Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2401 7.5 重要
Network 		Zcash Foundation zebra-network
Zebrad 		Zcash Foundationのzebra-network等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-40881 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
2402 6.5 警告
Network 		Frappe Frappe HR FrappeのFrappe HRにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-40888 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
2403 6.5 警告
Network 		Frappe Frappe HR FrappeのFrappe HRにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-40889 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
2404 8.8 重要
Network 		Jos de Jong math.js Math.jsにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性 CWE-915
動的に決定されたオブジェクト属性の不適切に制御された変更 		CVE-2026-40897 2026-04-30 12:12 2026-04-24 Show GitHub Exploit DB Packet Storm
2405 8.8 重要
Network 		Paperclip paperclipai PaperclipのpaperclipaiにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-41208 2026-04-30 12:12 2026-04-23 Show GitHub Exploit DB Packet Storm
2406 6.5 警告
Network 		Frappe Frappe HR FrappeのFrappe HRにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-41320 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
2407 7.5 重要
Network 		chargepoint Home Flex CPH50 Firmware ChargePoint, Inc.のHome Flex CPH50 Firmwareにおける重要な情報を含むソースコードに関する脆弱性 CWE-540
機密情報を含むソースコード 		CVE-2026-4155 2026-04-30 12:12 2026-04-11 Show GitHub Exploit DB Packet Storm
2408 7.5 重要
Adjacent 		chargepoint Home Flex CPH50 Firmware ChargePoint, Inc.のHome Flex CPH50 Firmwareにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-4156 2026-04-30 12:12 2026-04-11 Show GitHub Exploit DB Packet Storm
2409 7.5 重要
Adjacent 		chargepoint Home Flex CPH50 Firmware ChargePoint, Inc.のHome Flex CPH50 FirmwareにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-4157 2026-04-30 12:12 2026-04-11 Show GitHub Exploit DB Packet Storm
2410 6.6 警告
Local 		Veeam one サムスンのOneにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-41664 2026-04-30 12:12 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347281 - redhat linux userhelper in the usermode package on Red Hat Linux executes non-setuid programs as root, which does not activate the security measures in glibc and allows the programs to be exploited via format str… NVD-CWE-Other
CVE-2000-1207 2016-10-18 11:09 2000-09-30 Show GitHub Exploit DB Packet Storm
347282 - immunix
netbsd
openbsd
redhat 		immunix
netbsd
openbsd
linux 		Format string vulnerability in startprinting() function of printjob.c in BSD-based lpr lpd package may allow local users to gain privileges via an improper syslog call that uses format strings from t… NVD-CWE-Other
CVE-2000-1208 2016-10-18 11:09 2002-08-12 Show GitHub Exploit DB Packet Storm
347283 - apache tomcat Directory traversal vulnerability in source.jsp of Apache Tomcat before 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the argument to source.jsp. NVD-CWE-Other
CVE-2000-1210 2016-10-18 11:09 2002-03-22 Show GitHub Exploit DB Packet Storm
347284 - immunix
iputils
redhat 		immunix
iputils
linux 		ping in iputils before 20001010, as distributed on Red Hat Linux 6.2 through 7J and other operating systems, does not drop privileges after acquiring a raw socket, which increases ping's exposure to … NVD-CWE-Other
CVE-2000-1213 2016-10-18 11:09 2000-10-18 Show GitHub Exploit DB Packet Storm
347285 - immunix
iputils
redhat 		immunix
iputils
linux 		Buffer overflows in the (1) outpack or (2) buf variables of ping in iputils before 20001010, as distributed on Red Hat Linux 6.2 through 7J and other operating systems, may allow local users to gain … NVD-CWE-Other
CVE-2000-1214 2016-10-18 11:09 2000-10-18 Show GitHub Exploit DB Packet Storm
347286 - symantec_veritas backup Veritas Backup agent on Linux allows remote attackers to cause a denial of service by establishing a connection without sending any data, which causes the process to hang. NVD-CWE-Other
CVE-2001-0107 2016-10-18 11:09 2001-03-12 Show GitHub Exploit DB Packet Storm
347287 - sam_lantinga
debian 		splitvt
debian_linux 		Multiple buffer overflows in splitvt before 1.6.5 allow local users to execute arbitrary commands. NVD-CWE-Other
CVE-2001-0112 2016-10-18 11:09 2001-03-12 Show GitHub Exploit DB Packet Storm
347288 - compaq
digital 		armada_insight_manager
enterprise_volume_manager-command_scripter
foundation_agents
insight_management_agent
insight_management_desktop_web_agent
insight_manager_lc
insight_manager_… 		Buffer overflow in cpqlogin.htm in web-enabled agents for various Compaq management software products such as Insight Manager and Management Agents allows remote attackers to execute arbitrary comman… NVD-CWE-Other
CVE-2001-0134 2016-10-18 11:09 2001-03-12 Show GitHub Exploit DB Packet Storm
347289 - ultrascripts ultraboard The default installation of Ultraboard 2000 2.11 creates the Skins, Database, and Backups directories with world-writeable permissions, which could allow local users to modify sensitive information o… NVD-CWE-Other
CVE-2001-0135 2016-10-18 11:09 2001-03-12 Show GitHub Exploit DB Packet Storm
347290 - typsoft typsoft Buffer overflows in TYPSoft FTP Server 0.78 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long USER, PASS, or CWD command. NVD-CWE-Other
CVE-2000-1035 2016-10-18 11:08 2000-12-11 Show GitHub Exploit DB Packet Storm