Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4141 8.2 重要
Network 		Quarkus Quarkus Quarkusにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-39852 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
4142 4.8 警告
Network 		Linux Containers Incus Linux ContainersのIncusにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-40243 2026-05-11 11:10 2026-05-6 Show GitHub Exploit DB Packet Storm
4143 7.5 重要
Network 		Gotenberg, Inc. Gotenberg TheCodingMachineのGotenbergにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-40280 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
4144 8.8 重要
Network 		Math.js Math.js Math.jsにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性 CWE-915
動的に決定されたオブジェクト属性の不適切に制御された変更 		CVE-2026-41139 2026-05-11 11:10 2026-05-7 Show GitHub Exploit DB Packet Storm
4145 8.8 重要
Network 		OpenEXR OpenEXR OpenEXRにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-41142 2026-05-11 11:10 2026-05-7 Show GitHub Exploit DB Packet Storm
4146 7.7 重要
Network 		Istio Istio Istioにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41413 2026-05-11 11:09 2026-05-7 Show GitHub Exploit DB Packet Storm
4147 8.1 重要
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAI等の複数製品におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-41496 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
4148 9.8 緊急
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおける複数の脆弱性 CWE-77
CWE-78
CVE-2026-41497 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
4149 9.8 緊急
Network 		Electerm project Electerm Electerm projectのElectermにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-41500 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
4150 9.8 緊急
Network 		Electerm project Electerm Electerm projectのElectermにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-41501 2026-05-11 11:09 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345631 - enlightenment
imagemagick
sun
conectiva
mandrakesoft
redhat
suse
turbolinux
ubuntu 		imlib
imlib2
imagemagick
java_desktop_system
linux
mandrake_linux
mandrake_linux_corporate_server
enterprise_linux
enterprise_linux_desktop
fedora_core
linux_advanced_wo… 		Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute ar… NVD-CWE-Other
CVE-2004-0827 2017-10-11 10:29 2004-09-16 Show GitHub Exploit DB Packet Storm
345632 - squid squid The (1) ntlm_fetch_string and (2) ntlm_get_string functions in Squid 2.5.6 and earlier, with NTLM authentication enabled, allow remote attackers to cause a denial of service (application crash) via a… NVD-CWE-Other
CVE-2004-0832 2017-10-11 10:29 2004-11-3 Show GitHub Exploit DB Packet Storm
345633 - linux
redhat
suse
trustix
ubuntu 		linux_kernel
enterprise_linux
enterprise_linux_desktop
fedora_core
linux_advanced_workstation
suse_linux
secure_linux
ubuntu_linux 		Multiple vulnerabilities in the samba filesystem (smbfs) in Linux kernel 2.4 and 2.6 allow remote samba servers to cause a denial of service (crash) or gain sensitive information from kernel memory v… NVD-CWE-Other
CVE-2004-0883 2017-10-11 10:29 2005-01-10 Show GitHub Exploit DB Packet Storm
345634 - cyrus
conectiva 		sasl
linux 		The (1) libsasl and (2) libsasl2 libraries in Cyrus-SASL 2.1.18 and earlier trust the SASL_PATH environment variable to find all available SASL plug-ins, which allows local users to execute arbitrary… NVD-CWE-Other
CVE-2004-0884 2017-10-11 10:29 2005-01-27 Show GitHub Exploit DB Packet Storm
345635 - libtiff
pdflib
wxgtk2
apple
kde
mandrakesoft
redhat
suse
trustix 		libtiff
pdf_library
wxgtk2
mac_os_x
mac_os_x_server
kde
mandrake_linux
enterprise_linux
enterprise_linux_desktop
fedora_core
linux_advanced_workstation
suse_linux
 Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls. NVD-CWE-Other
CVE-2004-0886 2017-10-11 10:29 2005-01-27 Show GitHub Exploit DB Packet Storm
345636 - easy_software_products
gnome
kde
pdftohtml
tetex
xpdf
debian
gentoo
redhat
suse
ubuntu 		cups
gpdf
koffice
kpdf
pdftohtml
tetex
xpdf
debian_linux
linux
kde
enterprise_linux
enterprise_linux_desktop
fedora_core
linux_advanced_workstation
suse_linu… 		Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service (crash) and possibly exe… NVD-CWE-Other
CVE-2004-0888 2017-10-11 10:29 2005-01-27 Show GitHub Exploit DB Packet Storm
345637 - rob_flynn
gentoo
slackware
ubuntu 		gaim
linux
slackware_linux
ubuntu_linux 		Buffer overflow in the MSN protocol handler for gaim 0.79 to 1.0.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an "unexpected sequ… NVD-CWE-Other
CVE-2004-0891 2017-10-11 10:29 2005-01-27 Show GitHub Exploit DB Packet Storm
345638 - mozilla
conectiva
redhat
suse 		mozilla
thunderbird
linux
enterprise_linux
enterprise_linux_desktop
fedora_core
linux_advanced_workstation
suse_linux 		Stack-based buffer overflow in the writeGroup function in nsVCardObj.cpp for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to ex… NVD-CWE-Other
CVE-2004-0903 2017-10-11 10:29 2005-01-27 Show GitHub Exploit DB Packet Storm
345639 - mozilla
netscape
conectiva
redhat 		firefox
mozilla
thunderbird
navigator
linux
enterprise_linux
enterprise_linux_desktop
fedora_core
linux_advanced_workstation 		Integer overflow in the bitmap (BMP) decoder for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allow remote attackers to execute arbitrary code via wide… NVD-CWE-Other
CVE-2004-0904 2017-10-11 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
345640 - mozilla
netscape
conectiva
redhat
suse 		firefox
mozilla
navigator
linux
enterprise_linux
enterprise_linux_desktop
fedora_core
linux_advanced_workstation
suse_linux 		Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to perform cross-domain scripting and possibly execute arbitrary code by convincin… NVD-CWE-Other
CVE-2004-0905 2017-10-11 10:29 2004-09-14 Show GitHub Exploit DB Packet Storm