Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
6131 8.1 重要
Network 		Zcash Foundation Zebra-consensus
Zebrad 		Zcash FoundationのZebra-consensus等の複数製品における誤った要素を使用した比較に関する脆弱性 CWE-1025
誤った要素を使用した比較 		CVE-2026-40880 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
6132 7.5 重要
Network 		Zcash Foundation zebra-network
Zebrad 		Zcash Foundationのzebra-network等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-40881 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
6133 6.5 警告
Network 		Frappe Frappe HR FrappeのFrappe HRにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-40888 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
6134 6.5 警告
Network 		Frappe Frappe HR FrappeのFrappe HRにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-40889 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
6135 8.8 重要
Network 		Jos de Jong math.js Math.jsにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性 CWE-915
動的に決定されたオブジェクト属性の不適切に制御された変更 		CVE-2026-40897 2026-04-30 12:12 2026-04-24 Show GitHub Exploit DB Packet Storm
6136 8.8 重要
Network 		Paperclip paperclipai PaperclipのpaperclipaiにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-41208 2026-04-30 12:12 2026-04-23 Show GitHub Exploit DB Packet Storm
6137 6.5 警告
Network 		Frappe Frappe HR FrappeのFrappe HRにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-41320 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
6138 7.5 重要
Network 		chargepoint Home Flex CPH50 Firmware ChargePoint, Inc.のHome Flex CPH50 Firmwareにおける重要な情報を含むソースコードに関する脆弱性 CWE-540
機密情報を含むソースコード 		CVE-2026-4155 2026-04-30 12:12 2026-04-11 Show GitHub Exploit DB Packet Storm
6139 7.5 重要
Adjacent 		chargepoint Home Flex CPH50 Firmware ChargePoint, Inc.のHome Flex CPH50 Firmwareにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-4156 2026-04-30 12:12 2026-04-11 Show GitHub Exploit DB Packet Storm
6140 7.5 重要
Adjacent 		chargepoint Home Flex CPH50 Firmware ChargePoint, Inc.のHome Flex CPH50 FirmwareにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-4157 2026-04-30 12:12 2026-04-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
356971 - suse suse_linux The PPP wvdial.lxdialog script in wvdial 1.4 and earlier creates a .config file with world readable permissions, which allows a local attacker in the dialout group to access login and password inform… NVD-CWE-Other
CVE-2000-0361 2008-09-11 04:04 1999-12-14 Show GitHub Exploit DB Packet Storm
356972 - suse suse_linux Buffer overflows in Linux cdwtools 093 and earlier allows local users to gain root privileges. NVD-CWE-Other
CVE-2000-0362 2008-09-11 04:04 1999-10-22 Show GitHub Exploit DB Packet Storm
356973 - suse suse_linux Linux cdwtools 093 and earlier allows local users to gain root privileges via the /tmp directory. NVD-CWE-Other
CVE-2000-0363 2008-09-11 04:04 1999-10-22 Show GitHub Exploit DB Packet Storm
356974 - debian debian_linux dump in Debian GNU/Linux 2.1 does not properly restore symlinks, which allows a local user to modify the ownership of arbitrary files. NVD-CWE-Other
CVE-2000-0366 2008-09-11 04:04 1999-12-2 Show GitHub Exploit DB Packet Storm
356975 - michael_jennings eterm Vulnerability in eterm 0.8.8 in Debian GNU/Linux allows an attacker to gain root privileges. NVD-CWE-Other
CVE-2000-0367 2008-09-11 04:04 1999-02-18 Show GitHub Exploit DB Packet Storm
356976 - caldera openlinux The IDENT server in Caldera Linux 2.3 creates multiple threads for each IDENT request, which allows remote attackers to cause a denial of service. NVD-CWE-Other
CVE-2000-0369 2008-09-11 04:04 1999-10-8 Show GitHub Exploit DB Packet Storm
356977 - caldera openlinux The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command. NVD-CWE-Other
CVE-2000-0370 2008-09-11 04:04 1999-01-29 Show GitHub Exploit DB Packet Storm
356978 - kde kde The libmediatool library used for the KDE mediatool allows local users to create arbitrary files via a symlink attack. NVD-CWE-Other
CVE-2000-0371 2008-09-11 04:04 1999-03-1 Show GitHub Exploit DB Packet Storm
356979 - freebsd freebsd The kernel in FreeBSD 3.2 follows symbolic links when it creates core dump files, which allows local attackers to modify arbitrary files. NVD-CWE-Other
CVE-2000-0375 2008-09-11 04:04 2001-03-12 Show GitHub Exploit DB Packet Storm
356980 - i-drive filo Buffer overflow in the HTTP proxy server for the i-drive Filo software allows remote attackers to execute arbitrary commands via a long HTTP GET request. NVD-CWE-Other
CVE-2000-0376 2008-09-11 04:04 2000-06-7 Show GitHub Exploit DB Packet Storm