Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 2, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 5141 | 3.5 |
低
Physics |
oauth2_proxy project | oauth2_proxy | oauth2_proxy projectのoauth2_proxyにおける複数の脆弱性 |
CWE-384 CWE-613 |
CVE-2026-34454 | 2026-04-24 11:28 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm |
| 5142 | 7.5 |
重要
Network |
Stig (stigtsp) | Net::CIDR::Lite | Stig (stigtsp)のNet::CIDR::Liteにおける入力の構文的正当性の検証に関する脆弱性 |
CWE-1286
入力の構文的正当性の不適切な検証 |
CVE-2026-40198 CVE-2026-40199 |
2026-04-23 17:52 | 2026-04-10 | Show | GitHub Exploit DB Packet Storm |
| 5143 | - | - | (複数のベンダ) | (複数の製品) | CISA ICS Advisory / ICS Medical Advisory(2026年04月21日) | - | - | 2026-04-23 17:41 | 2026-04-22 | Show | GitHub Exploit DB Packet Storm |
| 5144 | 8.8 |
重要
Network |
サイレックス・テクノロジー株式会社 |
SD-330AC AMC Manager |
サイレックス・テクノロジー製SD-330ACおよびAMC Managerにおける複数の脆弱性 |
CWE-1188 CWE-121 CWE-122 CWE-1395 CWE-226 CWE-266 CWE-306 CWE-321 CWE-327 CWE-79 CWE-93 |
CVE-2015-5621 CVE-2024-24487 CVE-2026-32955 CVE-2026-32956 CVE-2026-32957 CVE-2026-32958 CVE-2026-32959 CVE-2026-32960 CVE-2026-32961 CVE-2026-32962 CVE-2026-32963 CV… |
2026-04-23 17:36 | 2026-04-20 | Show | GitHub Exploit DB Packet Storm |
| 5145 | 7.5 |
重要
Network |
株式会社GROWI | GROWI | GROWIにおける、正規表現を用いたサービス運用妨害(ReDoS)の脆弱性 |
CWE-Other
その他 |
CVE-2026-41040 | 2026-04-23 15:16 | 2026-04-23 | Show | GitHub Exploit DB Packet Storm |
| 5146 | 8.8 |
重要
Network |
一般社団法人 JPCERT コーディネーションセンター | LogonTracer | LogonTracerにおける複数の脆弱性 |
CWE-78 CWE-Other |
CVE-2026-33277 CVE-2026-33566 |
2026-04-23 14:12 | 2026-04-23 | Show | GitHub Exploit DB Packet Storm |
| 5147 | 7.3 |
重要
Local |
i-PRO株式会社 | IP簡単設定ソフトウェア | i-PRO製IP簡単設定ソフトウェアにおけるDLL読み込みに関する脆弱性 |
CWE-Other
その他 |
CVE-2026-34488 | 2026-04-23 12:21 | 2026-04-23 | Show | GitHub Exploit DB Packet Storm |
| 5148 | 4.7 |
警告
Network |
彼方株式会社 | CMS ALAYA | CMS ALAYAにおけるSQLインジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2026-40529 | 2026-04-23 12:07 | 2026-04-23 | Show | GitHub Exploit DB Packet Storm |
| 5149 | 10 |
緊急
Network |
Quest Software Inc. | KACE Systems Management Appliance | Quest Software Inc.のKACE Systems Management Applianceにおける認証に関する脆弱性 |
CWE-287
不適切な認証 |
CVE-2025-32975 | 2026-04-23 10:17 | 2025-06-24 | Show | GitHub Exploit DB Packet Storm |
| 5150 | 7.5 |
重要
Network |
jsonparser project | jsonparser | jsonparser projectのjsonparserにおける配列インデックスの検証に関する脆弱性 |
CWE-129
配列インデックスの不適切な検証 |
CVE-2026-32285 | 2026-04-23 10:17 | 2026-03-26 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 2, 2026, 4:18 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 348651 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Apache for Apple Mac OS X 10.2.8 and 10.3.6 allows remote attackers to read files and resource fork content via HTTP requests to certain special file names related to multiple data streams in HFS+, w… |
NVD-CWE-Other
|
CVE-2004-1084 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 348652 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Human Interface Toolbox (HIToolBox) for Apple Mac 0S X 10.3.6 allows local users to exit applications via the force-quit key combination, even when the system is running in kiosk mode. |
NVD-CWE-Other
|
CVE-2004-1085 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 348653 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Buffer overflow in PSNormalizer for Apple Mac OS X 10.3.6 allows remote attackers to execute arbitrary code via a crafted PostScript input file. |
NVD-CWE-Other
|
CVE-2004-1086 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 348654 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Terminal for Apple Mac OS X 10.3.6 may indicate that "Secure Keyboard Entry" is enabled even when it is not, which could result in a false sense of security for the user. |
NVD-CWE-Other
|
CVE-2004-1087 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 348655 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Postfix server for Apple Mac OS X 10.3.6, when using CRAM-MD5, allows remote attackers to send mail without authentication by replaying authentication information. |
NVD-CWE-Other
|
CVE-2004-1088 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 348656 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Unknown vulnerability in Apple Mac OS X 10.3.6 server, when using Kerberos authentication and Cyrus IMAP allows local users to access mailboxes of other users. |
NVD-CWE-Other
|
CVE-2004-1089 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 348657 | - |
midnight_commander debian gentoo redhat suse turbolinux |
midnight_commander debian_linux linux enterprise_linux linux_advanced_workstation suse_linux turbolinux_server turbolinux_workstation |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "a corrupt section header." |
NVD-CWE-Other
|
CVE-2004-1090 | 2017-07-11 10:30 | 2005-04-14 | Show | GitHub Exploit DB Packet Storm | |
| 348658 | - |
midnight_commander debian gentoo redhat suse turbolinux |
midnight_commander debian_linux linux enterprise_linux linux_advanced_workstation suse_linux turbolinux_server turbolinux_workstation |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by triggering a null dereference. |
NVD-CWE-Other
|
CVE-2004-1091 | 2017-07-11 10:30 | 2005-04-14 | Show | GitHub Exploit DB Packet Storm | |
| 348659 | - |
midnight_commander debian gentoo redhat suse turbolinux |
midnight_commander debian_linux linux enterprise_linux linux_advanced_workstation suse_linux turbolinux_server turbolinux_workstation |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by causing mc to free unallocated memory. |
NVD-CWE-Other
|
CVE-2004-1092 | 2017-07-11 10:30 | 2005-04-14 | Show | GitHub Exploit DB Packet Storm | |
| 348660 | - |
midnight_commander debian gentoo redhat suse turbolinux |
midnight_commander debian_linux linux enterprise_linux linux_advanced_workstation suse_linux turbolinux_server turbolinux_workstation |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "use of already freed memory." |
NVD-CWE-Other
|
CVE-2004-1093 | 2017-07-11 10:30 | 2005-04-14 | Show | GitHub Exploit DB Packet Storm |