Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1571 9.8 緊急
Network 		エレコム株式会社 WRC-XE5400GS-G
WRC-BE72XSD-B
WAB-BE72-M
WRC-X1800GS-B
WRC-BE65QSD-B
WRC-X6000QSA-G
WRC-X3000GS2A-B
WRC-W702-B
WRC-X6000XS-G
WAB-BE36-M
WRC-X6000XST-G
WRC-X3000GS2-B 		エレコム製無線LANルーターおよび無線アクセスポイントにおける複数の脆弱性(2026年5月) CWE-78
CWE-79
CWE-Other
CVE-2026-25107
CVE-2026-35506
CVE-2026-40621
CVE-2026-42062
CVE-2026-42948
CVE-2026-42950
CVE-2026-42961 		2026-05-19 17:24 2026-05-12 Show GitHub Exploit DB Packet Storm
1572 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年05月14日) - - 2026-05-18 14:06 2026-05-15 Show GitHub Exploit DB Packet Storm
1573 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-71297 2026-05-18 12:19 2026-05-8 Show GitHub Exploit DB Packet Storm
1574 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-71298 2026-05-18 12:19 2026-05-8 Show GitHub Exploit DB Packet Storm
1575 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-71299 2026-05-18 12:19 2026-05-8 Show GitHub Exploit DB Packet Storm
1576 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-71300 2026-05-18 12:19 2026-05-8 Show GitHub Exploit DB Packet Storm
1577 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-71301 2026-05-18 12:19 2026-05-8 Show GitHub Exploit DB Packet Storm
1578 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-71302 2026-05-18 12:19 2026-05-8 Show GitHub Exploit DB Packet Storm
1579 6.7 警告
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows リッチ テキスト エディットの特権昇格の脆弱性 CWE-415
二重解放 		CVE-2026-21530 2026-05-18 12:19 2026-05-12 Show GitHub Exploit DB Packet Storm
1580 6.5 警告
Network 		アップル visionos
watchOS
iOS
tvOS
iPadOS 		アップルのiPadOS等の複数製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-28847 2026-05-18 12:19 2026-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345311 - michael_barretto cardboard CardBoard 2.4 greeting card CGI by Michael Barretto allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient field. CWE-20
 Improper Input Validation  		CVE-2001-1584 2017-07-29 10:29 2001-12-31 Show GitHub Exploit DB Packet Storm
345312 - openbsd openssh SSH protocol 2 (aka SSH-2) public key authentication in the development snapshot of OpenSSH 2.3.1, available from 2001-01-18 through 2001-02-08, does not perform a challenge-response step to ensure t… CWE-287
Improper Authentication 		CVE-2001-1585 2017-07-29 10:29 2001-12-31 Show GitHub Exploit DB Packet Storm
345313 - chetcpasswd chetcpasswd chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1 allows remote attackers to read the last line of the shadow file via a long user (userid) field. NVD-CWE-Other
CVE-2002-2219 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345314 - freebsd
openbsd 		ports_collection
openbsd 		isakmpd/message.c in isakmpd in FreeBSD before isakmpd-20020403_1, and in OpenBSD 3.1, allows remote attackers to cause a denial of service (crash) by sending Internet Key Exchange (IKE) payloads out… NVD-CWE-Other
CVE-2002-2222 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345315 - juniper netscreen_remote_security_client
netscreen_remote_vpn_client 		Buffer overflow in NetScreen-Remote 8.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly inc… NVD-CWE-Other
CVE-2002-2223 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345316 - network_associates pgp_freeware Buffer overflow in PGPFreeware 7.03 running on Windows NT 4.0 SP6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) resp… NVD-CWE-Other
CVE-2002-2224 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345317 - tftpd32 tftpd32 Buffer overflow in tftpd of TFTP32 2.21 and earlier allows remote attackers to execute arbitrary code via a long filename argument. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2002-2226 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345318 - ikonboard ikonboard Cross-site scripting (XSS) vulnerability in Ikonboard 3.1.1 allows remote attackers to inject arbitrary web script or HTML via (1) a javascript: URL in a photo URL or (2) an X-Forwarded-For: header. CWE-79
Cross-site Scripting 		CVE-2002-2231 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345319 - mollensoft_software enceladus_server_suite Directory traversal vulnerability in Enceladus Server Suite 3.9 allows remote attackers to list arbitrary directories and possibly cause a denial of service via "@" (at) characters in a CD (CWD) comm… CWE-22
Path Traversal 		CVE-2002-2233 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345320 - tftp tftp_server tftp32 TFTP server 2.21 and earlier allows remote attackers to cause a denial of service via a GET request with a DOS device name such as com1 or aux. CWE-20
 Improper Input Validation  		CVE-2002-2237 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm