Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
6261 9.8 緊急
Network 		Steven Fackler rust-openssl rust-OpenSSL Projectのrust-OpenSSLにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-41681 2026-04-30 12:17 2026-04-24 Show GitHub Exploit DB Packet Storm
6262 9.8 緊急
Network 		Steven Fackler rust-openssl rust-OpenSSL Projectのrust-OpenSSLにおける複数の脆弱性 CWE-126
CWE-130
CVE-2026-41898 2026-04-30 12:17 2026-04-24 Show GitHub Exploit DB Packet Storm
6263 7 重要
Local 		レッドハット
libssh		 libssh
Red Hat Hardened Images 		libssh等の複数ベンダの製品における制御されていない検索パスの要素に関する脆弱性 CWE-427
制御されていない検索パスの要素 		CVE-2025-14821 2026-04-30 12:17 2026-04-7 Show GitHub Exploit DB Packet Storm
6264 10 緊急
Network 		lfprojects mlflow lfprojectsのmlflowにおけるパストラバーサルの脆弱性 CWE-29
パストラバーサル (/../filename) 		CVE-2025-15036 2026-04-30 12:17 2026-03-30 Show GitHub Exploit DB Packet Storm
6265 9.8 緊急
Network 		lfprojects mlflow lfprojectsのmlflowにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2025-15379 2026-04-30 12:17 2026-03-30 Show GitHub Exploit DB Packet Storm
6266 7.1 重要
Network 		lfprojects mlflow lfprojectsのmlflowにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2025-15381 2026-04-30 12:17 2026-03-27 Show GitHub Exploit DB Packet Storm
6267 7.5 重要
Network 		Apache Software Foundation Apache Thrift Apache Software FoundationのApache Thriftにおけるメモリ管理ルーチンの不一致に関する脆弱性 CWE-762
メモリ管理ルーチンの不一致 		CVE-2025-48431 2026-04-30 12:17 2026-04-28 Show GitHub Exploit DB Packet Storm
6268 6.5 警告
Adjacent 		ジュニパーネットワークス Junos OS Evolved ジュニパーネットワークスのJunos OS Evolvedにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2025-59969 2026-04-30 12:17 2026-04-9 Show GitHub Exploit DB Packet Storm
6269 7.8 重要
Local 		huggingface transformers huggingfaceのtransformersにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-1839 2026-04-30 12:17 2026-04-7 Show GitHub Exploit DB Packet Storm
6270 6.1 警告
Network 		シスコシステムズ Cisco Unity Connection シスコシステムズのCisco Unity Connectionにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-20059 2026-04-30 12:17 2026-04-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351481 - tildeslash monit The administration interface in Monit 1.4 through 4.2 allows remote attackers to cause an off-by-one overflow via a POST that contains 1024 bytes. NVD-CWE-Other
CVE-2004-1899 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351482 - pan_vision i.g.i-2_covert_strike Format string vulnerability in the logging function in IGI 2 Covert Strike server 1.3 and earlier allows remote attackers to execute arbitrary code via format string specifiers in RCON commands. NVD-CWE-Other
CVE-2004-1900 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351483 - citrix metaframe_password_manager The Citrix MetaFrame Password Manager 2.0, when a central credential store is not configured, does not encrypt passwords entered immediately after executing the First Time User Wizards, which allows … NVD-CWE-Other
CVE-2004-1902 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351484 - blaxxun contact_3d Buffer overflow in blaxxun 3D 7.0 allows remote attackers to execute arbitrary code via a long URL property inside an object tag. NVD-CWE-Other
CVE-2004-1903 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351485 - panda activescan Buffer overflow in ascontrol.dll in Panda ActiveScan 5.0 allows remote attackers to execute arbitrary code via the Internacional property followed by a long string. NVD-CWE-Other
CVE-2004-1904 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351486 - panda activescan ascontrol.dll in Panda ActiveScan 5.0 allows remote attackers to cause a denial of service (crash) by calling the SetSitesFile function. NVD-CWE-Other
CVE-2004-1905 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351487 - - - Mcafee FreeScan allows remote attackers to cause a denial of service and possibly arbitrary code via a long string in the ScanParam property of a COM object, which may trigger a buffer overflow. NVD-CWE-Other
CVE-2004-1906 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351488 - - - The Web Filtering functionality in Kerio Personal Firewall (KPF) 4.0.13 allows remote attackers to cause a denial of service (crash) by sending hex-encoded URLs containing "%13%12%13". NVD-CWE-Other
CVE-2004-1907 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351489 - mcafee freescan McFreeScan.CoMcFreeScan.1 ActiveX object in Mcafee FreeScan allows remote attackers to obtain sensitive information via the GetSpecialFolderLocation function with certain parameters. NVD-CWE-Other
CVE-2004-1908 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
351490 - clam_anti-virus clamav Claim Anti-Virus (ClamAV) 0.68 and earlier allows remote attackers to cause a denial of service (crash) via certain RAR archives, such as those generated by the Beagle/Bagle worm. NVD-CWE-Other
CVE-2004-1909 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm