Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
821 2.7
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-2900 2026-05-18 12:07 2026-05-14 Show GitHub Exploit DB Packet Storm
822 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-3073 2026-05-18 12:07 2026-05-14 Show GitHub Exploit DB Packet Storm
823 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-3074 2026-05-18 12:07 2026-05-14 Show GitHub Exploit DB Packet Storm
824 5.8 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるフィルタリングの回避に関する脆弱性 CWE-441
フィルタリング回避 		CVE-2026-3160 2026-05-18 12:07 2026-05-14 Show GitHub Exploit DB Packet Storm
825 9.1 緊急
Network 		マイクロソフト Azure SDK for Java Azure SDK for Java のセキュリティ機能のバイパスの脆弱性 CWE-287
CWE-347
CVE-2026-33117 2026-05-18 12:07 2026-05-12 Show GitHub Exploit DB Packet Storm
826 9.9 緊急
Network 		マイクロソフト Microsoft Dynamics 365 Customer Insights Microsoft Dynamics 365 Customer Insights の特権昇格の脆弱性 CWE-269
不適切な権限管理 		CVE-2026-33821 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
827 6.5 警告
Adjacent 		Pengutronix e.K. barebox Pengutronix e.K.のbareboxにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-34960 2026-05-18 12:06 2026-05-11 Show GitHub Exploit DB Packet Storm
828 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows テレフォニー サービスの特権昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40382 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
829 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows 共通ログ ファイル システム ドライバーの特権の昇格の脆弱性 CWE-191
整数アンダーフロー 		CVE-2026-40397 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
830 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows リモート デスクトップ サービスの特権昇格の脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-40398 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345861 - university_of_cambridge exim Stack-based buffer overflow in Exim 3.35, and other versions before 4, when the sender_verify option is true, allows remote attackers to cause a denial of service and possibly execute arbitrary code … NVD-CWE-Other
CVE-2004-0399 2017-07-11 10:30 2004-07-7 Show GitHub Exploit DB Packet Storm
345862 - university_of_cambridge exim Stack-based buffer overflow in Exim 4 before 4.33, when the headers_check_syntax option is enabled, allows remote attackers to cause a denial of service and possibly execute arbitrary code during the… NVD-CWE-Other
CVE-2004-0400 2017-07-11 10:30 2004-07-7 Show GitHub Exploit DB Packet Storm
345863 - free_software_foundation_inc. libtasn1 Unknown vulnerability in libtasn1 0.1.x before 0.1.2, and 0.2.x before 0.2.7, related to the DER parsing functions. NVD-CWE-Other
CVE-2004-0401 2017-07-11 10:30 2004-07-7 Show GitHub Exploit DB Packet Storm
345864 - xpcd
mandrakesoft 		xpcd
mandrake_linux 		Buffer overflow in xpcd-svga in xpcd before 2.08, and possibly other versions, may allow local users to execute arbitrary code. NVD-CWE-Other
CVE-2004-0402 2017-07-11 10:30 2004-07-7 Show GitHub Exploit DB Packet Storm
345865 - psionic logcheck logcheck before 1.1.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary directory in /var/tmp. NVD-CWE-Other
CVE-2004-0404 2017-07-11 10:30 2004-07-7 Show GitHub Exploit DB Packet Storm
345866 - macromedia coldfusion The HTML form upload capability in ColdFusion MX 6.1 does not reclaim disk space if an upload is interrupted, which allows remote attackers to cause a denial of service (disk consumption) by repeated… NVD-CWE-Other
CVE-2004-0407 2017-07-11 10:30 2004-06-1 Show GitHub Exploit DB Packet Storm
345867 - michael_bacarella ident2 Buffer overflow in the child_service function in the ident2 ident daemon allows remote attackers to execute arbitrary code. NVD-CWE-Other
CVE-2004-0408 2017-07-11 10:30 2004-09-28 Show GitHub Exploit DB Packet Storm
345868 - gnu mailman Mailman before 2.1.5 allows remote attackers to obtain user passwords via a crafted email request to the Mailman server. NVD-CWE-Other
CVE-2004-0412 2017-07-11 10:30 2004-08-18 Show GitHub Exploit DB Packet Storm
345869 - openpkg
subversion 		openpkg
subversion 		libsvn_ra_svn in Subversion 1.0.4 trusts the length field of (1) svn://, (2) svn+ssh://, and (3) other svn protocol URL strings, which allows remote attackers to cause a denial of service (memory con… NVD-CWE-Other
CVE-2004-0413 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
345870 - gnu flim flim before 1.14.3 creates temporary files insecurely, which allows local users to overwrite arbitrary files of the Emacs user via a symlink attack. NVD-CWE-Other
CVE-2004-0422 2017-07-11 10:30 2004-07-7 Show GitHub Exploit DB Packet Storm