Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1401	7.5	重要 Network		-	アップルのmacOSにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性	CWE-552 外部からアクセス可能なファイルまたはディレクトリ	CVE-2026-39871	2026-05-14 10:19	2026-05-11	Show	GitHub Exploit DB Packet Storm

1402	8.8	重要 Network	Anthropic PBC	Claude Code	Anthropic PBCのClaude Codeにおける複数の脆弱性	CWE-20 CWE-77 CWE-noinfo	CVE-2026-40068	2026-05-14 10:19	2026-05-5	Show	GitHub Exploit DB Packet Storm

1403	7.5	重要 Network	OpenMRS	OpenMRS	OpenMRSにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40075	2026-05-14 10:19	2026-05-5	Show	GitHub Exploit DB Packet Storm

1404	7.8	重要 Local	デル	Dell ObjectScale elastic cloud storage	デルのelastic cloud storage等の複数製品におけるハードコードされた認証情報の使用に関する脆弱性	CWE-798 ハードコードされた認証情報の使用	CVE-2026-40636	2026-05-14 10:19	2026-05-11	Show	GitHub Exploit DB Packet Storm

1405	6.7	警告 Local	デル	insightiq	デルのinsightiqにおける不要な特権による実行に関する脆弱性	CWE-250 不要な特権による実行	CVE-2026-40638	2026-05-14 10:19	2026-05-12	Show	GitHub Exploit DB Packet Storm

1406	7.5	重要 Network	VMware	Spring Cloud Config	VMwareのSpring Cloud Configにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-40981	2026-05-14 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

1407	9.1	緊急 Network	VMware	Spring Cloud Config	VMwareのSpring Cloud Configにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40982	2026-05-14 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

1408	8.1	重要 Network	VMware	Spring Cloud Config	VMwareのSpring Cloud ConfigにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-41002	2026-05-14 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

1409	4.4	警告 Local	VMware	Spring Cloud Config	VMwareのSpring Cloud Configにおけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2026-41004	2026-05-14 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

1410	5.3	警告 Network	Sync-in	Sync-in Server	Sync-inのSync-in Serverにおけるタイミングの違いに起因する情報漏えいに関する脆弱性	CWE-208 タイミングの違いに起因する情報漏えい	CVE-2026-41161	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345971	-	freebsd	freebsd	FreeBSD 5.1 for the Alpha processor allows local users to cause a denial of service (crash) via an execve system call with an unaligned memory address as an argument.	NVD-CWE-Other	CVE-2004-0618	2017-07-11 10:30	2004-12-6	Show	GitHub Exploit DB Packet Storm

345972	-	jelsoft	vbulletin	Cross-site scripting (XSS) vulnerability in (1) newreply.php or (2) newthread.php in vBulletin 3.0.1 allows remote attackers to inject arbitrary HTML or script as other users via the Edit-panel.	NVD-CWE-Other	CVE-2004-0620	2017-07-11 10:30	2004-12-6	Show	GitHub Exploit DB Packet Storm

345973	-	zaireweb_solutions	newsletter_zws	admin.php in Newsletter ZWS allows remote attackers to gain administrative privileges via a list_user operation with the ulevel parameter set to 1 (administrator level), which lists all users and the…	NVD-CWE-Other	CVE-2004-0621	2017-07-11 10:30	2004-12-6	Show	GitHub Exploit DB Packet Storm

345974	-	gnu	gnats	Format string vulnerability in misc.c in GNU GNATS 4.00 may allow remote attackers to execute arbitrary code via format string specifiers in a string that gets logged by syslog.	NVD-CWE-Other	CVE-2004-0623	2017-07-11 10:30	2004-12-6	Show	GitHub Exploit DB Packet Storm

345975	-	artmedic_webdesign	artmedic_links	PHP remote file inclusion vulnerability in index.php for Artmedic links 5.0 (artmedic_links5) allows remote attackers to execute arbitrary PHP code by modifying the id parameter to reference a URL on…	NVD-CWE-Other	CVE-2004-0624	2017-07-11 10:30	2004-12-6	Show	GitHub Exploit DB Packet Storm

345976	-	websoft	infinity_web	SQL injection vulnerability in Infinity WEB 1.0 allows remote attackers to bypass authentication and gain privileges via the login page.	NVD-CWE-Other	CVE-2004-0625	2017-07-11 10:30	2004-12-6	Show	GitHub Exploit DB Packet Storm

345977	-	conectiva gentoo linux suse	linux linux_kernel suse_linux	The tcp_find_option function of the netfilter subsystem in Linux kernel 2.6, when using iptables and TCP options rules, allows remote attackers to cause a denial of service (CPU consumption by infini…	NVD-CWE-Other	CVE-2004-0626	2017-07-11 10:30	2004-12-6	Show	GitHub Exploit DB Packet Storm

345978	-	adobe	acrobat acrobat_reader	Buffer overflow in the ActiveX component (pdf.ocx) for Adobe Acrobat 5.0.5 and Acrobat Reader, and possibly other versions, allows remote attackers to execute arbitrary code via a URI for a PDF file …	NVD-CWE-Other	CVE-2004-0629	2017-07-11 10:30	2004-09-28	Show	GitHub Exploit DB Packet Storm

345979	-	adobe	acrobat_reader	The uudecoding feature in Adobe Acrobat Reader 5.0.5 and 5.0.6 for Unix and Linux, and possibly other versions including those before 5.0.9, allows remote attackers to execute arbitrary code via shel…	NVD-CWE-Other	CVE-2004-0630	2017-07-11 10:30	2004-08-18	Show	GitHub Exploit DB Packet Storm

345980	-	adobe	acrobat_reader	Buffer overflow in the uudecoding feature for Adobe Acrobat Reader 5.0.5 and 5.0.6 for Unix and Linux, and possibly other versions including those before 5.0.9, allows remote attackers to execute arb…	NVD-CWE-Other	CVE-2004-0631	2017-07-11 10:30	2004-08-18	Show	GitHub Exploit DB Packet Storm