Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4401	5.5	警告 Local	freedesktop.org レッドハット	Polkit Red Hat OpenShift Container Platform Red Hat Enterprise Linux	freedesktop.org等の複数ベンダの製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-4897	2026-04-23 10:10	2026-03-26	Show	GitHub Exploit DB Packet Storm

4402	9.9	緊急 Network	レッドハット	openshift ai	レッドハットのopenshift aiにおける送信データへの重要な情報の挿入に関する脆弱性	CWE-201 送信データへの重要な情報の挿入	CVE-2026-5483	2026-04-23 10:10	2026-04-10	Show	GitHub Exploit DB Packet Storm

4403	7.5	重要 Network	ザイオソフト株式会社	Ziostation2	Ziostation2におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40062	2026-04-22 14:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

4404	7.8	重要 Local	ジャパンメディアシステム株式会社	Windows PC用LiveOn Meetクライアントインストーラキヤノンネットワークカメラ用プラグインインストーラ	LiveOn MeetのWindows PC用クライアントインストーラおよびプラグインインストーラにおける任意のDLL読み込みの脆弱性	CWE-Other その他	CVE-2026-32679	2026-04-22 14:08	2026-04-22	Show	GitHub Exploit DB Packet Storm

4405	6.1	警告 Network	DeepL	DeepL	DeepL Chrome拡張機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40451	2026-04-22 12:06	2026-04-22	Show	GitHub Exploit DB Packet Storm

4406	9.9	緊急 Network	Percona	Percona Monitoring and Management	PerconaのPercona Monitoring and Managementにおける不要な特権による実行に関する脆弱性	CWE-250 不要な特権による実行	CVE-2026-25212	2026-04-22 10:10	2026-04-2	Show	GitHub Exploit DB Packet Storm

4407	9.8	緊急 Network	Progress Software Corporation	ShareFile Storage Zone Controller	Progress Software CorporationのShareFile Storage Zone Controllerにおける複数の脆弱性	CWE-284 CWE-698 CWE-noinfo	CVE-2026-2699	2026-04-22 10:10	2026-04-2	Show	GitHub Exploit DB Packet Storm

4408	8.8	重要 Network	Progress Software Corporation	ShareFile Storage Zone Controller	Progress Software CorporationのShareFile Storage Zone Controllerにおける複数の脆弱性	CWE-434 CWE-434 CWE-78 CWE-94	CVE-2026-2701	2026-04-22 10:10	2026-04-2	Show	GitHub Exploit DB Packet Storm

4409	7.8	重要 Local	Jeremiah Lowin	FastMCP	Jeremiah LowinのFastMCPにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2025-64340	2026-04-22 10:10	2026-04-3	Show	GitHub Exploit DB Packet Storm

4410	4.9	警告 Network	Canonical	Juju	CanonicalのJujuにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2025-68152	2026-04-22 10:10	2026-04-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350181	-	oracle	application_server	SQL injection vulnerability in mod_sql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allows remote attackers to execute arbitrary SQL commands via the query string of the URL.	NVD-CWE-Other	CVE-2000-1236	2008-09-11 04:06	2000-12-31	Show	GitHub Exploit DB Packet Storm

350182	-	openssl freebsd	openssl freebsd	OpenSSL 0.9.4 and OpenSSH for FreeBSD do not properly check for the existence of the /dev/random or /dev/urandom devices, which are absent on FreeBSD Alpha systems, which causes them to produce weak …	NVD-CWE-Other	CVE-2000-0535	2008-09-11 04:05	2000-06-12	Show	GitHub Exploit DB Packet Storm

350183	-	microsoft	windows_2000 windows_nt	Windows NT and Windows 2000 hosts allow a remote attacker to cause a denial of service via malformed DCE/RPC SMBwriteX requests that contain an invalid data length.	NVD-CWE-Other	CVE-2000-0544	2008-09-11 04:05	2000-06-5	Show	GitHub Exploit DB Packet Storm

350184	-	sgi	mailx	Buffer overflow in mailx mail command (aka Mail) on Linux systems allows local users to gain privileges via a long -c (carbon copy) parameter.	NVD-CWE-Other	CVE-2000-0545	2008-09-11 04:05	2000-08-8	Show	GitHub Exploit DB Packet Storm

350185	-	lilikoi	ceilidh	Ceilidh allows remote attackers to obtain the real path of the Ceilidh directory via the translated_path hidden form field.	NVD-CWE-Other	CVE-2000-0554	2008-09-11 04:05	2000-06-8	Show	GitHub Exploit DB Packet Storm

350186	-	hp	openview_network_node_manager	Buffer overflow in HP Openview Network Node Manager 6.1 allows remote attackers to execute arbitrary commands via the Alarm service (OVALARMSRV) on port 2345.	NVD-CWE-Other	CVE-2000-0558	2008-09-11 04:05	2000-06-6	Show	GitHub Exploit DB Packet Storm

350187	-	iss	blackice_agent blackice_defender	BlackIce Defender 2.1 and earlier, and BlackIce Pro 2.0.23 and earlier, do not properly block Back Orifice traffic when the security setting is Nervous or lower.	NVD-CWE-Other	CVE-2000-0562	2008-09-11 04:05	2000-06-22	Show	GitHub Exploit DB Packet Storm

350188	-	mirabilis	icq	The guestbook CGI program in ICQ Web Front service for ICQ 2000a, 99b, and others allows remote attackers to cause a denial of service via a URL with a long name parameter.	NVD-CWE-Other	CVE-2000-0564	2008-09-11 04:05	2000-05-29	Show	GitHub Exploit DB Packet Storm

350189	-	openbsd washington_university	ftpd wu-ftpd	FTP servers such as OpenBSD ftpd, NetBSD ftpd, ProFTPd and Opieftpd do not properly cleanse untrusted format strings that are used in the setproctitle function (sometimes called by set_proc_title), w…	NVD-CWE-Other	CVE-2000-0574	2008-09-11 04:05	2000-07-7	Show	GitHub Exploit DB Packet Storm

350190	-	oracle	web_listener	Oracle Web Listener for AIX versions 4.0.7.0.0 and 4.0.8.1.0 allows remote attackers to cause a denial of service via a malformed URL.	NVD-CWE-Other	CVE-2000-0576	2008-09-11 04:05	2000-07-5	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed