Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2341	9.8	緊急 Network	Exim Development	Exim	Exim DevelopmentのEximにおける複数の脆弱性	CWE-684 CWE-787	CVE-2026-40685	2026-05-7 12:00	2026-04-30	Show	GitHub Exploit DB Packet Storm

2342	5.3	警告 Network	Exim Development	Exim	Exim DevelopmentのEximにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-40686	2026-05-7 12:00	2026-04-30	Show	GitHub Exploit DB Packet Storm

2343	9.1	緊急 Network	Exim Development	Exim	Exim DevelopmentのEximにおけるリソースの初期化の不備に関する脆弱性	CWE-909 リソースの初期化の不備	CVE-2026-40687	2026-05-7 12:00	2026-04-30	Show	GitHub Exploit DB Packet Storm

2344	6.5	警告 Network	The Prosody Team	Prosody	The Prosody TeamのProsodyにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-43504	2026-05-7 12:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

2345	6.5	警告 Network	The Prosody Team	Prosody	The Prosody TeamのProsodyにおける保護されていない代替チャネルに関する脆弱性	CWE-420 保護されていない代替チャネル	CVE-2026-43505	2026-05-7 12:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

2346	7.5	重要 Network	The Prosody Team	Prosody	The Prosody TeamのProsodyにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43506	2026-05-7 11:59	2026-05-1	Show	GitHub Exploit DB Packet Storm

2347	7.5	重要 Network	The Prosody Team	Prosody	The Prosody TeamのProsodyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-43507	2026-05-7 11:59	2026-05-1	Show	GitHub Exploit DB Packet Storm

2348	7.5	重要 Network	Debian GStreamer レッドハット	GStreamer Debian GNU/Linux Red Hat Enterprise Linux GStreamer Good Plug-ins	Debian等の複数ベンダの製品における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-1940	2026-05-7 11:31	2026-03-23	Show	GitHub Exploit DB Packet Storm

2349	9.8	緊急 Network	OPPO	ColorOS Assistant	OPPOのColorOS Assistantにおける複数の脆弱性	CWE-22 CWE-23	CVE-2026-22070	2026-05-7 11:31	2026-04-30	Show	GitHub Exploit DB Packet Storm

2350	8.8	重要 Network	GeoVision	GV-LPC2211 Firmware GV-LPC2011 Firmware	GeoVisionのGV-LPC2011 Firmware等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-42364	2026-05-7 11:31	2026-05-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
317861	7.0	HIGH Local	linux opensuse suse debian	linux_kernel opensuse linux_enterprise_server linux_enterprise_desktop linux_enterprise_high_availability_extension debian_linux	Race condition in the find_keyring_by_name function in security/keys/keyring.c in the Linux kernel 2.6.34-rc5 and earlier allows local users to cause a denial of service (memory corruption and system…	CWE-362 CWE-416 Race Condition Use After Free	CVE-2010-1437	2024-02-3 01:38	2010-05-8	Show	GitHub Exploit DB Packet Storm

317862	-		postgresql trustix mandrakesoft redhat	postgresql secure_linux mandrake_linux_corporate_server enterprise_linux_desktop enterprise_linux mandrake_linux	The make_oidjoins_check script in PostgreSQL 7.4.5 and earlier allows local users to overwrite files via a symlink attack on temporary files.	NVD-CWE-Other	CVE-2004-0977	2024-02-3 01:33	2005-02-9	Show	GitHub Exploit DB Packet Storm

317863	9.8	CRITICAL Network	mit openpkg debian	kerberos_5 openpkg debian_linux	Double free vulnerabilities in error handling code in krb524d for MIT Kerberos 5 (krb5) 1.2.8 and earlier may allow remote attackers to execute arbitrary code.	CWE-415 Double Free	CVE-2004-0772	2024-02-3 00:27	2004-10-20	Show	GitHub Exploit DB Packet Storm

317864	-		mit debian redhat	kerberos_5 debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server	Double free vulnerabilities in the error handling code for ASN.1 decoders in the (1) Key Distribution Center (KDC) library and (2) client library for MIT Kerberos 5 (krb5) 1.3.4 and earlier may allow…	CWE-415 Double Free	CVE-2004-0642	2024-02-3 00:27	2004-09-28	Show	GitHub Exploit DB Packet Storm

317865	9.8	CRITICAL Network	mit apple debian	kerberos_5 mac_os_x_server mac_os_x debian_linux	Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions.	CWE-415 Double Free	CVE-2005-1689	2024-02-3 00:24	2005-07-18	Show	GitHub Exploit DB Packet Storm

317866	7.8	HIGH Local	microsoft	outlook internet_explorer windows_xp windows_server_2003 windows_98 windows_me windows_98se windows_nt	Double free vulnerability in mshtml.dll for certain versions of Internet Explorer 6.x allows remote attackers to cause a denial of service (application crash) via a malformed GIF image.	CWE-415 Double Free	CVE-2003-1048	2024-02-3 00:23	2004-07-27	Show	GitHub Exploit DB Packet Storm

317867	9.8	CRITICAL Network	openssl	openssl	Double free vulnerability in OpenSSL 0.9.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an SSL client certificate with a certain invalid ASN.1 …	CWE-415 Double Free	CVE-2003-0545	2024-02-3 00:23	2003-11-17	Show	GitHub Exploit DB Packet Storm

317868	7.5	HIGH Network	gnome	gtk	Double free vulnerability in gtk 2 (gtk2) before 2.2.4 allows remote attackers to cause a denial of service (crash) via a crafted BMP image.	CWE-415 Double Free	CVE-2005-0891	2024-02-3 00:22	2005-05-2	Show	GitHub Exploit DB Packet Storm

317869	9.8	CRITICAL Network	zlib	zlib	The decompression algorithm in zlib 1.1.3 and earlier, as used in many different utilities and packages, causes inflateEnd to release certain memory more than once (a "double free"), which may allow …	CWE-415 Double Free	CVE-2002-0059	2024-02-3 00:16	2002-03-15	Show	GitHub Exploit DB Packet Storm

317870	-		linux	linux_kernel	Memory leak in the request_key_auth_destroy function in request_key_auth in Linux kernel 2.6.10 up to 2.6.13 allows local users to cause a denial of service (memory consumption) via a large number of…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2005-3119	2024-02-3 00:13	2005-10-12	Show	GitHub Exploit DB Packet Storm