Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4231 6.1 警告
Local 		オラクル Oracle Cloud Infrastructure CLI オラクルのOracle Cloud Infrastructure CLIにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-35254 2026-05-8 12:10 2026-05-6 Show GitHub Exploit DB Packet Storm
4232 6.6 警告
Local 		オラクル Oracle Cloud Native Environment (Oracle CNE) Command Line Interface (CLI) オラクルのOracle Cloud Native Environment (Oracle CNE) Command Line Interface (CLI)におけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-35255 2026-05-8 12:10 2026-05-6 Show GitHub Exploit DB Packet Storm
4233 5.5 警告
Local 		ikea DIRIGERA Firmware ikeaのDIRIGERA Firmwareにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-3588 2026-05-8 12:10 2026-03-9 Show GitHub Exploit DB Packet Storm
4234 10 緊急
Network 		Unisys WebPerfect Image Suite UnisysのWebPerfect Image Suiteにおけるフィルタリングの回避に関する脆弱性 CWE-441
フィルタリング回避 		CVE-2026-39906 2026-05-8 12:10 2026-04-14 Show GitHub Exploit DB Packet Storm
4235 10 緊急
Network 		Unisys WebPerfect Image Suite UnisysのWebPerfect Image Suiteにおけるファイル名やパス名の外部制御に関する脆弱性 CWE-73
ファイル名やパス名の外部制御 		CVE-2026-39907 2026-05-8 12:10 2026-04-14 Show GitHub Exploit DB Packet Storm
4236 7.5 重要
Network 		ZTE ZXESM iEMS ZTEのZXESM iEMSにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-40436 2026-05-8 12:10 2026-04-13 Show GitHub Exploit DB Packet Storm
4237 7.5 重要
Network 		MIYAGAWA (Tatsuhiko Miyagawa) Starman MIYAGAWA (Tatsuhiko Miyagawa)のStarmanにおけるHTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2026-40560 2026-05-8 12:10 2026-04-29 Show GitHub Exploit DB Packet Storm
4238 5.3 警告
Network 		Kazuho Oku (kazuho) Starlet Kazuho Oku (kazuho)のStarletにおけるHTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2026-40561 2026-05-8 12:10 2026-05-3 Show GitHub Exploit DB Packet Storm
4239 7.5 重要
Network 		NERDVANA (Michael Conrad) Crypt-SecretBuffer NERDVANA (Michael Conrad)のCrypt-SecretBufferにおけるタイミングの違いに起因する情報漏えいに関する脆弱性 CWE-208
タイミングの違いに起因する情報漏えい 		CVE-2026-5086 2026-05-8 12:10 2026-04-13 Show GitHub Exploit DB Packet Storm
4240 7.5 重要
Network 		JDEGUEST (Jacques Deguest) Apache::API::Password JDEGUEST (Jacques Deguest)のApache::API::Passwordにおける暗号の脆弱な PRNG の使用に関する脆弱性 CWE-338
暗号における脆弱な PRNG の使用 		CVE-2026-5088 2026-05-8 12:09 2026-04-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346031 - redhat linux 2.4.3-12 kernel in Red Hat Linux 7.1 Korean installation program sets the setting default umask for init to 000, which installs files with world-writeable permissions. NVD-CWE-Other
CVE-2001-0859 2017-10-10 10:29 2001-12-6 Show GitHub Exploit DB Packet Storm
346032 - microsoft windows_2000
windows_xp 		Terminal Services Manager MMC in Windows 2000 and XP trusts the Client Address (IP address) that is provided by the client instead of obtaining it from the packet headers, which allows clients to spo… NVD-CWE-Other
CVE-2001-0860 2017-10-10 10:29 2001-12-6 Show GitHub Exploit DB Packet Storm
346033 - cisco 12000_router Cisco 12000 with IOS 12.0 and line cards based on Engine 2 and earlier allows remote attackers to cause a denial of service (CPU consumption) by flooding the router with traffic that generates a larg… NVD-CWE-Other
CVE-2001-0861 2017-10-10 10:29 2001-12-6 Show GitHub Exploit DB Packet Storm
346034 - cisco 12000_router Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not block non-initial packet fragments, which allows remote attackers to bypass the ACL. NVD-CWE-Other
CVE-2001-0862 2017-10-10 10:29 2001-12-6 Show GitHub Exploit DB Packet Storm
346035 - cisco 12000_router Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not handle the "fragment" keyword in a compiled ACL (Turbo ACL) for packets that are sent to the router, which allows remote attackers … NVD-CWE-Other
CVE-2001-0863 2017-10-10 10:29 2001-12-6 Show GitHub Exploit DB Packet Storm
346036 - cisco 12000_router Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly handle the implicit "deny ip any any" rule in an outgoing ACL when the ACL contains exactly 448 entries, which can allow s… NVD-CWE-Other
CVE-2001-0864 2017-10-10 10:29 2001-12-6 Show GitHub Exploit DB Packet Storm
346037 - cisco 12000_router Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not support the "fragment" keyword in an outgoing ACL, which could allow fragmented packets in violation of the intended access. NVD-CWE-Other
CVE-2001-0865 2017-10-10 10:29 2001-12-6 Show GitHub Exploit DB Packet Storm
346038 - cisco 12000_router Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly filter does not properly filter packet fragments even when the "fragment" keyword is used in an ACL, which allows remote a… NVD-CWE-Other
CVE-2001-0867 2017-10-10 10:29 2001-12-6 Show GitHub Exploit DB Packet Storm
346039 - ian_lance_taylor taylor_uucp uuxqt in Taylor UUCP package does not properly remove dangerous long options, which allows local users to gain privileges by calling uux and specifying an alternate configuration file with the --conf… NVD-CWE-Other
CVE-2001-0873 2017-10-10 10:29 2001-12-21 Show GitHub Exploit DB Packet Storm
346040 - gnu mailman Cross-site scripting vulnerability in Mailman email archiver before 2.08 allows attackers to obtain sensitive information or authentication credentials via a malicious link that is accessed by other … NVD-CWE-Other
CVE-2001-0884 2017-10-10 10:29 2001-12-21 Show GitHub Exploit DB Packet Storm