Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5661 5.5 警告
Local 		Linux Foundation Sigstore Timestamp Authority Linux FoundationのSigstore Timestamp Authorityにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-39984 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
5662 7.1 重要
Network 		lfprojects Zarf lfprojectsのZarfにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40090 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
5663 4.4 警告
Local 		Authzed, Inc. SpiceDB Authzed, Inc.のSpiceDBにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-40091 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
5664 5.4 警告
Network 		OpenMage Magento OpenMageのMagentoにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-40098 2026-04-27 11:21 2026-04-20 Show GitHub Exploit DB Packet Storm
5665 7.5 重要
Network 		free5gc free5gc free5GCにおける複数の脆弱性 CWE-285
CWE-636
CVE-2026-40248 2026-04-27 11:21 2026-04-16 Show GitHub Exploit DB Packet Storm
5666 5.8 警告
Network 		free5gc free5gc
udr 		free5GCのfree5GC等の複数製品における例外的な状態のチェックに関する脆弱性 CWE-754
例外的な状態における不適切なチェック 		CVE-2026-40343 2026-04-27 11:21 2026-04-22 Show GitHub Exploit DB Packet Storm
5667 8.8 重要
Network 		OpenMage Magento OpenMageのMagentoにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2026-40488 2026-04-27 11:21 2026-04-20 Show GitHub Exploit DB Packet Storm
5668 9.1 緊急
Network 		FreeScout FreeScout FreeScoutにおける複数の脆弱性 CWE-330
CWE-340
CVE-2026-40496 2026-04-27 11:21 2026-04-21 Show GitHub Exploit DB Packet Storm
5669 8.1 重要
Network 		FreeScout FreeScout FreeScoutにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-40497 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
5670 8.8 重要
Network 		PJSIP pjsip PJSIPのpjsipにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-40614 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
356841 - lucent ascend_max_router
ascend_pipeline_router
dslterminator 		Lucent Ascend MAX Router 5.0 and earlier, Lucent Ascend Pipeline Router 6.0.2 and earlier and Lucent DSLTerminator allows remote attackers to obtain sensitive information such as hostname, MAC, and I… NVD-CWE-Other
CVE-2002-2148 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
356842 - lucent access_point_service_router_1500
access_point_service_router_300
access_point_service_router_600 		Buffer overflow in Lucent Access Point 300, 600, and 1500 Service Routers allows remote attackers to cause a denial of service (reboot) via a long HTTP request to the administrative interface. NVD-CWE-Other
CVE-2002-2149 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
356843 - juniper netscreen_screenos Firewalls from multiple vendors empty state tables more slowly than they are filled, which allows remote attackers to flood state tables with packet flooding attacks such as (1) TCP SYN flood, (2) UD… NVD-CWE-Other
CVE-2002-2150 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
356844 - software602 602pro_lan_suite The Czech edition of Software602's Web Server before 2002.0.02.0916 allows remote attackers to gain administrator privileges via direct HTTP requests to the /admin/ directory, which is not password p… NVD-CWE-Other
CVE-2002-2152 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
356845 - cerulean_studios trillian Format string vulnerability in the error handling of IRC invite responses for Trillian 0.725 and 0.73 allows remote IRC servers to execute arbitrary code via an invite to a channel with format string… NVD-CWE-Other
CVE-2002-2155 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
356846 - cerulean_studios trillian Buffer overflow in Trillian 0.73 allows remote IRC servers to execute arbitrary code via a long PING response. NVD-CWE-Other
CVE-2002-2156 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
356847 - zendocs zentrack zenTrack 2.0.3 and earlier allows remote attackers to obtain the full path to the web root via an invalid ticket ID, which leaks the path in an error message. NVD-CWE-Other
CVE-2002-2158 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
356848 - kerio personal_firewall Kerio Personal Firewall (KPF) 2.1.4 and earlier allows remote attackers to cause a denial of service (hang and CPU consumption) via a SYN packet flood. NVD-CWE-Other
CVE-2002-2161 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
356849 - cerulean_studios trillian Cerulean Studios Trillian 0.73 and earlier use weak encrypttion (XOR) for storing user passwords in .ini files in the Trillian directory, which allows local users to gain access to other user account… NVD-CWE-Other
CVE-2002-2162 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
356850 - killervault kvpoll KvPoll 1.1 allows remote authenticated users to vote more than once by setting the "already_voted" cookie by various methods, including a direct call to clear_cookies.php. NVD-CWE-Other
CVE-2002-2163 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm