Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
631	8.6	重要 Network	シスコシステムズ	Adaptive Security Appliance (ASA) Software	シスコシステムズのAdaptive Security Appliance (ASA) Softwareにおける有効なライフタイム後のリソースの解放の欠如に関する脆弱性 New	CWE-772 有効なライフタイム後のリソースの解放の欠如	CVE-2026-20082	2026-05-7 11:28	2026-03-4	Show	GitHub Exploit DB Packet Storm

632	5	警告 Network	Cloud Foundry, Inc.	routing release cf-deployment	Cloud Foundry, Inc.のCf-deployment等の複数製品における意図するエンドポイントとの通信チャネルの制限に関する脆弱性 New	CWE-923 意図するエンドポイントとの通信チャネルの不適切な制限	CVE-2026-22726	2026-05-7 11:28	2026-05-1	Show	GitHub Exploit DB Packet Storm

633	6.5	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるリソースの枯渇に関する脆弱性 New	CWE-400 リソースの枯渇	CVE-2026-22740	2026-05-7 11:28	2026-04-29	Show	GitHub Exploit DB Packet Storm

634	3.1	低 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける重要な情報を含むキャッシュの使用に関する脆弱性 New	CWE-524 重要な情報を含むキャッシュの使用	CVE-2026-22741	2026-05-7 11:28	2026-04-29	Show	GitHub Exploit DB Packet Storm

635	5.3	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるリソースの枯渇に関する脆弱性 New	CWE-400 リソースの枯渇	CVE-2026-22745	2026-05-7 11:28	2026-04-29	Show	GitHub Exploit DB Packet Storm

636	8.8	重要 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおける二重解放に関する脆弱性 New	CWE-415 二重解放	CVE-2026-23918	2026-05-7 11:28	2026-05-4	Show	GitHub Exploit DB Packet Storm

637	8.8	重要 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおける権限管理に関する脆弱性 New	CWE-269 不適切な権限管理	CVE-2026-24072	2026-05-7 11:28	2026-05-4	Show	GitHub Exploit DB Packet Storm

638	9.8	緊急 Network	NVIDIA	nvflare	NVIDIAのnvflareにおけるユーザ制御の鍵による認証回避に関する脆弱性 New	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-24178	2026-05-7 11:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

639	8.8	重要 Network	NVIDIA	nvflare	NVIDIAのnvflareにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-24186	2026-05-7 11:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

640	6.5	警告 Network	NVIDIA	nvflare	NVIDIAのnvflareにおける入力確認に関する脆弱性 New	CWE-20 不適切な入力確認	CVE-2026-24204	2026-05-7 11:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350121	-	xerox	docutech_6110 docutech_6115	The default configuration of Xerox DocuTech 6110 and DocuTech 6115 exports certain NFS shares to the world with world writable permissions, which may allow remote attackers to modify sensitive files.	NVD-CWE-Other	CVE-2002-1836	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

350122	-	ids	ids	The getAlbumToDisplay function in idsShared.pm for Image Display System (IDS) 0.81 allows remote attackers to determine the existence of arbitrary directories via ".." sequences in the album paramete…	NVD-CWE-Other	CVE-2002-1837	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

350123	-	steve_sachs	charities.cron	Charities.cron 1.0.2 through 1.6.0 allows local users to write to arbitrary files via a symlink attack on temporary files.	NVD-CWE-Other	CVE-2002-1838	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

350124	-	trend_micro	interscan_viruswall_for_windows_nt	Trend Micro InterScan VirusWall for Windows NT 3.52 does not record the sender's IP address in the headers for a mail message when it is passed from VirusWall to the MTA, which allows remote attacker…	NVD-CWE-Other	CVE-2002-1839	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

350125	-	irssi	irssi	irssi IRC client 0.8.4, when downloaded after 14-March-2002, could contain a backdoor in the configuration file, which allows remote attackers to access the system.	NVD-CWE-Other	CVE-2002-1840	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

350126	-	perlbot	perlbot	Perlbot 1.0 beta allows remote attackers to execute arbitrary commands via shell metacharacters in (1) a word that is being spell checked or (2) an e-mail address.	NVD-CWE-Other	CVE-2002-1842	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

350127	-	perlbot	perlbot	Perlbot 1.9.2 allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the $text variable in SpelCheck.pm or (2) the $filename variable in HTMLPlog.pm.	NVD-CWE-Other	CVE-2002-1843	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

350128	-	yabb	yabb	Cross-site scripting (XSS) vulnerability in index.php in Yet Another Bulletin Board (YaBB) 1.40 and 1.41 allows remote attackers to inject arbitrary web script or HTML via the password (passwrd) para…	NVD-CWE-Other	CVE-2002-1845	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

350129	-	yabb	yabb	Yet Another Bulletin Board (YaBB) 1.40 and 1.41 does not require a user to submit the correct password before changing it to a new password, which allows remote attackers to modify passwords by steal…	NVD-CWE-Other	CVE-2002-1846	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

350130	-	tightvnc	tightvnc	TightVNC before 1.2.4 running on Windows stores unencrypted passwords in the password text control of the WinVNC Properties dialog, which could allow local users to access passwords.	NVD-CWE-Other	CVE-2002-1848	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm