Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4131	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-31716	2026-05-8 12:05	2026-05-1	Show	GitHub Exploit DB Packet Storm

4132	-	-	（複数のベンダ）	（複数の製品）	CISA ICS Advisory / ICS Medical Advisory（2026年04月30日）	-	-	2026-05-7 14:50	2026-05-1	Show	GitHub Exploit DB Packet Storm

4133	6.1	警告 Network	opennebula	opennebula	opennebulaにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-56534	2026-05-7 12:30	2026-04-29	Show	GitHub Exploit DB Packet Storm

4134	6.1	警告 Network	opennebula	opennebula	opennebulaにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-56535	2026-05-7 12:30	2026-04-29	Show	GitHub Exploit DB Packet Storm

4135	6.1	警告 Network	opennebula	opennebula	opennebulaにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-56536	2026-05-7 12:30	2026-04-29	Show	GitHub Exploit DB Packet Storm

4136	6.1	警告 Network	opennebula	opennebula	opennebulaにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-56537	2026-05-7 12:30	2026-04-29	Show	GitHub Exploit DB Packet Storm

4137	7.5	重要 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品における入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2025-59028	2026-05-7 12:30	2026-03-27	Show	GitHub Exploit DB Packet Storm

4138	7.5	重要 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品における入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2025-59032	2026-05-7 12:30	2026-03-27	Show	GitHub Exploit DB Packet Storm

4139	5.5	警告 Local	Wazuh Inc.	Wazuh	Wazuh Inc.のWazuhにおける複数の脆弱性	CWE-124 CWE-191	CVE-2026-26204	2026-05-7 12:30	2026-04-29	Show	GitHub Exploit DB Packet Storm

4140	6.5	警告 Network	Wazuh Inc.	Wazuh	Wazuh Inc.のWazuhにおける複数の脆弱性	CWE-307 CWE-362 CWE-367	CVE-2026-26206	2026-05-7 12:30	2026-04-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346071	-	lanifex	outreach_project_tool	Multiple cross-site scripting (XSS) vulnerabilities in Outreach Project Tool (OPT) 0.946b allow remote attackers to inject arbitrary web script or HTML, as demonstrated using the news field.	CWE-79 Cross-site Scripting	CVE-2003-1353	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346072	-	gamespy3d	gamespy_3d	Multiple GameSpy 3D 2.62 compatible gaming servers generate very large UDP responses to small requests, which allows remote attackers to use the servers as an amplifier in DDoS attacks with spoofed U…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2003-1354	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346073	-	electronic_arts	battlefield_1942	Buffer overflow in the remote console (rcon) in Battlefield 1942 1.2 and 1.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long user name and …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2003-1355	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346074	-	replicom	proxyview	ProxyView has a default administrator password of Administrator for Embedded Windows NT, which allows remote attackers to gain access.	CWE-16 Configuration	CVE-2003-1357	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346075	-	hp	hp-ux	rs.F300 for HP-UX 10.0 through 11.22 uses the PATH environment variable to find and execute programs such as rm while operating at raised privileges, which allows local users to gain privileges by mo…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2003-1358	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346076	-	hp	hp-ux	Buffer overflow in the setupterm function of (1) lanadmin and (2) landiag programs of HP-UX 10.0 through 10.34 allows local users to execute arbitrary code via a long TERM environment variable.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2003-1360	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346077	-	veritas	bare_metal_restore	Unknown vulnerability in VERITAS Bare Metal Restore (BMR) of Tivoli Storage Manager (TSM) 3.1.0 through 3.2.1 allows remote attackers to gain root privileges on the BMR Main Server.	NVD-CWE-noinfo	CVE-2003-1361	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346078	-	hp	bastille	Bastille B.02.00.00 of HP-UX 11.00 and 11.11 does not properly configure the (1) NOVRFY and (2) NOEXPN options in the sendmail.cf file, which could allow remote attackers to verify the existence of s…	CWE-16 Configuration	CVE-2003-1362	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346079	-	aprelium_technologies	abyss_web_server	Aprelium Technologies Abyss Web Server 1.1.2, and possibly other versions before 1.1.4, allows remote attackers to cause a denial of service (crash) via an HTTP GET message with empty (1) Connection …	CWE-20 Improper Input Validation	CVE-2003-1364	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346080	-	perl	cgi_lite	The escape_dangerous_chars function in CGI::Lite 2.0 and earlier does not correctly remove special characters including (1) "\" (backslash), (2) "?", (3) "~" (tilde), (4) "^" (carat), (5) newline, or…	CWE-20 Improper Input Validation	CVE-2003-1365	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm