Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
711	9.8	緊急 Network	Mercurycom	MIPC252W Firmware	MercurycomのMIPC252W Firmwareにおける認証に関する脆弱性 New	CWE-287 不適切な認証	CVE-2026-35903	2026-05-7 10:53	2026-04-27	Show	GitHub Exploit DB Packet Storm

712	4.8	警告 Network	Apache Software Foundation	Apache Storm Prometheus Reporter	Apache Software FoundationのApache Storm Prometheus Reporterにおける証明書検証に関する脆弱性 New	CWE-295 不正な証明書検証	CVE-2026-40557	2026-05-7 10:53	2026-04-27	Show	GitHub Exploit DB Packet Storm

713	8.8	重要 Network	minerva	minerva	Agilonhealth (MphRx)のMinervaにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-5779	2026-05-7 10:53	2026-04-28	Show	GitHub Exploit DB Packet Storm

714	8.1	重要 Network	minerva	minerva	Agilonhealth (MphRx)のMinervaにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-5780	2026-05-7 10:52	2026-04-28	Show	GitHub Exploit DB Packet Storm

715	8.8	重要 Network	Frappe	ERPNext	FrappeのERPNextにおけるコードインジェクションの脆弱性 New	CWE-94 コード・インジェクション	CVE-2023-54345	2026-05-7 10:52	2026-05-5	Show	GitHub Exploit DB Packet Storm

716	7.5	重要 Network	OpenEMR	OpenEMR	OpenEMRにおける過度な認証試行の不適切な制限に関する脆弱性 New	CWE-307 過度な認証試行の不適切な制限	CVE-2023-54347	2026-05-7 10:52	2026-05-5	Show	GitHub Exploit DB Packet Storm

717	7.2	重要 Network	デル	data domain operating system	デルのdata domain operating systemにおける認証に関する脆弱性 New	CWE-287 CWE-noinfo	CVE-2025-46607	2026-05-7 10:52	2026-04-17	Show	GitHub Exploit DB Packet Storm

718	6.6	警告 Network	デル	data domain operating system	デルのdata domain operating systemにおける認証に関する脆弱性 New	CWE-287 不適切な認証	CVE-2025-46641	2026-05-7 10:52	2026-04-17	Show	GitHub Exploit DB Packet Storm

719	8.8	重要 Adjacent	Google	Android	GoogleのAndroidにおける認証アルゴリズムの不適切な実装に関する脆弱性 New	CWE-303 認証アルゴリズム上の問題	CVE-2026-0073	2026-05-7 10:52	2026-05-4	Show	GitHub Exploit DB Packet Storm

720	8	重要 Adjacent	SonicWALL	SonicOS	SonicWALLのSonicOSにおける複数の脆弱性 New	CWE-1390 CWE-306	CVE-2026-0204	2026-05-7 10:52	2026-04-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347381	-	stanley_t._shebs	xconq	Buffer overflow in xconq and cconq game programs on Red Hat Linux allows local users to gain additional privileges via long USER environmental variable.	NVD-CWE-Other	CVE-2000-0617	2008-09-11 04:05	2000-06-22	Show	GitHub Exploit DB Packet Storm

347382	-	stanley_t._shebs	xconq	Buffer overflow in xconq and cconq game programs on Red Hat Linux allows local users to gain additional privileges via long DISPLAY environmental variable.	NVD-CWE-Other	CVE-2000-0618	2008-09-11 04:05	2000-06-22	Show	GitHub Exploit DB Packet Storm

347383	-	oreilly	website_professional	Buffer overflow in O'Reilly WebSite Professional web server 2.4 and earlier allows remote attackers to execute arbitrary commands via a long GET request or Referrer header.	NVD-CWE-Other	CVE-2000-0623	2008-09-11 04:05	2000-07-17	Show	GitHub Exploit DB Packet Storm

347384	-	netzero	zeroport	NetZero 3.0 and earlier uses weak encryption for storing a user's login information, which allows a local user to decrypt the password.	NVD-CWE-Other	CVE-2000-0625	2008-09-11 04:05	2000-07-18	Show	GitHub Exploit DB Packet Storm

347385	-	computer_software_manufaktur	alibaba	Buffer overflow in Alibaba web server allows remote attackers to cause a denial of service via a long GET request.	NVD-CWE-Other	CVE-2000-0626	2008-09-11 04:05	2000-07-18	Show	GitHub Exploit DB Packet Storm

347386	-	sun	java_system_web_server	The default configuration of the Sun Java web server 2.0 and earlier allows remote attackers to execute arbitrary commands by uploading Java code to the server via board.html, then directly calling t…	NVD-CWE-Other	CVE-2000-0629	2008-09-11 04:05	2000-07-12	Show	GitHub Exploit DB Packet Storm

347387	-	texas_imperial_software	wftpd	WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by using the RESTART (REST) command and writing beyond the end of a file, or writing to a file that does not exist, via c…	NVD-CWE-Other	CVE-2000-0645	2008-09-11 04:05	2000-07-21	Show	GitHub Exploit DB Packet Storm

347388	-	texas_imperial_software	wftpd	WFTPD and WFTPD Pro 2.41 allows remote attackers to obtain the real pathname for a file by executing a STATUS (STAT) command while the file is being transferred.	NVD-CWE-Other	CVE-2000-0646	2008-09-11 04:05	2000-07-21	Show	GitHub Exploit DB Packet Storm

347389	-	texas_imperial_software	wftpd	WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing an MLST command before logging into the server.	NVD-CWE-Other	CVE-2000-0647	2008-09-11 04:05	2000-07-21	Show	GitHub Exploit DB Packet Storm

347390	-	mozilla netscape	mozilla communicator	Netscape Communicator 4.73 and earlier allows remote attackers to cause a denial of service or execute arbitrary commands via a JPEG image containing a comment with an illegal field length of 1.	NVD-CWE-Other	CVE-2000-0655	2008-09-11 04:05	2000-07-25	Show	GitHub Exploit DB Packet Storm