Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5921	8.8	重要 Network	マイクロソフト	SQL Server 2016 SQL Server 2017 SQL Server 2022 SQL Server 2019 SQL Server 2025	Microsoft SQL Server のリモートコードが実行される脆弱性	CWE-822 信頼性のないポインタデリファレンス	CVE-2026-33120	2026-05-8 12:23	2026-04-14	Show	GitHub Exploit DB Packet Storm

5922	5.9	警告 Network	Apache Software Foundation	Apache Log4j	Apache Software FoundationのApache Log4jにおける複数の脆弱性	CWE-295 CWE-297	CVE-2026-34477	2026-05-8 12:23	2026-04-10	Show	GitHub Exploit DB Packet Storm

5923	7.5	重要 Network	Apache Software Foundation	Apache Log4j	Apache Software FoundationのApache Log4jにおけるエンコードおよびエスケープに関する脆弱性	CWE-116 不適切なエンコード、または出力のエスケープ	CVE-2026-34479	2026-05-8 12:23	2026-04-10	Show	GitHub Exploit DB Packet Storm

5924	7.4	重要 Network	GNU Project レッドハット	Red Hat Hardened Images Red Hat Enterprise Linux Red Hat OpenShift Container Platform GnuTLS	GNU Project等の複数ベンダの製品における大文字と小文字の区別の不適切な処理に関する脆弱性	CWE-178 大文字と小文字の区別の不適切な処理	CVE-2026-3833	2026-05-8 12:23	2026-04-30	Show	GitHub Exploit DB Packet Storm

5925	9.1	緊急 Network	Apache Software Foundation	Apache Wicket	Apache Software FoundationのApache Wicketにおけるセッションの固定化の脆弱性	CWE-384 CWE-384	CVE-2026-40010	2026-05-8 12:23	2026-05-6	Show	GitHub Exploit DB Packet Storm

5926	9.1	緊急 Network	Apache Software Foundation	Apache OpenNLP	Apache Software FoundationのApache OpenNLPにおけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2026-40682	2026-05-8 12:23	2026-05-4	Show	GitHub Exploit DB Packet Storm

5927	9.8	緊急 Network	Apache Software Foundation	Apache OpenNLP	Apache Software FoundationのApache OpenNLPにおけるクラスまたはコードを選択する外部から制御された入力の使用に関する脆弱性	CWE-470 クラスまたはコードを選択する外部から制御された入力の使用	CVE-2026-42027	2026-05-8 12:23	2026-05-4	Show	GitHub Exploit DB Packet Storm

5928	6.5	警告 Network	nginxui	Nginx UI	Nginx UI TeamのNginx UIにおける複数の脆弱性	CWE-200 CWE-863	CVE-2026-42220	2026-05-8 12:23	2026-05-4	Show	GitHub Exploit DB Packet Storm

5929	9.8	緊急 Network	nginxui	Nginx UI	Nginx UI TeamのNginx UIにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-42221	2026-05-8 12:23	2026-05-4	Show	GitHub Exploit DB Packet Storm

5930	9.8	緊急 Network	nginxui	Nginx UI	Nginx UI TeamのNginx UIにおける複数の脆弱性	CWE-284 CWE-306	CVE-2026-42222	2026-05-8 12:23	2026-05-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346801	-	sun	hotjava_browser	HotJava Browser 3.0 allows remote attackers to access the DOM of a web page by opening a javascript: URL in a named window.	NVD-CWE-Other	CVE-2000-0958	2017-10-10 10:29	2000-12-19	Show	GitHub Exploit DB Packet Storm

346802	-	gnu	glibc	glibc2 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environmental variables when a program is spawned from a setuid program, which could allow local users to overwrite files via a symlink…	NVD-CWE-Other	CVE-2000-0959	2017-10-10 10:29	2000-12-19	Show	GitHub Exploit DB Packet Storm

346803	-	netscape	messaging_server	The POP3 server in Netscape Messaging Server 4.15p1 generates different error messages for incorrect user names versus incorrect passwords, which allows remote attackers to determine valid users on t…	NVD-CWE-Other	CVE-2000-0960	2017-10-10 10:29	2000-12-19	Show	GitHub Exploit DB Packet Storm

346804	-	netscape	messaging_server netscape_messaging_server_multiplexor	Buffer overflow in IMAP server in Netscape Messaging Server 4.15 Patch 2 allows local users to execute arbitrary commands via a long LIST command.	NVD-CWE-Other	CVE-2000-0961	2017-10-10 10:29	2000-12-19	Show	GitHub Exploit DB Packet Storm

346805	-	siemens	hinet_lp	Buffer overflow in the web administration service for the HiNet LP5100 IP-phone allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long GET request.	NVD-CWE-Other	CVE-2000-0964	2017-10-10 10:29	2000-12-19	Show	GitHub Exploit DB Packet Storm

346806	-	hp	vvos	The NSAPI plugins for TGA and the Java Servlet proxy in HP-UX VVOS 10.24 and 11.04 allows an attacker to cause a denial of service (high CPU utilization).	NVD-CWE-Other	CVE-2000-0965	2017-10-10 10:29	2000-12-19	Show	GitHub Exploit DB Packet Storm

346807	-	hp	hp-ux	Buffer overflows in lpspooler in the fileset PrinterMgmt.LP-SPOOL of HP-UX 11.0 and earlier allows local users to gain privileges.	NVD-CWE-Other	CVE-2000-0966	2017-10-10 10:29	2000-12-19	Show	GitHub Exploit DB Packet Storm

346808	-	valve_software	half-life_dedicated_server	Buffer overflow in Half Life dedicated server before build 3104 allows remote attackers to execute arbitrary commands via a long rcon command.	NVD-CWE-Other	CVE-2000-0968	2017-10-10 10:29	2000-12-19	Show	GitHub Exploit DB Packet Storm

346809	-	valve_software	half-life_dedicated_server	Format string vulnerability in Half Life dedicated server build 3104 and earlier allows remote attackers to execute arbitrary commands by injecting format strings into the changelevel command, via th…	NVD-CWE-Other	CVE-2000-0969	2017-10-10 10:29	2000-12-19	Show	GitHub Exploit DB Packet Storm

346810	-	anaconda_partners	foundation_directory	Directory traversal vulnerability in apexec.pl in Anaconda Foundation Directory allows remote attackers to read arbitrary files via a .. (dot dot) attack.	NVD-CWE-Other	CVE-2000-0975	2017-10-10 10:29	2000-12-19	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed