Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4291	8.8	重要 Network	マイクロソフト	Microsoft Windows Server 2025 Microsoft Windows Server 2022 Microsoft Windows 11 24h2 Microsoft Windows 11 25h2 Microsoft …	リモートデスクトップクライアントのリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-32157	2026-05-11 11:02	2026-04-14	Show	GitHub Exploit DB Packet Storm

4292	10	緊急 Network	Luis Novo (lfnovo)	Open Notebook	Luis Novo (lfnovo)のOpen Notebookにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-33587	2026-05-11 11:02	2026-05-7	Show	GitHub Exploit DB Packet Storm

4293	8.1	重要 Network	Luis Novo (lfnovo)	Open Notebook	Luis Novo (lfnovo)のOpen Notebookにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-33588	2026-05-11 11:02	2026-05-7	Show	GitHub Exploit DB Packet Storm

4294	6.5	警告 Network	Luis Novo (lfnovo)	Open Notebook	Luis Novo (lfnovo)のOpen Notebookにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-33589	2026-05-11 11:02	2026-05-7	Show	GitHub Exploit DB Packet Storm

4295	9.8	緊急 Network	bukts.ru LLC (Nefteprodukttekhnika)	BUK TS-G Gas Station Automation System	bukts.ru LLC (Nefteprodukttekhnika)のBUK TS-G Gas Station Automation SystemにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-3843	2026-05-11 11:02	2026-03-10	Show	GitHub Exploit DB Packet Storm

4296	6.1	警告 Network	spin.js	spin.js	spin.jsにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-3884	2026-05-11 11:02	2026-03-11	Show	GitHub Exploit DB Packet Storm

4297	8.3	重要 Network	HCL Technologies Limited	HCL BigFix Service Management (SM)	HCL Technologies LimitedのHCL BigFix Service Management (SM)におけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2024-30151	2026-05-11 11:02	2026-05-6	Show	GitHub Exploit DB Packet Storm

4298	5.7	警告 Network	HCL Technologies Limited	HCL BigFix Service Management (SM)	HCL Technologies LimitedのHCL BigFix Service Management (SM)におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2025-31957	2026-05-11 11:02	2026-05-6	Show	GitHub Exploit DB Packet Storm

4299	3.5	低 Network	HCL Technologies Limited	HCL BigFix Service Management (SM)	HCL Technologies LimitedのHCL BigFix Service Management (SM)におけるメタデータのよる重要な情報の公開に関する脆弱性	CWE-1230 メタデータのよる重要な情報の公開	CVE-2025-31959	2026-05-11 11:02	2026-05-6	Show	GitHub Exploit DB Packet Storm

4300	5.3	警告 Network	HCL Technologies Limited	HCL BigFix Service Management (SM)	HCL Technologies LimitedのHCL BigFix Service Management (SM)におけるエラーメッセージによる情報漏えいに関する脆弱性	CWE-209 エラーメッセージによる情報漏えい	CVE-2025-31960	2026-05-11 11:02	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346331	-	recourse_technologies	mantrap	Recourse ManTrap 1.6 modifies the kernel so that ".." does not appear in the /proc listing, which allows attackers to determine that they are in a honeypot system.	NVD-CWE-Other	CVE-2000-1141	2017-10-10 10:29	2001-01-9	Show	GitHub Exploit DB Packet Storm

346332	-	recourse_technologies	mantrap	Recourse ManTrap 1.6 generates an error when an attacker cd's to /proc/self/cwd and executes the pwd command, which allows attackers to determine that they are in a honeypot system.	NVD-CWE-Other	CVE-2000-1142	2017-10-10 10:29	2001-01-9	Show	GitHub Exploit DB Packet Storm

346333	-	recourse_technologies	mantrap	Recourse ManTrap 1.6 hides the first 4 processes that run on a Solaris system, which allows attackers to determine that they are in a honeypot system.	NVD-CWE-Other	CVE-2000-1143	2017-10-10 10:29	2001-01-9	Show	GitHub Exploit DB Packet Storm

346334	-	recourse_technologies	mantrap	Recourse ManTrap 1.6 sets up a chroot environment to hide the fact that it is running, but the inode number for the resulting "/" file system is higher than normal, which allows attackers to determin…	NVD-CWE-Other	CVE-2000-1144	2017-10-10 10:29	2001-01-9	Show	GitHub Exploit DB Packet Storm

346335	-	recourse_technologies	mantrap	Recourse ManTrap 1.6 allows attackers who have gained root access to use utilities such as crash or fsdb to read /dev/mem and raw disk devices to identify ManTrap processes or modify arbitrary data f…	NVD-CWE-Other	CVE-2000-1145	2017-10-10 10:29	2001-01-9	Show	GitHub Exploit DB Packet Storm

346336	-	recourse_technologies	mantrap	Recourse ManTrap 1.6 allows attackers to cause a denial of service via a sequence of commands that navigate into and out of the /proc/self directory and executing various commands such as ls or pwd.	NVD-CWE-Other	CVE-2000-1146	2017-10-10 10:29	2001-01-9	Show	GitHub Exploit DB Packet Storm

346337	-	volano_llc	volanochatpro	The installation of VolanoChatPro chat server sets world-readable permissions for its configuration file and stores the server administrator passwords in plaintext, which allows local users to gain p…	NVD-CWE-Other	CVE-2000-1148	2017-10-10 10:29	2001-01-9	Show	GitHub Exploit DB Packet Storm

346338	-	aladdin_enterprises	ghostscript	ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink attack.	NVD-CWE-Other	CVE-2000-1162	2017-10-10 10:29	2001-01-9	Show	GitHub Exploit DB Packet Storm

346339	-	aladdin_enterprises	ghostscript	ghostscript before 5.10-16 uses an empty LD_RUN_PATH environmental variable to find libraries in the current directory, which could allow local users to execute commands as other users by placing a T…	NVD-CWE-Other	CVE-2000-1163	2017-10-10 10:29	2001-01-9	Show	GitHub Exploit DB Packet Storm

346340	-	att	winvnc	WinVNC installs the WinVNC3 registry key with permissions that give Special Access (read and modify) to the Everybody group, which allows users to read and modify sensitive information such as passwo…	NVD-CWE-Other	CVE-2000-1164	2017-10-10 10:29	2001-01-9	Show	GitHub Exploit DB Packet Storm