Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5601 7.5 重要
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-43507 2026-05-7 11:59 2026-05-1 Show GitHub Exploit DB Packet Storm
5602 7.5 重要
Network 		Debian
GStreamer
レッドハット		 GStreamer
Debian GNU/Linux
Red Hat Enterprise Linux
GStreamer Good Plug-ins 		Debian等の複数ベンダの製品における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-1940 2026-05-7 11:31 2026-03-23 Show GitHub Exploit DB Packet Storm
5603 9.8 緊急
Network 		OPPO ColorOS Assistant OPPOのColorOS Assistantにおける複数の脆弱性 CWE-22
CWE-23
CVE-2026-22070 2026-05-7 11:31 2026-04-30 Show GitHub Exploit DB Packet Storm
5604 8.8 重要
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-42364 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
5605 7.5 重要
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における観測された状態からの推測に関する脆弱性 CWE-341
観測された状態からの推測 		CVE-2026-42365 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
5606 6.1 警告
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42366 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
5607 6.5 警告
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-42367 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
5608 9.9 緊急
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における不適切な権限設定に関する脆弱性 CWE-266
不適切な権限設定 		CVE-2026-42368 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
5609 9.8 緊急
Network 		GeoVision GV-VMS Firmware GeoVisionのGV-VMS Firmwareにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-42370 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
5610 9.8 緊急
Network 		Bitwarden Bitwarden Command-line Interface BitwardenのBitwarden Command-line Interfaceにおける複数の脆弱性 CWE-78
CWE-94
CVE-2026-42994 2026-05-7 11:31 2026-05-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
359181 - an an-httpd Buffer overflow in AN HTTPd 1.38 through 1.4.1c allows remote attackers to execute arbitrary code via a SOCKS4 request with a long username. NVD-CWE-Other
CVE-2002-1930 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359182 - php_arena pafiledb Cross-site scripting (XSS) vulnerability in PHP Arena paFileDB 1.1.3 and 2.1.1 allows remote attackers to inject arbitrary web script or HTML via Javascript in the search string. NVD-CWE-Other
CVE-2002-1931 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359183 - microsoft windows_2000_terminal_services The terminal services screensaver for Microsoft Windows 2000 does not automatically lock the terminal window if the window is minimized, which could allow local users to gain access to the terminal s… NVD-CWE-Other
CVE-2002-1933 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359184 - utstarcom bas_1000 UTStarcom BAS 1000 3.1.10 creates several default or back door accounts and passwords, which allows remote attackers to gain access via (1) field account with a password of "*field", (2) guru account… NVD-CWE-Other
CVE-2002-1936 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359185 - symantec firewall_vpn_appliance_100
firewall_vpn_appliance_200
firewall_vpn_appliance_200r 		Symantec Firewall/VPN Appliance 100 through 200R hardcodes the administrator's MAC address inside the firewall's configuration, which allows remote attackers to spoof the administrator's MAC address … NVD-CWE-Other
CVE-2002-1937 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359186 - virgil cgi_scanner Virgil CGI Scanner 0.9 allows remote attackers to execute arbitrary commands via the (1) tar (TARGET) or (2) zielport (ZIELPORT) parameters. NVD-CWE-Other
CVE-2002-1938 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359187 - flashfxp flashfxp FlashFXP 1.4 prints FTP passwords in plaintext when there are transfers in the queue, which allows attackers to obtain FTP passwords of other users by editing the queue properties. NVD-CWE-Other
CVE-2002-1939 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359188 - jacob_navia lcc-win32 LCC-Win32 3.2 compiler, when running on Windows 95, 98, or ME, writes portions of previously used memory after the import table, which could allow attackers to gain sensitive information. NOTE: it h… NVD-CWE-Other
CVE-2002-1940 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359189 - radiobird_software web_server_4_everyone Buffer overflow in RadioBird WebServer 4 Everyone 1.28 allows remote attackers to cause a denial of service (crash) via a long HTTP GET request with the Host header set. NVD-CWE-Other
CVE-2002-1941 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359190 - imatix xitami Imatix Xitami 2.5 b5 does not properly terminate certain Keep-Alive connections that have been broken or closed early, which allows remote attackers to cause a denial of service (crash) via a large n… NVD-CWE-Other
CVE-2002-1942 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm