Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 9, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 5461 | 6.5 |
警告
Network |
OpenBSD | OpenSSH | OpenBSDのOpenSSHにおける常に不適切な制御フローの実装に関する脆弱性 |
CWE-670
常に不適切な制御フローの実装 |
CVE-2026-35387 | 2026-04-28 10:12 | 2026-04-2 | Show | GitHub Exploit DB Packet Storm |
| 5462 | 2.5 |
低
Local |
OpenBSD | OpenSSH | OpenBSDのOpenSSHにおける保護されていない代替チャネルに関する脆弱性 |
CWE-420
保護されていない代替チャネル |
CVE-2026-35388 | 2026-04-28 10:12 | 2026-04-2 | Show | GitHub Exploit DB Packet Storm |
| 5463 | 8.8 |
重要
Network |
neutrinolabs | xrdp | neutrinolabsのxrdpにおけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-122
ヒープオーバーフロー |
CVE-2026-35512 | 2026-04-28 10:12 | 2026-04-17 | Show | GitHub Exploit DB Packet Storm |
| 5464 | 4.3 |
警告
Network |
Apache Software Foundation | Apache Airflow | Apache Software FoundationのApache Airflowにおけるアクセス制御の不十分な粒度に関する脆弱性 |
CWE-1220
アクセス制御の不十分な粒度 |
CVE-2026-38743 | 2026-04-28 10:12 | 2026-04-24 | Show | GitHub Exploit DB Packet Storm |
| 5465 | 7.7 |
重要
Network |
Lee Peuker | Movary | Lee PeukerのMovaryにおけるサーバサイドのリクエストフォージェリの脆弱性 |
CWE-918
サーバサイドリクエストフォージェリ |
CVE-2026-40348 | 2026-04-28 10:12 | 2026-04-18 | Show | GitHub Exploit DB Packet Storm |
| 5466 | 8.8 |
重要
Network |
Lee Peuker | Movary | Lee PeukerのMovaryにおける認証の欠如に関する脆弱性 |
CWE-862
認証の欠如 |
CVE-2026-40349 | 2026-04-28 10:12 | 2026-04-18 | Show | GitHub Exploit DB Packet Storm |
| 5467 | 8.8 |
重要
Network |
Lee Peuker | Movary | Lee PeukerのMovaryにおける不正な認証に関する脆弱性 |
CWE-863
不正な認証 |
CVE-2026-40350 | 2026-04-28 10:12 | 2026-04-18 | Show | GitHub Exploit DB Packet Storm |
| 5468 | 8.8 |
重要
Network |
Apache Software Foundation |
ActiveMQ Broker Apache ActiveMQ |
Apache Software FoundationのApache ActiveMQ等の複数製品における複数の脆弱性 |
CWE-20 CWE-94 |
CVE-2026-40466 | 2026-04-28 10:12 | 2026-04-24 | Show | GitHub Exploit DB Packet Storm |
| 5469 | 4.3 |
警告
Network |
Apache Software Foundation | Apache Airflow | Apache Software FoundationのApache Airflowにおけるアクセス制御の不十分な粒度に関する脆弱性 |
CWE-1220
アクセス制御の不十分な粒度 |
CVE-2026-40690 | 2026-04-28 10:12 | 2026-04-24 | Show | GitHub Exploit DB Packet Storm |
| 5470 | 6.1 |
警告
Network |
Astro | Astro | Astroにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-41067 | 2026-04-28 10:12 | 2026-04-24 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 9, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 350281 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Apache for Apple Mac OS X 10.2.8 and 10.3.6 allows remote attackers to read files and resource fork content via HTTP requests to certain special file names related to multiple data streams in HFS+, w… |
NVD-CWE-Other
|
CVE-2004-1084 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 350282 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Human Interface Toolbox (HIToolBox) for Apple Mac 0S X 10.3.6 allows local users to exit applications via the force-quit key combination, even when the system is running in kiosk mode. |
NVD-CWE-Other
|
CVE-2004-1085 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 350283 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Buffer overflow in PSNormalizer for Apple Mac OS X 10.3.6 allows remote attackers to execute arbitrary code via a crafted PostScript input file. |
NVD-CWE-Other
|
CVE-2004-1086 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 350284 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Terminal for Apple Mac OS X 10.3.6 may indicate that "Secure Keyboard Entry" is enabled even when it is not, which could result in a false sense of security for the user. |
NVD-CWE-Other
|
CVE-2004-1087 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 350285 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Postfix server for Apple Mac OS X 10.3.6, when using CRAM-MD5, allows remote attackers to send mail without authentication by replaying authentication information. |
NVD-CWE-Other
|
CVE-2004-1088 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 350286 | - | apple |
darwin_streaming_server quicktime_streaming_server mac_os_x mac_os_x_server |
Unknown vulnerability in Apple Mac OS X 10.3.6 server, when using Kerberos authentication and Cyrus IMAP allows local users to access mailboxes of other users. |
NVD-CWE-Other
|
CVE-2004-1089 | 2017-07-11 10:30 | 2004-12-2 | Show | GitHub Exploit DB Packet Storm | |
| 350287 | - |
midnight_commander debian gentoo redhat suse turbolinux |
midnight_commander debian_linux linux enterprise_linux linux_advanced_workstation suse_linux turbolinux_server turbolinux_workstation |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "a corrupt section header." |
NVD-CWE-Other
|
CVE-2004-1090 | 2017-07-11 10:30 | 2005-04-14 | Show | GitHub Exploit DB Packet Storm | |
| 350288 | - |
midnight_commander debian gentoo redhat suse turbolinux |
midnight_commander debian_linux linux enterprise_linux linux_advanced_workstation suse_linux turbolinux_server turbolinux_workstation |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by triggering a null dereference. |
NVD-CWE-Other
|
CVE-2004-1091 | 2017-07-11 10:30 | 2005-04-14 | Show | GitHub Exploit DB Packet Storm | |
| 350289 | - |
midnight_commander debian gentoo redhat suse turbolinux |
midnight_commander debian_linux linux enterprise_linux linux_advanced_workstation suse_linux turbolinux_server turbolinux_workstation |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by causing mc to free unallocated memory. |
NVD-CWE-Other
|
CVE-2004-1092 | 2017-07-11 10:30 | 2005-04-14 | Show | GitHub Exploit DB Packet Storm | |
| 350290 | - |
midnight_commander debian gentoo redhat suse turbolinux |
midnight_commander debian_linux linux enterprise_linux linux_advanced_workstation suse_linux turbolinux_server turbolinux_workstation |
Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "use of already freed memory." |
NVD-CWE-Other
|
CVE-2004-1093 | 2017-07-11 10:30 | 2005-04-14 | Show | GitHub Exploit DB Packet Storm |