Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
101 6.5 警告
Network 		openwebui open webui openwebuiのopen webuiにおける認可に関する脆弱性 New CWE-285
不適切な認可 		CVE-2026-45345 2026-05-20 13:26 2026-05-15 Show GitHub Exploit DB Packet Storm
102 5.4 警告
Network 		openwebui open webui openwebuiのopen webuiにおけるクロスサイトスクリプティングの脆弱性 New CWE-80
クロスサイトスクリプティング (Basic XSS) 		CVE-2026-45346 2026-05-20 13:26 2026-05-15 Show GitHub Exploit DB Packet Storm
103 5.4 警告
Network 		openwebui open webui openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性 New CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-45347 2026-05-20 13:26 2026-05-15 Show GitHub Exploit DB Packet Storm
104 7.1 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるユーザ制御の鍵による認証回避に関する脆弱性 New CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-45349 2026-05-20 13:26 2026-05-15 Show GitHub Exploit DB Packet Storm
105 7.1 重要
Network 		openwebui open webui openwebuiのopen webuiにおける認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2026-45350 2026-05-20 13:26 2026-05-15 Show GitHub Exploit DB Packet Storm
106 6.5 警告
Network 		openwebui open webui openwebuiのopen webuiにおける情報漏えいに関する脆弱性 New CWE-200
情報漏えい 		CVE-2026-45351 2026-05-20 13:26 2026-05-15 Show GitHub Exploit DB Packet Storm
107 5.4 警告
Network 		openwebui open webui openwebuiのopen webuiにおける認可に関する脆弱性 New CWE-285
不適切な認可 		CVE-2026-45365 2026-05-20 13:26 2026-05-15 Show GitHub Exploit DB Packet Storm
108 4.3 警告
Network 		openwebui open webui openwebuiのopen webuiにおけるユーザ制御の鍵による認証回避に関する脆弱性 New CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-45385 2026-05-20 13:26 2026-05-15 Show GitHub Exploit DB Packet Storm
109 4.3 警告
Network 		openwebui open webui openwebuiのopen webuiにおけるユーザ制御の鍵による認証回避に関する脆弱性 New CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-45386 2026-05-20 13:26 2026-05-15 Show GitHub Exploit DB Packet Storm
110 4.3 警告
Network 		openwebui open webui openwebuiのopen webuiにおける情報漏えいに関する脆弱性 New CWE-200
情報漏えい 		CVE-2026-45387 2026-05-20 13:26 2026-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
318101 - - - Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2023-43851 2023-12-27 03:15 2023-12-27 Show GitHub Exploit DB Packet Storm
318102 9.8 CRITICAL
Network 		- - Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-36189. Reason: This record is a duplicate of CVE-2023-36189. Notes: All CVE users should reference CVE-2023-36189 instead of this rec… - CVE-2023-32785 2023-12-27 03:15 2023-10-21 Show GitHub Exploit DB Packet Storm
318103 - gnu binutils Buffer overflow in getsym in tekhex.c in libbfd in Free Software Foundation GNU Binutils before 20060423, as used by GNU strings, allows context-dependent attackers to cause a denial of service (appl… CWE-787
 Out-of-bounds Write 		CVE-2006-2362 2023-12-23 02:15 2006-05-16 Show GitHub Exploit DB Packet Storm
318104 - nasm netwide_assembler Buffer overflow in the error function in preproc.c for NASM 0.98.38 1.2 allows attackers to execute arbitrary code via a crafted asm file, a different vulnerability than CVE-2005-1194. CWE-787
 Out-of-bounds Write 		CVE-2004-1287 2023-12-23 02:15 2005-01-10 Show GitHub Exploit DB Packet Storm
318105 - - - Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-45292. Reason: This record is a reservation duplicate of CVE-2023-45292. Notes: All CVE users should reference CVE-2023-45292 instead… - CVE-2023-50119 2023-12-22 00:15 2023-12-22 Show GitHub Exploit DB Packet Storm
318106 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2023-42927 2023-12-21 02:15 2023-12-12 Show GitHub Exploit DB Packet Storm
318107 - - - Rejected reason: This flaw was found to be a duplicate of CVE-2023-6927. Please see https://access.redhat.com/security/cve/CVE-2023-6927 for information about affected products and security errata. - CVE-2023-6920 2023-12-19 02:15 2023-12-19 Show GitHub Exploit DB Packet Storm
318108 - - - Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-2804. Reason: This record is a duplicate of CVE-2023-2804. Notes: All CVE users should reference CVE-2023-2804 instead of this record… - CVE-2023-31813 2023-12-16 11:15 2023-12-16 Show GitHub Exploit DB Packet Storm
318109 - microsoft windows_embedded_compact WinCE 3.0.9348 generates predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections. NVD-CWE-Other
CVE-2001-0162 2023-12-16 04:06 2001-01-1 Show GitHub Exploit DB Packet Storm
318110 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2023-27171 2023-12-13 23:15 2023-12-13 Show GitHub Exploit DB Packet Storm