Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5051 8.8 重要
Network 		Kubernetes ingress-nginx Kubernetesのingress-nginxにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-3288 2026-05-8 12:23 2026-03-9 Show GitHub Exploit DB Packet Storm
5052 7.5 重要
Network 		マイクロソフト Microsoft .NET Framework
.NET 		.NET、.NET Framework、Visual Studio のサービス拒否の脆弱性 CWE-20
CWE-400
CWE-835
CVE-2026-33116 2026-05-8 12:23 2026-04-14 Show GitHub Exploit DB Packet Storm
5053 8.8 重要
Network 		マイクロソフト SQL Server 2016
SQL Server 2017
SQL Server 2022
SQL Server 2019
SQL Server 2025 		Microsoft SQL Server のリモート コードが実行される脆弱性 CWE-822
信頼性のないポインタデリファレンス 		CVE-2026-33120 2026-05-8 12:23 2026-04-14 Show GitHub Exploit DB Packet Storm
5054 5.9 警告
Network 		Apache Software Foundation Apache Log4j Apache Software FoundationのApache Log4jにおける複数の脆弱性 CWE-295
CWE-297
CVE-2026-34477 2026-05-8 12:23 2026-04-10 Show GitHub Exploit DB Packet Storm
5055 7.5 重要
Network 		Apache Software Foundation Apache Log4j Apache Software FoundationのApache Log4jにおけるエンコードおよびエスケープに関する脆弱性 CWE-116
不適切なエンコード、または出力のエスケープ 		CVE-2026-34479 2026-05-8 12:23 2026-04-10 Show GitHub Exploit DB Packet Storm
5056 7.4 重要
Network 		GNU Project
レッドハット		 Red Hat Hardened Images
Red Hat Enterprise Linux
Red Hat OpenShift Container Platform
GnuTLS 		GNU Project等の複数ベンダの製品における大文字と小文字の区別の不適切な処理に関する脆弱性 CWE-178
大文字と小文字の区別の不適切な処理 		CVE-2026-3833 2026-05-8 12:23 2026-04-30 Show GitHub Exploit DB Packet Storm
5057 9.1 緊急
Network 		Apache Software Foundation Apache Wicket Apache Software FoundationのApache Wicketにおけるセッションの固定化の脆弱性 CWE-384
CWE-384
CVE-2026-40010 2026-05-8 12:23 2026-05-6 Show GitHub Exploit DB Packet Storm
5058 9.1 緊急
Network 		Apache Software Foundation Apache OpenNLP Apache Software FoundationのApache OpenNLPにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2026-40682 2026-05-8 12:23 2026-05-4 Show GitHub Exploit DB Packet Storm
5059 9.8 緊急
Network 		Apache Software Foundation Apache OpenNLP Apache Software FoundationのApache OpenNLPにおけるクラスまたはコードを選択する外部から制御された入力の使用に関する脆弱性 CWE-470
クラスまたはコードを選択する外部から制御された入力の使用 		CVE-2026-42027 2026-05-8 12:23 2026-05-4 Show GitHub Exploit DB Packet Storm
5060 6.5 警告
Network 		nginxui Nginx UI Nginx UI TeamのNginx UIにおける複数の脆弱性 CWE-200
CWE-863
CVE-2026-42220 2026-05-8 12:23 2026-05-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346121 - avaya
gentoo
linux
redhat
suse
conectiva 		converged_communications_server
modular_messaging_message_storage_server
linux
linux_kernel
enterprise_linux
suse_linux
intuity_audix
suse_email_server
suse_linux_admin-cd_for… 		Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal handler with a certain sequence of fsave and … NVD-CWE-Other
CVE-2004-0554 2017-10-11 10:29 2004-08-6 Show GitHub Exploit DB Packet Storm
346122 - mandrakesoft
gentoo
linux
trustix 		mandrake_multi_network_firewall
linux
linux_kernel
mandrake_linux
mandrake_linux_corporate_server
secure_linux 		Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH bit but does not verify the FPH owner, which allows local users to read register values of other process… NVD-CWE-Other
CVE-2004-0565 2017-10-11 10:29 2004-12-6 Show GitHub Exploit DB Packet Storm
346123 - mandrakesoft
redhat
suse 		mandrake_linux
mandrake_linux_corporate_server
fedora_core
suse_linux 		Insecure permissions for the /proc/scsi/qla2300/HbaApiNode file in Linux allows local users to cause a denial of service. NVD-CWE-Other
CVE-2004-0587 2017-10-11 10:29 2004-08-6 Show GitHub Exploit DB Packet Storm
346124 - greg_roelofs libpng The png_handle_iCCP function in libpng 1.2.5 and earlier allows remote attackers to cause a denial of service (application crash) via a certain PNG image that triggers a null dereference. NVD-CWE-Other
CVE-2004-0598 2017-10-11 10:29 2004-11-23 Show GitHub Exploit DB Packet Storm
346125 - greg_roelofs libpng Multiple integer overflows in the (1) png_read_png in pngread.c or (2) png_handle_sPLT functions in pngrutil.c or (3) progressive display image reading capability in libpng 1.2.5 and earlier allow re… NVD-CWE-Other
CVE-2004-0599 2017-10-11 10:29 2004-11-23 Show GitHub Exploit DB Packet Storm
346126 - samba
trustix 		samba
secure_linux 		Buffer overflow in the Samba Web Administration Tool (SWAT) in Samba 3.0.2 to 3.0.4 allows remote attackers to execute arbitrary code via an invalid base-64 character during HTTP basic authentication. NVD-CWE-Other
CVE-2004-0600 2017-10-11 10:29 2004-07-27 Show GitHub Exploit DB Packet Storm
346127 - ipsec-tools
kame
redhat 		ipsec-tools
racoon
enterprise_linux
enterprise_linux_desktop 		The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication. NVD-CWE-Other
CVE-2004-0607 2017-10-11 10:29 2004-12-6 Show GitHub Exploit DB Packet Storm
346128 - redhat fedora_core
linux
kernel 		Integer overflow in the ubsec_keysetup function for Linux Broadcom 5820 cryptonet driver allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a negative add… NVD-CWE-Other
CVE-2004-0619 2017-10-11 10:29 2004-12-6 Show GitHub Exploit DB Packet Storm
346129 - sun solaris Solaris 9, when configured as a Kerberos client with patch 112908-12 or 115168-03 and using pam_krb5 as an "auth" module with the debug feature enabled, records passwords in plaintext, which could al… NVD-CWE-Other
CVE-2004-0653 2017-10-11 10:29 2004-08-6 Show GitHub Exploit DB Packet Storm
346130 - linux
redhat
trustix 		linux_kernel
enterprise_linux
enterprise_linux_desktop
secure_linux 		Certain USB drivers in the Linux 2.4 kernel use the copy_to_user function on uninitialized structures, which could allow local users to obtain sensitive information by reading memory that was not cle… NVD-CWE-Other
CVE-2004-0685 2017-10-11 10:29 2004-12-23 Show GitHub Exploit DB Packet Storm