Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1731	-	-	（複数のベンダ）	（複数の製品）	CISA ICS Advisory / ICS Medical Advisory（2026年04月21日）	-	-	2026-04-23 17:41	2026-04-22	Show	GitHub Exploit DB Packet Storm

1732	8.8	重要 Network	サイレックス・テクノロジー株式会社	SD-330AC AMC Manager	サイレックス・テクノロジー製SD-330ACおよびAMC Managerにおける複数の脆弱性	CWE-1188 CWE-121 CWE-122 CWE-1395 CWE-226 CWE-266 CWE-306 CWE-321 CWE-327 CWE-79 CWE-93	CVE-2015-5621 CVE-2024-24487 CVE-2026-32955 CVE-2026-32956 CVE-2026-32957 CVE-2026-32958 CVE-2026-32959 CVE-2026-32960 CVE-2026-32961 CVE-2026-32962 CVE-2026-32963 CV…	2026-04-23 17:36	2026-04-20	Show	GitHub Exploit DB Packet Storm

1733	7.5	重要 Network	株式会社GROWI	GROWI	GROWIにおける、正規表現を用いたサービス運用妨害（ReDoS）の脆弱性	CWE-Other その他	CVE-2026-41040	2026-04-23 15:16	2026-04-23	Show	GitHub Exploit DB Packet Storm

1734	8.8	重要 Network	一般社団法人 JPCERT コーディネーションセンター	LogonTracer	LogonTracerにおける複数の脆弱性	CWE-78 CWE-Other	CVE-2026-33277 CVE-2026-33566	2026-04-23 14:12	2026-04-23	Show	GitHub Exploit DB Packet Storm

1735	7.3	重要 Local	i-PRO株式会社	IP簡単設定ソフトウェア	i-PRO製IP簡単設定ソフトウェアにおけるDLL読み込みに関する脆弱性	CWE-Other その他	CVE-2026-34488	2026-04-23 12:21	2026-04-23	Show	GitHub Exploit DB Packet Storm

1736	4.7	警告 Network	彼方株式会社	CMS ALAYA	CMS ALAYAにおけるSQLインジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-40529	2026-04-23 12:07	2026-04-23	Show	GitHub Exploit DB Packet Storm

1737	10	緊急 Network	Quest Software Inc.	KACE Systems Management Appliance	Quest Software Inc.のKACE Systems Management Applianceにおける認証に関する脆弱性	CWE-287 不適切な認証	CVE-2025-32975	2026-04-23 10:17	2025-06-24	Show	GitHub Exploit DB Packet Storm

1738	7.5	重要 Network	jsonparser project	jsonparser	jsonparser projectのjsonparserにおける配列インデックスの検証に関する脆弱性	CWE-129 配列インデックスの不適切な検証	CVE-2026-32285	2026-04-23 10:17	2026-03-26	Show	GitHub Exploit DB Packet Storm

1739	7.5	重要 Network	antchfx	Xpath	antchfxのXpathにおける無限ループに関する脆弱性	CWE-835 無限ループ	CVE-2026-32287	2026-04-23 10:17	2026-03-26	Show	GitHub Exploit DB Packet Storm

1740	5.5	警告 Local	Direct-Soft Inc.	WinMPG Video Convert	Direct-Soft Inc.のWinMPG Video Convertにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2019-25644	2026-04-23 10:17	2026-03-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314201	7.5	HIGH Network	microsoft	internet_information_server	FTP service in IIS 5.0 and earlier allows remote attackers to cause a denial of service via a wildcard sequence that generates a long string when it is expanded.	CWE-131 Incorrect Calculation of Buffer Size	CVE-2001-0334	2024-02-2 12:06	2001-06-27	Show	GitHub Exploit DB Packet Storm

314202	9.8	CRITICAL Network	sgi hp	irix hp-ux	Buffer overflow in FTP server in HPUX 11 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the STAT command, which uses glob to generate long strings.	CWE-131 Incorrect Calculation of Buffer Size	CVE-2001-0248	2024-02-2 12:06	2001-06-18	Show	GitHub Exploit DB Packet Storm

314203	9.8	CRITICAL Network	hp oracle sgi	hp-ux solaris irix	Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the LIST command, which uses glob to generate long strings.	CWE-131 Incorrect Calculation of Buffer Size	CVE-2001-0249	2024-02-2 12:06	2001-06-18	Show	GitHub Exploit DB Packet Storm

314204	8.8	HIGH Network	haxx	curl libcurl	Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions, allow remote malicious web servers to execute arbitrary code via base64 encoded replies that exceed the …	CWE-131 Incorrect Calculation of Buffer Size	CVE-2005-0490	2024-02-2 12:05	2005-05-2	Show	GitHub Exploit DB Packet Storm

314205	7.8	HIGH Local	openpkg apache slackware hp suse trustix	openpkg http_server slackware_linux hp-ux suse_linux secure_linux	Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local users who can create SSI documents to execute arbitrary code as the apache user via SSI (XSSI) documents…	CWE-131 Incorrect Calculation of Buffer Size	CVE-2004-0940	2024-02-2 12:05	2005-02-9	Show	GitHub Exploit DB Packet Storm

314206	9.8	CRITICAL Network	heimdal_project debian	heimdal debian_linux	k5admind (kadmind) for Heimdal allows remote attackers to execute arbitrary code via a Kerberos 4 compatibility administration request whose framing length is less than 2, which leads to a heap-based…	CWE-131 Incorrect Calculation of Buffer Size	CVE-2004-0434	2024-02-2 12:05	2004-07-7	Show	GitHub Exploit DB Packet Storm

314207	9.8	CRITICAL Network	cyrusimap apple	cyrus_sasl mac_os_x_server mac_os_x	Multiple buffer overflows in Cyrus SASL library 2.1.9 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) long inputs during user name canonica…	CWE-131 Incorrect Calculation of Buffer Size	CVE-2002-1347	2024-02-2 12:05	2002-12-18	Show	GitHub Exploit DB Packet Storm

314208	7.8	HIGH Local	sudo_project debian	sudo debian_linux	Sudo before 1.6.6 contains an off-by-one error that can result in a heap-based buffer overflow that may allow local users to gain root privileges via special characters in the -p (prompt) argument, w…	CWE-131 Incorrect Calculation of Buffer Size	CVE-2002-0184	2024-02-2 12:05	2002-05-16	Show	GitHub Exploit DB Packet Storm

314209	9.8	CRITICAL Network	linux-nfs	nfs-utils	Off-by-one error in the xlog function of mountd in the Linux NFS utils package (nfs-utils) before 1.0.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via ce…	CWE-193 Off-by-one Error	CVE-2003-0252	2024-02-2 11:56	2003-08-18	Show	GitHub Exploit DB Packet Storm

314210	5.5	MEDIUM Local	linux	linux_kernel	Off-by-one vulnerability in CPIA driver of Linux kernel before 2.2.19 allows users to modify kernel memory.	CWE-193 Off-by-one Error	CVE-2001-1391	2024-02-2 11:56	2001-04-17	Show	GitHub Exploit DB Packet Storm