Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5091	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows 10 1809 Microsoft Wind…	Windows Projected File System の特権の昇格の脆弱性	CWE-415 二重解放	CVE-2026-32074	2026-04-24 11:31	2026-04-14	Show	GitHub Exploit DB Packet Storm

5092	7.5	重要 Network	EMQX	nanomq	EMQXのnanomqにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-32135	2026-04-24 11:31	2026-04-20	Show	GitHub Exploit DB Packet Storm

5093	7.4	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows UPnP デバイスホストのリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-32156	2026-04-24 11:31	2026-04-14	Show	GitHub Exploit DB Packet Storm

5094	7.5	重要 Network	jqlang	jq	jqlangのjqにおける複数の脆弱性	CWE-122 CWE-190	CVE-2026-32316	2026-04-24 11:31	2026-04-13	Show	GitHub Exploit DB Packet Storm

5095	8.1	重要 Network	nginxui	nginx ui	Nginx UI TeamのNginx UIにおける複数の脆弱性	CWE-284 CWE-863	CVE-2026-33031	2026-04-24 11:31	2026-04-20	Show	GitHub Exploit DB Packet Storm

5096	4.3	警告 Network	Docmost	Docmost	Docmostにおける認可に関する脆弱性	CWE-285 不適切な認可	CVE-2026-33146	2026-04-24 11:30	2026-04-14	Show	GitHub Exploit DB Packet Storm

5097	8.1	重要 Network	tandoor	recipes	tandoorのrecipesにおけるHTTP ヘッダのスクリプト構文の不適切な無効化に関する脆弱性	CWE-644 HTTP ヘッダのスクリプト構文の不適切な無効化	CVE-2026-33149	2026-04-24 11:30	2026-03-26	Show	GitHub Exploit DB Packet Storm

5098	4.6	警告 Network	Docmost	Docmost	Docmostにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-33193	2026-04-24 11:30	2026-04-14	Show	GitHub Exploit DB Packet Storm

5099	6.5	警告 Network	Elasticsearch B.V.	Kibana	Elasticsearch B.V.のKibanaにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-33461	2026-04-24 11:30	2026-04-8	Show	GitHub Exploit DB Packet Storm

5100	4.8	警告 Network	cryptomator	cryptomator	cryptomatorにおける複数の脆弱性	CWE-305 CWE-319	CVE-2026-33472	2026-04-24 11:30	2026-04-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348901	-	mozilla netscape sun hp	network_security_services certificate_server directory_server enterprise_server personalization_engine java_enterprise_system java_system_application_server one_application_serve…	Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length field in an SSLv2 client hello message.	NVD-CWE-Other	CVE-2004-0826	2017-07-11 10:30	2004-12-31	Show	GitHub Exploit DB Packet Storm

348902	-	ibm	aix	The ctstrtcasd program in RSCT 2.3.0.0 and earlier on IBM AIX 5.2 and 5.3 does not properly drop privileges before executing the -f option, which allows local users to modify or create arbitrary file…	NVD-CWE-Other	CVE-2004-0828	2017-07-11 10:30	2004-11-3	Show	GitHub Exploit DB Packet Storm

348903	-	samba	samba	smbd in Samba before 2.2.11 allows remote attackers to cause a denial of service (daemon crash) by sending a FindNextPrintChangeNotify request without a previous FindFirstPrintChangeNotify, as demons…	NVD-CWE-Other	CVE-2004-0829	2017-07-11 10:30	2004-12-31	Show	GitHub Exploit DB Packet Storm

348904	-	f-secure	f-secure_anti-virus f-secure_content_scanner_server internet_gatekeeper	The Content Scanner Server in F-Secure Anti-Virus for Microsoft Exchange 6.21 and earlier, F-Secure Anti-Virus for Microsoft Exchange 6.01 and earlier, and F-Secure Internet Gatekeeper 6.32 and earli…	NVD-CWE-Other	CVE-2004-0830	2017-07-11 10:30	2004-09-9	Show	GitHub Exploit DB Packet Storm

348905	-	mcafee	virusscan	McAfee VirusScan 4.5.1 does not drop SYSTEM privileges before allowing users to browse for files via the "System Scan" properties of the System Tray applet, which could allow local users to gain priv…	NVD-CWE-Other	CVE-2004-0831	2017-07-11 10:30	2004-09-14	Show	GitHub Exploit DB Packet Storm

348906	-	debian	debian_linux	Sendmail before 8.12.3 on Debian GNU/Linux, when using sasl and sasl-bin, uses a Sendmail configuration script with a fixed username and password, which could allow remote attackers to use Sendmail a…	NVD-CWE-Other	CVE-2004-0833	2017-07-11 10:30	2004-12-23	Show	GitHub Exploit DB Packet Storm

348907	-	lexar	jumpdrive_secure	Lexar Safe Guard for JumpDrive Secure 1.0 stores the password insecurely in memory using XOR encryption, which allows local users to read the password directly from the device and access the password…	NVD-CWE-Other	CVE-2004-0838	2017-07-11 10:30	2004-09-13	Show	GitHub Exploit DB Packet Storm

348908	-	gnu	radius	Integer overflow in the asn_decode_string() function defined in asn1.c in radiusd for GNU Radius 1.1 and 1.2 before 1.2.94, when compiled with the --enable-snmp option, allows remote attackers to cau…	NVD-CWE-Other	CVE-2004-0849	2017-07-11 10:30	2004-12-23	Show	GitHub Exploit DB Packet Storm

348909	-	joerg_schilling	star_tape_archiver	Star before 1.5_alpha46 does not drop the effective user ID (euid) before calling external programs, which could allow local users to gain privileges by modifying the RSH environment variable to refe…	NVD-CWE-Other	CVE-2004-0850	2017-07-11 10:30	2004-12-23	Show	GitHub Exploit DB Packet Storm

348910	-	ulrich_callmeier	net-acct	The (1) write_list and (2) dump_curr_list functions in Net-Acct before 0.71 allows local users to overwrite arbitrary files via a symlink attack on temporary files.	NVD-CWE-Other	CVE-2004-0851	2017-07-11 10:30	2004-09-8	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed