Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
641	7.5	重要 Network	Apache Software Foundation	Apache OpenNLP	Apache Software FoundationのApache OpenNLPにおける過剰なサイズ値のメモリ割り当てに関する脆弱性	CWE-789 過剰なサイズ値のメモリ割り当て	CVE-2026-42440	2026-05-8 12:22	2026-05-4	Show	GitHub Exploit DB Packet Storm

642	6.1	警告 Network	Apache Software Foundation	Apache Wicket	Apache Software FoundationのApache Wicketにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42509	2026-05-8 12:22	2026-05-6	Show	GitHub Exploit DB Packet Storm

643	4.3	警告 Network	Jenkins プロジェクト	Script Security	JenkinsのScript Securityにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-42519	2026-05-8 12:22	2026-04-29	Show	GitHub Exploit DB Packet Storm

644	7.5	重要 Network	Jenkins プロジェクト	Credentials Binding	JenkinsのCredentials Bindingにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-42520	2026-05-8 12:22	2026-04-29	Show	GitHub Exploit DB Packet Storm

645	6.5	警告 Network	Jenkins プロジェクト	Matrix Authorization Strategy	JenkinsのMatrix Authorization Strategyにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-42521	2026-05-8 12:22	2026-04-29	Show	GitHub Exploit DB Packet Storm

646	4.3	警告 Network	Jenkins プロジェクト	GitHub Branch Source	JenkinsのGitHub Branch Sourceにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-42522	2026-05-8 12:22	2026-04-29	Show	GitHub Exploit DB Packet Storm

647	7.5	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43057	2026-05-8 12:22	2026-05-1	Show	GitHub Exploit DB Packet Storm

648	9.3	緊急 Network	OpenClaw	OpenClaw	OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-43526	2026-05-8 12:22	2026-05-5	Show	GitHub Exploit DB Packet Storm

649	7.7	重要 Network	OpenClaw	OpenClaw	OpenClawにおける複数の脆弱性	CWE-1188 CWE-918	CVE-2026-43527	2026-05-8 12:21	2026-05-5	Show	GitHub Exploit DB Packet Storm

650	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおける保存または転送前の重要な情報の削除に関する脆弱性	CWE-212 保存または転送前の重要な情報の不適切な削除	CVE-2026-43528	2026-05-8 12:21	2026-05-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346651	-	sco	unixware	UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack.	NVD-CWE-Other	CVE-2000-0029	2016-10-18 11:06	1999-12-27	Show	GitHub Exploit DB Packet Storm

346652	-	great_circle_associates	majordomo	resend command in Majordomo allows local users to gain privileges via shell metacharacters.	NVD-CWE-Other	CVE-2000-0035	2016-10-18 11:06	1999-12-28	Show	GitHub Exploit DB Packet Storm

346653	-	great_circle_associates	majordomo	Majordomo wrapper allows local users to gain privileges by specifying an alternate configuration file.	NVD-CWE-Other	CVE-2000-0037	2016-10-18 11:06	1999-12-28	Show	GitHub Exploit DB Packet Storm

346654	-	avirt	rover	Buffer overflow in aVirt Rover POP3 server 1.1 allows remote attackers to cause a denial of service via a long user name.	NVD-CWE-Other	CVE-2000-0060	2016-10-18 11:06	1999-12-27	Show	GitHub Exploit DB Packet Storm

346655	-	intel	inbusiness_email_station	daynad program in Intel InBusiness E-mail Station does not require authentication, which allows remote attackers to modify its configuration, delete files, or read mail.	NVD-CWE-Other	CVE-2000-0068	2016-10-18 11:06	1999-12-14	Show	GitHub Exploit DB Packet Storm

346656	-	computer_power_solutions	visual_casel	Visual Casel (Vcasel) does not properly prevent users from executing files, which allows local users to use a relative pathname to specify an alternate file which has an approved name and possibly ga…	NVD-CWE-Other	CVE-2000-0072	2016-10-18 11:06	2000-01-17	Show	GitHub Exploit DB Packet Storm

346657	-	berkeley debian	nvi debian_linux	nviboot boot script in the Debian nvi package allows local users to delete files via malformed entries in vi.recover.	NVD-CWE-Other	CVE-2000-0076	2016-10-18 11:06	1999-12-30	Show	GitHub Exploit DB Packet Storm

346658	-	ibm	aix	AIX techlibss allows local users to overwrite files via a symlink attack.	NVD-CWE-Other	CVE-2000-0080	2016-10-18 11:06	2000-01-10	Show	GitHub Exploit DB Packet Storm

346659	-	netscape	communicator navigator	Netscape Mail Notification (nsnotify) utility in Netscape Communicator uses IMAP without SSL, even if the user has set a preference for Communicator to use an SSL connection, allowing a remote attack…	NVD-CWE-Other	CVE-2000-0087	2016-10-18 11:06	2000-01-12	Show	GitHub Exploit DB Packet Storm

346660	-	sco	unixware	Buffer overflow in UnixWare ppptalk command allows local users to gain privileges via a long prompt argument.	NVD-CWE-Other	CVE-2000-0099	2016-10-18 11:06	2000-01-18	Show	GitHub Exploit DB Packet Storm