Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
701 9.8 緊急
Network 		Synway SMG Gateway Management Software SynwayのSMG Gateway Management SoftwareにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2025-71284 2026-05-7 10:53 2026-04-30 Show GitHub Exploit DB Packet Storm
702 7.8 重要
Local 		KDE project KCoreAddons KDE projectのKCoreAddonsにおけるエスケープ、メタ、またはコントロールシーケンスの不適切な無効化に関する脆弱性 CWE-150
エスケープ、メタ、またはコントロールシーケンスの不適切な無効化 		CVE-2026-41526 2026-05-7 10:53 2026-04-28 Show GitHub Exploit DB Packet Storm
703 8.8 重要
Network 		SailPoint Technologies Holdings, Inc. IdentityIQ SailPoint Technologies Holdings, Inc.のIdentityIQにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-5712 2026-05-7 10:53 2026-04-29 Show GitHub Exploit DB Packet Storm
704 5.5 警告
Local 		Canonical pdfunite Canonicalのpdfuniteにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2018-25306 2026-05-7 10:53 2026-04-29 Show GitHub Exploit DB Packet Storm
705 9.8 緊急
Network 		Kvcache-ai Ktransformers Kvcache-aiのKtransformersにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-26210 2026-05-7 10:53 2026-04-23 Show GitHub Exploit DB Packet Storm
706 7.1 重要
Local 		デル Dell/Alienware Purchased Apps デルのDell/Alienware Purchased Appsにおけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題 		CVE-2026-27105 2026-05-7 10:53 2026-04-29 Show GitHub Exploit DB Packet Storm
707 7.8 重要
Local 		entechtaiwan TViPort entechtaiwanのTViPortにおける複数の脆弱性 CWE-20
CWE-269
CVE-2026-30769 2026-05-7 10:53 2026-04-29 Show GitHub Exploit DB Packet Storm
708 5.9 警告
Network 		Elasticsearch B.V. Elastic Package Registry Elasticsearch B.V.のElastic Package Registryにおけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2026-33467 2026-05-7 10:53 2026-04-28 Show GitHub Exploit DB Packet Storm
709 4.4 警告
Local 		Mercurycom MIPC252W Firmware MercurycomのMIPC252W Firmwareにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-35901 2026-05-7 10:53 2026-04-27 Show GitHub Exploit DB Packet Storm
710 6.2 警告
Local 		Mercurycom MIPC252W Firmware MercurycomのMIPC252W Firmwareにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-35902 2026-05-7 10:53 2026-04-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350491 - t._hauck jana_web_server Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, does not restrict the number of unsuccessful login attempts, which makes it easier for remote attackers to gain privileges via brute… NVD-CWE-Other
CVE-2002-1065 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
350492 - t._hauck jana_web_server Thomas Hauck Jana Server 1.4.6 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large message index value in a (1) RETR or (2) DELE command t… NVD-CWE-Other
CVE-2002-1066 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
350493 - seh ic9_pocket_print_server_firmware Administrative web interface for IC9 Pocket Print Server Firmware 7.1.30 and 7.1.36f allows remote attackers to cause a denial of service (reboot and reset) via a long password, possibly due to a buf… NVD-CWE-Other
CVE-2002-1067 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
350494 - php-wiki php-wiki Cross-site scripting vulnerability in PHPWiki Postnuke wiki module allows remote attackers to execute script as other PHPWiki users via the pagename parameter. NVD-CWE-Other
CVE-2002-1070 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
350495 - zyxel prestige ZyXEL Prestige 642R allows remote attackers to cause a denial of service in the Telnet, FTP, and DHCP services (crash) via a TCP packet with both the SYN and ACK flags set. NVD-CWE-Other
CVE-2002-1071 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
350496 - zyxel prestige ZyXEL Prestige 642R 2.50(FA.1) and Prestige 310 V3.25(M.01), allows remote attackers to cause a denial of service via an oversized, fragmented "jolt" style ICMP packet. NVD-CWE-Other
CVE-2002-1072 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
350497 - atrium_software mercur_mailserver Buffer overflow in the control service for MERCUR Mailserver 4.2 allows remote attackers to execute arbitrary code via a long password. NVD-CWE-Other
CVE-2002-1073 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
350498 - david_harris pegasus_mail Buffer overflow in Pegasus mail client 4.01 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long (1) To or (2) From headers. NVD-CWE-Other
CVE-2002-1075 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
350499 - ipswitch imail Buffer overflow in the Web Messaging daemon for Ipswitch IMail before 7.12 allows remote attackers to execute arbitrary code via a long HTTP GET request for HTTP/1.0. NVD-CWE-Other
CVE-2002-1076 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
350500 - ipswitch imail IPSwitch IMail Web Calendaring service (iwebcal) allows remote attackers to cause a denial of service (crash) via an HTTP POST request without a Content-Length field. NVD-CWE-Other
CVE-2002-1077 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm