Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2241	7.8	重要 Local	Linux Foundation	Automotive Grade Linux	Linux FoundationのAutomotive Grade Linuxにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-37525	2026-05-20 13:20	2026-05-1	Show	GitHub Exploit DB Packet Storm

2242	7.8	重要 Local	Linux Foundation	Automotive Grade Linux	Linux FoundationのAutomotive Grade Linuxにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-37526	2026-05-20 13:20	2026-05-1	Show	GitHub Exploit DB Packet Storm

2243	9.8	緊急 Network	Linux Foundation	Automotive Grade Linux	Linux FoundationのAutomotive Grade Linuxにおける複数の脆弱性	CWE-22 CWE-367	CVE-2026-37531	2026-05-20 13:20	2026-05-1	Show	GitHub Exploit DB Packet Storm

2244	6.5	警告 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-40016	2026-05-20 13:20	2026-05-12	Show	GitHub Exploit DB Packet Storm

2245	4.3	警告 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品におけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-40020	2026-05-20 13:20	2026-05-12	Show	GitHub Exploit DB Packet Storm

2246	7.8	重要 Local	マイクロソフト	Azure Connected Machine Agent	Azure Connected Machine Agent の特権の昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-40381	2026-05-20 13:20	2026-05-12	Show	GitHub Exploit DB Packet Storm

2247	9.8	緊急 Network	エレコム株式会社	WRC-XE5400GS-G WRC-BE72XSD-B WAB-BE72-M WRC-X1800GS-B WRC-BE65QSD-B WRC-X6000QSA-G WRC-X3000GS2A-B WRC-W702-B WRC-X6000XS-G WAB-BE36-M WRC-X6000XST-G WRC-X3000GS2-B	エレコム製無線LANルーターおよび無線アクセスポイントにおける複数の脆弱性（2026年5月）	CWE-78 CWE-79 CWE-Other	CVE-2026-25107 CVE-2026-35506 CVE-2026-40621 CVE-2026-42062 CVE-2026-42948 CVE-2026-42950 CVE-2026-42961	2026-05-19 17:24	2026-05-12	Show	GitHub Exploit DB Packet Storm

2248	-	-	（複数のベンダ）	（複数の製品）	CISA ICS Advisory / ICS Medical Advisory（2026年05月14日）	-	-	2026-05-18 14:06	2026-05-15	Show	GitHub Exploit DB Packet Storm

2249	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71297	2026-05-18 12:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

2250	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71298	2026-05-18 12:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
358081	-	linux	linux_kernel	The UDP implementation in Linux 2.4.x kernels keeps the IP Identification field at 0 for all non-fragmented packets, which could allow remote attackers to determine that a target system is running Li…	NVD-CWE-Other	CVE-2002-0510	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

358082	-	nscd	nscd	The default configuration of Name Service Cache Daemon (nscd) in Caldera OpenLinux 3.1 and 3.1.1 uses cached PTR records instead of consulting the authoritative DNS server for the A record, which cou…	NVD-CWE-Other	CVE-2002-0511	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

358083	-	caldera	openlinux_server openlinux_workstation	startkde in KDE for Caldera OpenLinux 2.3 through 3.1.1 sets the LD_LIBRARY_PATH environment variable to include the current working directory, which could allow local users to gain privileges of oth…	NVD-CWE-Other	CVE-2002-0512	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

358084	-	squirrelmail	squirrelmail	SquirrelMail 1.2.5 and earlier allows authenticated SquirrelMail users to execute arbitrary commands by modifying the THEME variable in a cookie.	NVD-CWE-Other	CVE-2002-0516	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

358085	-	caldera	unixware openunix	Buffer overflow in X11 library (libX11) on Caldera Open UNIX 8.0.0, UnixWare 7.1.1, and possibly other operating systems, allows local users to gain root privileges via a long -xrm argument to progra…	NVD-CWE-Other	CVE-2002-0517	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

358086	-	freebsd	freebsd	The SYN cache (syncache) and SYN cookie (syncookie) mechanism in FreeBSD 4.5 and earlier allows remote attackers to cause a denial of service (crash) (1) via a SYN packet that is accepted using synco…	NVD-CWE-Other	CVE-2002-0518	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

358087	-	asp-nuke	asp-nuke	Cross-site scripting vulnerability in functions-inc.asp for ASP-Nuke RC1 allows remote attackers to execute script as other ASP-Nuke users by embedding it within an IMG tag.	NVD-CWE-Other	CVE-2002-0520	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

358088	-	asp-nuke	asp-nuke	Cross-site scripting vulnerabilities in ASP-Nuke RC2 and earlier allow remote attackers to execute script or gain privileges as other ASP-Nuke users via script in (1) the name parameter in downloads.…	NVD-CWE-Other	CVE-2002-0521	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

358089	-	asp-nuke	asp-nuke	ASP-Nuke RC2 and earlier allows remote attackers to bypass authentication and gain privileges by modifying the "pseudo" cookie.	NVD-CWE-Other	CVE-2002-0522	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm

358090	-	asp-nuke	asp-nuke	ASP-Nuke RC2 and earlier allows remote attackers to list all logged-in users by submitting an invalid "pseudo" cookie.	NVD-CWE-Other	CVE-2002-0523	2008-09-6 05:28	2002-08-12	Show	GitHub Exploit DB Packet Storm