Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4401	5.5	警告 Local	freedesktop.org レッドハット	Polkit Red Hat OpenShift Container Platform Red Hat Enterprise Linux	freedesktop.org等の複数ベンダの製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-4897	2026-04-23 10:10	2026-03-26	Show	GitHub Exploit DB Packet Storm

4402	9.9	緊急 Network	レッドハット	openshift ai	レッドハットのopenshift aiにおける送信データへの重要な情報の挿入に関する脆弱性	CWE-201 送信データへの重要な情報の挿入	CVE-2026-5483	2026-04-23 10:10	2026-04-10	Show	GitHub Exploit DB Packet Storm

4403	7.5	重要 Network	ザイオソフト株式会社	Ziostation2	Ziostation2におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40062	2026-04-22 14:16	2026-04-22	Show	GitHub Exploit DB Packet Storm

4404	7.8	重要 Local	ジャパンメディアシステム株式会社	Windows PC用LiveOn Meetクライアントインストーラキヤノンネットワークカメラ用プラグインインストーラ	LiveOn MeetのWindows PC用クライアントインストーラおよびプラグインインストーラにおける任意のDLL読み込みの脆弱性	CWE-Other その他	CVE-2026-32679	2026-04-22 14:08	2026-04-22	Show	GitHub Exploit DB Packet Storm

4405	6.1	警告 Network	DeepL	DeepL	DeepL Chrome拡張機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40451	2026-04-22 12:06	2026-04-22	Show	GitHub Exploit DB Packet Storm

4406	9.9	緊急 Network	Percona	Percona Monitoring and Management	PerconaのPercona Monitoring and Managementにおける不要な特権による実行に関する脆弱性	CWE-250 不要な特権による実行	CVE-2026-25212	2026-04-22 10:10	2026-04-2	Show	GitHub Exploit DB Packet Storm

4407	9.8	緊急 Network	Progress Software Corporation	ShareFile Storage Zone Controller	Progress Software CorporationのShareFile Storage Zone Controllerにおける複数の脆弱性	CWE-284 CWE-698 CWE-noinfo	CVE-2026-2699	2026-04-22 10:10	2026-04-2	Show	GitHub Exploit DB Packet Storm

4408	8.8	重要 Network	Progress Software Corporation	ShareFile Storage Zone Controller	Progress Software CorporationのShareFile Storage Zone Controllerにおける複数の脆弱性	CWE-434 CWE-434 CWE-78 CWE-94	CVE-2026-2701	2026-04-22 10:10	2026-04-2	Show	GitHub Exploit DB Packet Storm

4409	7.8	重要 Local	Jeremiah Lowin	FastMCP	Jeremiah LowinのFastMCPにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2025-64340	2026-04-22 10:10	2026-04-3	Show	GitHub Exploit DB Packet Storm

4410	4.9	警告 Network	Canonical	Juju	CanonicalのJujuにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2025-68152	2026-04-22 10:10	2026-04-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350201	-	stanley_t._shebs	xconq	Buffer overflow in xconq and cconq game programs on Red Hat Linux allows local users to gain additional privileges via long USER environmental variable.	NVD-CWE-Other	CVE-2000-0617	2008-09-11 04:05	2000-06-22	Show	GitHub Exploit DB Packet Storm

350202	-	stanley_t._shebs	xconq	Buffer overflow in xconq and cconq game programs on Red Hat Linux allows local users to gain additional privileges via long DISPLAY environmental variable.	NVD-CWE-Other	CVE-2000-0618	2008-09-11 04:05	2000-06-22	Show	GitHub Exploit DB Packet Storm

350203	-	oreilly	website_professional	Buffer overflow in O'Reilly WebSite Professional web server 2.4 and earlier allows remote attackers to execute arbitrary commands via a long GET request or Referrer header.	NVD-CWE-Other	CVE-2000-0623	2008-09-11 04:05	2000-07-17	Show	GitHub Exploit DB Packet Storm

350204	-	netzero	zeroport	NetZero 3.0 and earlier uses weak encryption for storing a user's login information, which allows a local user to decrypt the password.	NVD-CWE-Other	CVE-2000-0625	2008-09-11 04:05	2000-07-18	Show	GitHub Exploit DB Packet Storm

350205	-	computer_software_manufaktur	alibaba	Buffer overflow in Alibaba web server allows remote attackers to cause a denial of service via a long GET request.	NVD-CWE-Other	CVE-2000-0626	2008-09-11 04:05	2000-07-18	Show	GitHub Exploit DB Packet Storm

350206	-	sun	java_system_web_server	The default configuration of the Sun Java web server 2.0 and earlier allows remote attackers to execute arbitrary commands by uploading Java code to the server via board.html, then directly calling t…	NVD-CWE-Other	CVE-2000-0629	2008-09-11 04:05	2000-07-12	Show	GitHub Exploit DB Packet Storm

350207	-	texas_imperial_software	wftpd	WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by using the RESTART (REST) command and writing beyond the end of a file, or writing to a file that does not exist, via c…	NVD-CWE-Other	CVE-2000-0645	2008-09-11 04:05	2000-07-21	Show	GitHub Exploit DB Packet Storm

350208	-	texas_imperial_software	wftpd	WFTPD and WFTPD Pro 2.41 allows remote attackers to obtain the real pathname for a file by executing a STATUS (STAT) command while the file is being transferred.	NVD-CWE-Other	CVE-2000-0646	2008-09-11 04:05	2000-07-21	Show	GitHub Exploit DB Packet Storm

350209	-	texas_imperial_software	wftpd	WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing an MLST command before logging into the server.	NVD-CWE-Other	CVE-2000-0647	2008-09-11 04:05	2000-07-21	Show	GitHub Exploit DB Packet Storm

350210	-	mozilla netscape	mozilla communicator	Netscape Communicator 4.73 and earlier allows remote attackers to cause a denial of service or execute arbitrary commands via a JPEG image containing a comment with an illegal field length of 1.	NVD-CWE-Other	CVE-2000-0655	2008-09-11 04:05	2000-07-25	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed