Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5191 6.5 警告
Network 		オラクル Oracle WebLogic Server オラクルのOracle WebLogic Serverにおける複数の脆弱性 CWE-285
CWE-601
CVE-2026-34315 2026-04-27 10:49 2026-04-21 Show GitHub Exploit DB Packet Storm
5192 7.5 重要
Network 		Apache Software Foundation Apache Log4j Apache Software FoundationのApache Log4jにおける複数の脆弱性 CWE-117
CWE-684
CVE-2026-34478 2026-04-27 10:49 2026-04-10 Show GitHub Exploit DB Packet Storm
5193 7.5 重要
Network 		Apache Software Foundation Apache Log4j Apache Software FoundationのApache Log4jにおけるエンコードおよびエスケープに関する脆弱性 CWE-116
不適切なエンコード、または出力のエスケープ 		CVE-2026-34480 2026-04-27 10:49 2026-04-10 Show GitHub Exploit DB Packet Storm
5194 7.5 重要
Network 		Apache Software Foundation Apache Log4j Apache Software FoundationのApache Log4jにおけるエンコードおよびエスケープに関する脆弱性 CWE-116
不適切なエンコード、または出力のエスケープ 		CVE-2026-34481 2026-04-27 10:49 2026-04-10 Show GitHub Exploit DB Packet Storm
5195 7.5 重要
Network 		Christian Neukirchen Rack Rackにおける複数の脆弱性 CWE-400
CWE-407
CWE-770
CVE-2026-34827 2026-04-27 10:49 2026-04-2 Show GitHub Exploit DB Packet Storm
5196 6.5 警告
Network 		Glances project Glances Nicolas Hennion (nicolargo)のGlancesにおける複数の脆弱性 CWE-200
CWE-306
CWE-306
CWE-942
CVE-2026-34839 2026-04-27 10:49 2026-04-21 Show GitHub Exploit DB Packet Storm
5197 5.7 警告
Network 		オラクル PeopleSoft Enterprise CS Student Records オラクルのPeopleSoft Enterprise CS Student Recordsにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35241 2026-04-27 10:49 2026-04-21 Show GitHub Exploit DB Packet Storm
5198 7.8 重要
Local 		オラクル Oracle Application Development Framework (Oracle ADF) オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35243 2026-04-27 10:49 2026-04-21 Show GitHub Exploit DB Packet Storm
5199 7.5 重要
Network 		libp2p libp2p Protocol Labsのlibp2pにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-35405 2026-04-27 10:49 2026-04-7 Show GitHub Exploit DB Packet Storm
5200 8.2 重要
Network 		libp2p libp2p Protocol Labsのlibp2pにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-35457 2026-04-27 10:49 2026-04-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
352721 - ffmpeg ffmpeg FFmpeg 0.5 allows remote attackers to cause a denial of service (hang) via a crafted file that triggers an infinite loop. CWE-94
Code Injection 		CVE-2009-4636 2011-10-26 11:44 2010-02-10 Show GitHub Exploit DB Packet Storm
352722 - ffmpeg ffmpeg The av_rescale_rnd function in the AVI demuxer in FFmpeg 0.5 allows remote attackers to cause a denial of service (crash) via a crafted AVI file that triggers a divide-by-zero error. CWE-189
Numeric Errors 		CVE-2009-4639 2011-10-26 11:44 2010-02-10 Show GitHub Exploit DB Packet Storm
352723 - ffmpeg ffmpeg Array index error in vorbis_dec.c in FFmpeg 0.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Vorbis file that triggers an out-of-bounds read. CWE-189
Numeric Errors 		CVE-2009-4640 2011-10-26 11:44 2010-02-10 Show GitHub Exploit DB Packet Storm
352724 - gnu gnump3d GNU Gnump3d before 2.9.8 allows local users to modify or delete arbitrary files via a symlink attack on the index.lok temporary file. CWE-59
Link Following 		CVE-2005-3349 2011-10-18 13:00 2005-11-19 Show GitHub Exploit DB Packet Storm
352725 - gnu gnump3d Directory traversal vulnerability in GNU Gnump3d before 2.9.8 has unknown impact via "CGI parameters, and cookie values". CWE-22
Path Traversal 		CVE-2005-3355 2011-10-18 13:00 2005-11-19 Show GitHub Exploit DB Packet Storm
352726 - ibm db2_universal_database IBM DB2 Universal Database (UDB) before 8.2 FixPak 12 allows remote attackers to cause a denial of service (application crash) by sending "incorrect information ... regarding the package name/creator… CWE-399
 Resource Management Errors 		CVE-2006-3068 2011-10-17 13:00 2006-06-19 Show GitHub Exploit DB Packet Storm
352727 - linux-ha heartbeat heartbeat.c in heartbeat before 2.0.6 sets insecure permissions in a shmget call for shared memory, which allows local users to cause an unspecified denial of service via unknown vectors, possibly du… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2006-3815 2011-10-17 13:00 2006-07-25 Show GitHub Exploit DB Packet Storm
352728 - rim blackberry_attachment_service
blackberry_enterprise_server 		Heap-based buffer overflow in Research in Motion (RIM) BlackBerry Attachment Service allows remote attackers to cause a denial of service (hang) via an e-mail attachment with a crafted TIFF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2005-2341 2011-10-17 13:00 2005-12-31 Show GitHub Exploit DB Packet Storm
352729 - microsoft
canon 		ie
network_camera_server_vb101 		Internet Explorer 6 allows user-assisted remote attackers to read arbitrary files by tricking a user into typing the characters of the target filename in a text box and using the OnKeyDown, OnKeyPres… CWE-200
Information Exposure 		CVE-2006-2900 2011-10-11 13:00 2006-06-8 Show GitHub Exploit DB Packet Storm
352730 - sun j2se
java_web_start 		The Java Plug-in J2SE 1.3.0_02 through 5.0 Update 5, and Java Web Start 1.0 through 1.2 and J2SE 1.4.2 through 5.0 Update 5, allows remote attackers to exploit vulnerabilities by specifying a JRE ver… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2006-4302 2011-10-11 13:00 2006-08-23 Show GitHub Exploit DB Packet Storm