Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223941	7.1	危険	IBM	-	IBM WebSphere DataPower XC10 アプライアンスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-5428	2013-10-23 16:39	2013-10-18	Show	GitHub Exploit DB Packet Storm

223942	5.8	警告	シスコシステムズ	-	Open Shortest Path First (OSPF) プロトコルの Link State Advertisement (LSA) に関する問題	CWE-noinfo 情報不足	CVE-2013-0149	2013-10-23 14:46	2013-08-1	Show	GitHub Exploit DB Packet Storm

223943	10	危険	MySQL AB オラクル	-	MySQL における脆弱性	CWE-noinfo 情報不足	CVE-2012-2750	2013-10-23 14:44	2012-08-17	Show	GitHub Exploit DB Packet Storm

223944	7.8	危険	シスコシステムズ	-	Cisco IOS の DNS-over-TCP の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-5480	2013-10-23 10:46	2013-09-25	Show	GitHub Exploit DB Packet Storm

223945	7.8	危険	シスコシステムズ	-	Cisco IOS の DNS-over-TCP の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-5479	2013-10-23 10:45	2013-09-25	Show	GitHub Exploit DB Packet Storm

223946	7.8	危険	シスコシステムズ	-	Cisco IOS および IOS XE におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-5478	2013-10-23 10:44	2013-09-25	Show	GitHub Exploit DB Packet Storm

223947	7.8	危険	シスコシステムズ	-	Cisco IOS の T1/E1 driver-queue 機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-5477	2013-10-23 10:43	2013-09-25	Show	GitHub Exploit DB Packet Storm

223948	7.8	危険	シスコシステムズ	-	Cisco IOS および IOS XE におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-5473	2013-10-23 10:41	2013-09-25	Show	GitHub Exploit DB Packet Storm

223949	4.3	警告	The phpMyAdmin Project Novell	-	phpMyAdmin におけるクリックジャッキング防止メカニズムを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2013-5029	2013-10-23 10:40	2013-08-4	Show	GitHub Exploit DB Packet Storm

223950	5.8	警告	Puppet	-	Puppet Enterprise のパスワードリセットページにおけるユーザパスワードを変更される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-4962	2013-10-23 10:36	2013-08-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
751	9.8	CRITICAL Network	inhandnetworks	ir315_firmware ir302_firmware ir615_firmware ir305_firmware	A command injection vulnerability exists in the Admin Access feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier… New	CWE-77 Command Injection	CVE-2026-38702	2026-05-29 23:09	2026-05-29	Show	GitHub Exploit DB Packet Storm

752	9.8	CRITICAL Network	inhandnetworks	ir315_firmware ir302_firmware ir615_firmware ir305_firmware	A command injection vulnerability exists in the ZeroTier VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier… New	CWE-77 Command Injection	CVE-2026-38703	2026-05-29 23:09	2026-05-29	Show	GitHub Exploit DB Packet Storm

753	9.8	CRITICAL Network	inhandnetworks	ir315_firmware ir302_firmware ir615_firmware ir305_firmware	A command injection vulnerability exists in the IPSec VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier ve… New	CWE-77 Command Injection	CVE-2026-38707	2026-05-29 23:08	2026-05-29	Show	GitHub Exploit DB Packet Storm

754	9.8	CRITICAL Network	inhandnetworks	ir315_firmware ir302_firmware ir615_firmware ir305_firmware	A command injection vulnerability exists in the WireGuard VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlie… New	CWE-77 Command Injection	CVE-2026-38704	2026-05-29 23:08	2026-05-29	Show	GitHub Exploit DB Packet Storm

755	8.6	HIGH Network	-	-	Music Player Daemon (MPD) before version 0.24.11 contains a stack buffer overflow vulnerability in the pcm_unpack_24be function in src/pcm/Pack.cxx that allows unauthenticated attackers to corrupt st… New	CWE-193 Off-by-one Error	CVE-2026-49127	2026-05-29 23:07	2026-05-29	Show	GitHub Exploit DB Packet Storm

756	5.8	MEDIUM Network	-	-	Music Player Daemon (MPD) before version 0.24.11 contains a server-side request forgery vulnerability in CurlInputPlugin where CURLOPT_FOLLOWLOCATION is set without CURLOPT_REDIR_PROTOCOLS_STR, allow… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-49129	2026-05-29 23:07	2026-05-29	Show	GitHub Exploit DB Packet Storm

757	5.3	MEDIUM Network	-	-	Music Player Daemon (MPD) before version 0.24.11 contains a CRLF injection vulnerability in the xspf_char_data function within the XSPF playlist plugin that allows attackers to embed literal CR/LF by… New	CWE-93 CRLF Injection	CVE-2026-49130	2026-05-29 23:07	2026-05-29	Show	GitHub Exploit DB Packet Storm

758	4.1	MEDIUM Network	-	-	A flaw was found in the Quay config-tool's LDAP and SMTP validation functions. An attacker with config editor access can exploit these functions, which make outbound connections to user-supplied endp… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-10052	2026-05-29 23:06	2026-05-29	Show	GitHub Exploit DB Packet Storm

759	2.7	LOW Network	-	-	A flaw was found in the Quay config-tool's GitLab OAuth validator. This vulnerability causes sensitive credentials, specifically client_id and client_secret, to be transmitted as plaintext in URL que… New	CWE-598 Information Exposure Through Query Strings in GET Request	CVE-2026-10078	2026-05-29 23:06	2026-05-29	Show	GitHub Exploit DB Packet Storm

760	7.7	HIGH Network	-	-	A flaw was found in the OpenShift Router. A user with EndpointSlice write access can exploit this vulnerability by creating a Service backed by an FQDN (Fully Qualified Domain Name) EndpointSlice tha… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-42965	2026-05-29 23:06	2026-05-29	Show	GitHub Exploit DB Packet Storm