Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1661 8.1 重要
Network 		OpenBSD OpenSSH OpenBSDのOpenSSHにおけるパーミッションの不適切な保持に関する脆弱性 CWE-281
パーミッションの不適切な保持 		CVE-2026-35385 2026-04-28 10:12 2026-04-2 Show GitHub Exploit DB Packet Storm
1662 8.1 重要
Network 		OpenBSD OpenSSH OpenBSDのOpenSSHにおける不適切な動作順序に関する脆弱性 CWE-696
不適切な動作順序 		CVE-2026-35386 2026-04-28 10:12 2026-04-2 Show GitHub Exploit DB Packet Storm
1663 6.5 警告
Network 		OpenBSD OpenSSH OpenBSDのOpenSSHにおける常に不適切な制御フローの実装に関する脆弱性 CWE-670
常に不適切な制御フローの実装 		CVE-2026-35387 2026-04-28 10:12 2026-04-2 Show GitHub Exploit DB Packet Storm
1664 2.5
Local 		OpenBSD OpenSSH OpenBSDのOpenSSHにおける保護されていない代替チャネルに関する脆弱性 CWE-420
保護されていない代替チャネル 		CVE-2026-35388 2026-04-28 10:12 2026-04-2 Show GitHub Exploit DB Packet Storm
1665 8.8 重要
Network 		neutrinolabs xrdp neutrinolabsのxrdpにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-35512 2026-04-28 10:12 2026-04-17 Show GitHub Exploit DB Packet Storm
1666 4.3 警告
Network 		Apache Software Foundation Apache Airflow Apache Software FoundationのApache Airflowにおけるアクセス制御の不十分な粒度に関する脆弱性 CWE-1220
アクセス制御の不十分な粒度 		CVE-2026-38743 2026-04-28 10:12 2026-04-24 Show GitHub Exploit DB Packet Storm
1667 7.7 重要
Network 		Lee Peuker Movary Lee PeukerのMovaryにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-40348 2026-04-28 10:12 2026-04-18 Show GitHub Exploit DB Packet Storm
1668 8.8 重要
Network 		Lee Peuker Movary Lee PeukerのMovaryにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-40349 2026-04-28 10:12 2026-04-18 Show GitHub Exploit DB Packet Storm
1669 8.8 重要
Network 		Lee Peuker Movary Lee PeukerのMovaryにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-40350 2026-04-28 10:12 2026-04-18 Show GitHub Exploit DB Packet Storm
1670 8.8 重要
Network 		Apache Software Foundation ActiveMQ Broker
Apache ActiveMQ 		Apache Software FoundationのApache ActiveMQ等の複数製品における複数の脆弱性 CWE-20
CWE-94
CVE-2026-40466 2026-04-28 10:12 2026-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313851 - - - Rejected reason: reserved but not needed - CVE-2022-32147 2024-07-3 02:15 2024-07-3 Show GitHub Exploit DB Packet Storm
313852 - cisco ios
vpn_3001_concentrator
vpn_3015_concentrator
vpn_3020_concentrator
vpn_3030_concentator
vpn_3060_concentrator
vpn_3080_concentrator
adaptive_security_appliance_software
vpn… 		Internet Key Exchange (IKE) version 1 protocol, as implemented on Cisco IOS, VPN 3000 Concentrators, and PIX firewalls, allows remote attackers to cause a denial of service (resource exhaustion) via … NVD-CWE-Other
CVE-2006-3906 2024-07-2 21:57 2006-07-28 Show GitHub Exploit DB Packet Storm
313853 - cisco adaptive_security_appliance_software
pix_firewall
firewall_services_module
pix_firewall_software 		Cisco PIX/ASA 7.1.x before 7.1(2) and 7.0.x before 7.0(5), PIX 6.3.x before 6.3.5(112), and FWSM 2.3.x before 2.3(4) and 3.x before 3.1(7), when used with Websense/N2H2, allows remote attackers to by… NVD-CWE-Other
CVE-2006-0515 2024-07-2 21:57 2006-05-9 Show GitHub Exploit DB Packet Storm
313854 - cisco vpn_3001_concentrator
vpn_3015_concentrator
vpn_3020_concentrator
vpn_3030_concentator
vpn_3060_concentrator
vpn_3080_concentrator
adaptive_security_appliance_software
vpn_3000_c… 		The Downloadable RADIUS ACLs feature in Cisco PIX and VPN 3000 concentrators, when creating an ACL on the Cisco Secure Access Control Server (CS ACS), generates a random internal name for an ACL that… NVD-CWE-Other
CVE-2005-4499 2024-07-2 21:57 2005-12-22 Show GitHub Exploit DB Packet Storm
313855 - cisco firewall_services_module
vpn_3000_concentrator_series_software
ios
adaptive_security_appliance_software
pix_firewall
mds_9000
mds_9000_san-os
pix_firewall_software 		Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in multiple Cisco products allow remote attackers to cause a denial of service (device reset) via ce… NVD-CWE-Other
CVE-2005-3669 2024-07-2 21:57 2005-11-19 Show GitHub Exploit DB Packet Storm
313856 - openbsd openssh A "buffer management error" in buffer_append_space of buffer.c for OpenSSH before 3.7 may allow remote attackers to execute arbitrary code by causing an incorrect amount of memory to be freed and cor… NVD-CWE-Other
CVE-2003-0693 2024-07-1 20:15 2003-09-22 Show GitHub Exploit DB Packet Storm
313857 - openbsd openssh Buffer overflow in sshd in OpenSSH 2.3.1 through 3.3 may allow remote attackers to execute arbitrary code via a large number of responses during challenge response authentication when OpenBSD is usin… NVD-CWE-Other
CVE-2002-0640 2024-07-1 20:15 2002-07-3 Show GitHub Exploit DB Packet Storm
313858 - - - Rejected reason: CVE ID issued in error. This is not a valid vulnerability. - CVE-2024-5972 2024-06-29 04:15 2024-06-29 Show GitHub Exploit DB Packet Storm
313859 8.8 HIGH
Network 		microsoft office
works_suite 		Buffer overflow in Microsoft Word in Office 2000 SP3, Office XP SP3, Office 2003 Sp1 and SP2, and Microsoft Works Suites through 2006, allows user-assisted attackers to execute arbitrary code via a m… CWE-120
Classic Buffer Overflow 		CVE-2006-2492 2024-06-28 23:15 2006-05-20 Show GitHub Exploit DB Packet Storm
313860 - - - Rejected reason: This submission has been rejected by the CNA of record. Authentication is user configurable as described in our documentation.     https://enterprise.arcgis.com/en/server/latest/… - CVE-2024-37694 2024-06-28 05:15 2024-06-22 Show GitHub Exploit DB Packet Storm