Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1111 4.4 警告
Local 		Authzed, Inc. SpiceDB Authzed, Inc.のSpiceDBにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-40091 2026-04-27 11:21 2026-04-15 Show GitHub Exploit DB Packet Storm
1112 5.4 警告
Network 		OpenMage Magento OpenMageのMagentoにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-40098 2026-04-27 11:21 2026-04-20 Show GitHub Exploit DB Packet Storm
1113 7.5 重要
Network 		free5gc free5gc free5GCにおける複数の脆弱性 CWE-285
CWE-636
CVE-2026-40248 2026-04-27 11:21 2026-04-16 Show GitHub Exploit DB Packet Storm
1114 5.8 警告
Network 		free5gc free5gc
udr 		free5GCのfree5GC等の複数製品における例外的な状態のチェックに関する脆弱性 CWE-754
例外的な状態における不適切なチェック 		CVE-2026-40343 2026-04-27 11:21 2026-04-22 Show GitHub Exploit DB Packet Storm
1115 8.8 重要
Network 		OpenMage Magento OpenMageのMagentoにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2026-40488 2026-04-27 11:21 2026-04-20 Show GitHub Exploit DB Packet Storm
1116 9.1 緊急
Network 		FreeScout FreeScout FreeScoutにおける複数の脆弱性 CWE-330
CWE-340
CVE-2026-40496 2026-04-27 11:21 2026-04-21 Show GitHub Exploit DB Packet Storm
1117 8.1 重要
Network 		FreeScout FreeScout FreeScoutにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-40497 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
1118 8.8 重要
Network 		PJSIP pjsip PJSIPのpjsipにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-40614 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
1119 6.5 警告
Network 		decidim decidim Decidim Free Software AssociationのDecidimにおける不適切な権限設定に関する脆弱性 CWE-266
不適切な権限設定 		CVE-2026-40869 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
1120 9.8 緊急
Network 		PJSIP pjsip PJSIPのpjsipにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-40892 2026-04-27 11:20 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314121 - microsoft windows_server_2008
windows_vista 		The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 allows remote attackers to cause a denial of service (system hang) via crafted packets with malfor… CWE-399
 Resource Management Errors 		CVE-2010-0242 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314122 - microsoft windows_server_2008
windows_vista 		The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2, when IPv6 is enabled, does not properly perform bounds checking on ICMPv6 Route Information packe… CWE-94
Code Injection 		CVE-2010-0241 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314123 - microsoft windows_server_2008
windows_vista 		The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2, when a custom network driver is used, does not properly handle local fragmentation of Encapsulati… CWE-94
Code Injection 		CVE-2010-0240 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314124 - microsoft windows_server_2008
windows_vista 		The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2, when IPv6 is enabled, does not properly perform bounds checking on ICMPv6 Router Advertisement pa… CWE-94
Code Injection 		CVE-2010-0239 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314125 - microsoft windows_server_2008
windows_xp
windows_vista
windows_2003_server
windows_2000
windows_7 		The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, a… CWE-20
 Improper Input Validation  		CVE-2010-0022 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314126 - microsoft windows_server_2008
windows_xp
windows_vista
windows_2003_server
windows_2000
windows_7 		Multiple race conditions in the SMB implementation in the Server service in Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allow remote attackers to … CWE-362
Race Condition 		CVE-2010-0021 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314127 - microsoft windows_server_2008
windows_xp
windows_vista
windows_2003_server
windows_2000
windows_7 		The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, a… CWE-264
CWE-310
Permissions, Privileges, and Access Controls
Cryptographic Issues 		CVE-2010-0231 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314128 - microsoft windows_server_2008
windows_xp
windows_vista
windows_2003_server
windows_2000
windows_7 		The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, a… CWE-94
CWE-20
Code Injection
 Improper Input Validation  		CVE-2010-0020 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314129 - microsoft windows_server_2008
windows_vista
windows_7 		Race condition in the SMB client implementation in Microsoft Windows Server 2008 R2 and Windows 7 allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code, and in the SMB c… CWE-362
Race Condition 		CVE-2010-0017 2023-12-8 03:38 2010-02-11 Show GitHub Exploit DB Packet Storm
314130 - microsoft internet_explorer Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not prevent rendering of non-HTML local files as HTML documents, which allows remote attackers to bypass intended access restrictions and… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0255 2023-12-8 03:38 2010-02-5 Show GitHub Exploit DB Packet Storm