show	GitHub Exploit DB Packet Storm

347647	-	jetty	jetty_http_server	Directory traversal vulnerability in the CGIServlet for Jetty HTTP server before 4.1.0 allows remote attackers to execute arbitrary commands via ..\ (dot-dot backslash) sequences in an HTTP request t…	NVD-CWE-Other	CVE-2002-1178	2016-10-18 11:24	2002-10-11	Show	GitHub Exploit DB Packet Storm

347648	-	sabre	desktop_reservation_software	The Sabserv client component in Sabre Desktop Reservation Software 4.2 through 4.4 allows remote attackers to cause a denial of service via malformed input to TCP port 1001.	NVD-CWE-Other	CVE-2002-1191	2016-10-18 11:24	2002-10-28	Show	GitHub Exploit DB Packet Storm

347649	-	gabriele_bartolini	ht_check	Cross-site scripting vulnerability (XSS) in the PHP interface for ht://Check 1.1 allows remote web servers to insert arbitrary HTML, including script, via a web page.	NVD-CWE-Other	CVE-2002-1195	2016-10-18 11:24	2002-10-28	Show	GitHub Exploit DB Packet Storm

347650	-	mozilla	bugzilla	editproducts.cgi in Bugzilla 2.14.x before 2.14.4, and 2.16.x before 2.16.1, when the "usebuggroups" feature is enabled and more than 47 groups are specified, does not properly calculate bit values f…	NVD-CWE-Other	CVE-2002-1196	2016-10-18 11:24	2002-10-28	Show	GitHub Exploit DB Packet Storm