Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1401 9.8 緊急
Network 		ERLANG Erlang/Inets (Inets)
Erlang/OTP 		ERLANGのErlang/Inets (Inets)等の複数製品における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-28808 2026-04-27 11:27 2026-04-7 Show GitHub Exploit DB Packet Storm
1402 6.1 警告
Network 		Dovestones Software Ltd AD Phonebook Dovestones Software LtdのAD Phonebookにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-31013 2026-04-27 11:27 2026-04-21 Show GitHub Exploit DB Packet Storm
1403 6.3 警告
Network 		Dovestones Software Ltd AD Self Update Dovestones Software LtdのAD Self Updateにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-31014 2026-04-27 11:27 2026-04-21 Show GitHub Exploit DB Packet Storm
1404 9.8 緊急
Network 		reconurge Flowsint reconurgeのFlowsintにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-32311 2026-04-27 11:27 2026-04-20 Show GitHub Exploit DB Packet Storm
1405 7.5 重要
Network 		freedom SecureDrop-Client freedomのSecureDrop-Clientにおける複数の脆弱性 CWE-36
CWE-73
CVE-2026-35465 2026-04-27 11:27 2026-04-18 Show GitHub Exploit DB Packet Storm
1406 8.4 重要
Local 		Gitlawb OpenClaude GitlawbのOpenClaudeにおける複数の脆弱性 CWE-22
CWE-284
CVE-2026-35570 2026-04-27 11:27 2026-04-21 Show GitHub Exploit DB Packet Storm
1407 8.8 重要
Network 		M1k1o Neko M1k1oのNekoにおける複数の脆弱性 CWE-20
CWE-269
CWE-284
CWE-639
CWE-862
CVE-2026-39386 2026-04-27 11:27 2026-04-21 Show GitHub Exploit DB Packet Storm
1408 8.8 重要
Network 		Lawnchair Lawnchair Lawnchairにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-39866 2026-04-27 11:27 2026-04-21 Show GitHub Exploit DB Packet Storm
1409 6.1 警告
Network 		NetFoundry zrok NetFoundryのzrokにおける複数の脆弱性 CWE-116
CWE-79
CVE-2026-40302 2026-04-27 11:27 2026-04-17 Show GitHub Exploit DB Packet Storm
1410 7.5 重要
Network 		NetFoundry zrok NetFoundryのzrokにおける複数の脆弱性 CWE-400
CWE-789
CVE-2026-40303 2026-04-27 11:27 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313821 7.8 HIGH
Local 		microsoft windows_nt
windows_2000 		smss.exe debugging subsystem in Windows NT and Windows 2000 does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges… NVD-CWE-noinfo
CVE-2002-0367 2024-07-17 02:42 2002-06-25 Show GitHub Exploit DB Packet Storm
313822 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CVE RECORD. Consult IDs: CVE-2024-5324. Reason: This record is a reservation duplicate of CVE-2024-5324. Notes: All CVE users should reference CVE-2024-… - CVE-2024-6721 2024-07-16 01:15 2024-07-15 Show GitHub Exploit DB Packet Storm
313823 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-40946 2024-07-15 16:15 2024-07-12 Show GitHub Exploit DB Packet Storm
313824 - esri arcinfo_workstation Format string vulnerability in ArcGIS for ESRI ArcInfo Workstation 9.0 allows local users to gain privileges via format string specifiers in the ARCHOME environment variable to (1) wservice or (2) lo… CWE-134
Use of Externally-Controlled Format String 		CVE-2005-1394 2024-07-12 03:03 2005-05-3 Show GitHub Exploit DB Packet Storm
313825 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-6643 2024-07-11 19:15 2024-07-11 Show GitHub Exploit DB Packet Storm
313826 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none. - CVE-2024-6664 2024-07-11 06:15 2024-07-11 Show GitHub Exploit DB Packet Storm
313827 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none. - CVE-2024-6663 2024-07-11 06:15 2024-07-11 Show GitHub Exploit DB Packet Storm
313828 - - - Rejected reason: **REJECT** This CVE ID was issued in error and is a duplicate. Please use CVE-2024-6500 instead. - CVE-2024-6630 2024-07-11 03:15 2024-07-11 Show GitHub Exploit DB Packet Storm
313829 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none. - CVE-2024-6642 2024-07-10 22:15 2024-07-10 Show GitHub Exploit DB Packet Storm
313830 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-3708 2024-07-10 00:15 2024-05-23 Show GitHub Exploit DB Packet Storm