Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3981	2.5	低 Local	OpenBSD	OpenSSH	OpenBSDのOpenSSHにおける保護されていない代替チャネルに関する脆弱性	CWE-420 保護されていない代替チャネル	CVE-2026-35388	2026-04-28 10:12	2026-04-2	Show	GitHub Exploit DB Packet Storm

3982	8.8	重要 Network	neutrinolabs	xrdp	neutrinolabsのxrdpにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-35512	2026-04-28 10:12	2026-04-17	Show	GitHub Exploit DB Packet Storm

3983	4.3	警告 Network	Apache Software Foundation	Apache Airflow	Apache Software FoundationのApache Airflowにおけるアクセス制御の不十分な粒度に関する脆弱性	CWE-1220 アクセス制御の不十分な粒度	CVE-2026-38743	2026-04-28 10:12	2026-04-24	Show	GitHub Exploit DB Packet Storm

3984	7.7	重要 Network	Lee Peuker	Movary	Lee PeukerのMovaryにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-40348	2026-04-28 10:12	2026-04-18	Show	GitHub Exploit DB Packet Storm

3985	8.8	重要 Network	Lee Peuker	Movary	Lee PeukerのMovaryにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-40349	2026-04-28 10:12	2026-04-18	Show	GitHub Exploit DB Packet Storm

3986	8.8	重要 Network	Lee Peuker	Movary	Lee PeukerのMovaryにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-40350	2026-04-28 10:12	2026-04-18	Show	GitHub Exploit DB Packet Storm

3987	8.8	重要 Network	Apache Software Foundation	ActiveMQ Broker Apache ActiveMQ	Apache Software FoundationのApache ActiveMQ等の複数製品における複数の脆弱性	CWE-20 CWE-94	CVE-2026-40466	2026-04-28 10:12	2026-04-24	Show	GitHub Exploit DB Packet Storm

3988	4.3	警告 Network	Apache Software Foundation	Apache Airflow	Apache Software FoundationのApache Airflowにおけるアクセス制御の不十分な粒度に関する脆弱性	CWE-1220 アクセス制御の不十分な粒度	CVE-2026-40690	2026-04-28 10:12	2026-04-24	Show	GitHub Exploit DB Packet Storm

3989	6.1	警告 Network	Astro	Astro	Astroにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41067	2026-04-28 10:12	2026-04-24	Show	GitHub Exploit DB Packet Storm

3990	5.4	警告 Adjacent	OpenPrinting	CUPS	OpenPrintingのCUPSにおける複数の脆弱性	CWE-125 CWE-200	CVE-2026-41079	2026-04-28 10:11	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346881	-	alex_dunaevsky	convex_3d	Buffer overflow in the readObjectChunk function in 3dsimp.cpp for the convex-tool program in Convex 3D 0.8pre1 allows remote attackers to execute arbitrary code via a crafted 3DS file.	NVD-CWE-Other	CVE-2004-1265	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

346882	-	jacob_rhoden	csv2xml	Buffer overflow in the get_field_headers function in csv2xml.cpp for csv2xml 0.5.1 allows remote attackers to execute arbitrary code via a crafted CSV file.	NVD-CWE-Other	CVE-2004-1266	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

346883	-	dxfscope	dxf_file_format_viewer	Buffer overflow in the dxfin function in d.c for dxfscope 0.2 allows remote attackers to execute arbitrary code via a crafted DXF file.	NVD-CWE-Other	CVE-2004-1271	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

346884	-	bolthole	filter	Buffer overflow in the save_embedded_address function in filter.c for elm/bolthole filter 2.6.1 allows remote attackers to execute arbitrary code via a crafted email message.	NVD-CWE-Other	CVE-2004-1272	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

346885	-	greed	greed	Buffer overflow in the DownloadLoop function in main.c for greed 0.81p allows remote attackers to execute arbitrary code via a GRX file containing a long filename.	NVD-CWE-Other	CVE-2004-1273	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

346886	-	greed	greed	The DownloadLoop function in main.c for greed 0.81p allows remote attackers to execute arbitrary code via a GRX file containing a filename with shell metacharacters.	NVD-CWE-Other	CVE-2004-1274	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

346887	-	html2hdml	html2hdml	Buffer overflow in the remove_quote function in convert.c for html2hdml 1.0.3 allows remote attackers to execute arbitrary code via a crafted HTML file.	NVD-CWE-Other	CVE-2004-1275	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

346888	-	iglooftp	iglooftp	IglooFTP 0.6.1, when recursively uploading a directory, allows local users to overwrite the files that are being uploaded by creating temporary files with names generated by the tmpnam function, befo…	NVD-CWE-Other	CVE-2004-1276	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

346889	-	iglooftp	iglooftp	The download_selection_recursive() function in ftplist.c for IglooFTP 0.6.1 allows remote malicious FTP servers to overwrite arbitrary files via filenames that contain / (slash) characters.	NVD-CWE-Other	CVE-2004-1277	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm

346890	-	abc2ps john_chambers	abc2ps jcabc2ps	Buffer overflow in the switch_voice function in parse.c for jcabc2ps 20040902 allows remote attackers to execute arbitrary code via a crafted ABC file.	NVD-CWE-Other	CVE-2004-1278	2017-07-11 10:30	2005-01-10	Show	GitHub Exploit DB Packet Storm