Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2411	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC10 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のAC10 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-5547	2026-05-1 10:44	2026-04-5	Show	GitHub Exploit DB Packet Storm

2412	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC10 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のAC10 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-5548	2026-05-1 10:44	2026-04-5	Show	GitHub Exploit DB Packet Storm

2413	7.5	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC10 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のAC10 ファームウェアにおける複数の脆弱性	CWE-320 CWE-321	CVE-2026-5549	2026-05-1 10:44	2026-04-5	Show	GitHub Exploit DB Packet Storm

2414	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC10 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のAC10 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-5550	2026-05-1 10:44	2026-04-5	Show	GitHub Exploit DB Packet Storm

2415	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	m3 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のm3 ファームウェアにおける複数の脆弱性	CWE-119 CWE-120	CVE-2026-5567	2026-05-1 10:44	2026-04-5	Show	GitHub Exploit DB Packet Storm

2416	8.8	重要 Network	Belkin International	F9K1122 ファームウェア	Belkin InternationalのF9K1122 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-5608	2026-05-1 10:44	2026-04-6	Show	GitHub Exploit DB Packet Storm

2417	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	I12 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のI12 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-5609	2026-05-1 10:44	2026-04-6	Show	GitHub Exploit DB Packet Storm

2418	8.8	重要 Network	Belkin International	F9K1015 ファームウェア	Belkin InternationalのF9K1015 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-5610	2026-05-1 10:44	2026-04-6	Show	GitHub Exploit DB Packet Storm

2419	8.8	重要 Network	Belkin International	F9K1015 ファームウェア	Belkin InternationalのF9K1015 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-5611	2026-05-1 10:44	2026-04-6	Show	GitHub Exploit DB Packet Storm

2420	8.8	重要 Network	Belkin International	F9K1015 ファームウェア	Belkin InternationalのF9K1015 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-5612	2026-05-1 10:44	2026-04-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
317751	7.5	HIGH Network	unify	ewave_servletexec	Unify eWave ServletExec allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.	CWE-178 Improper Handling of Case Sensitivity	CVE-2000-0498	2024-01-27 02:43	2000-06-8	Show	GitHub Exploit DB Packet Storm

317752	7.5	HIGH Network	bea	weblogic_server	The default configuration of BEA WebLogic 3.1.8 through 4.5.1 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.	CWE-178 Improper Handling of Case Sensitivity	CVE-2000-0499	2024-01-27 02:43	2000-06-8	Show	GitHub Exploit DB Packet Storm

317753	7.1	HIGH Local	iss	blackice_server_protection blackice_pc_protection	BlackICE PC Protection and Server Protection installs (1) firewall.ini, (2) blackice.ini, (3) sigs.ini and (4) protect.ini with Everyone Full Control permissions, which allows local users to cause a …	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2004-1714	2024-01-27 02:21	2004-08-11	Show	GitHub Exploit DB Packet Storm

317754	7.0	HIGH Local	symantec	antivirus_scan_engine	The LiveUpdate capability (liveupdate.sh) in Symantec AntiVirus Scan Engine 4.0 and 4.3 for Red Hat Linux allows local users to create or append to arbitrary files via a symlink attack on /tmp/LiveUp…	CWE-59 Link Following	CVE-2004-0217	2024-01-27 02:21	2004-04-15	Show	GitHub Exploit DB Packet Storm

317755	5.5	MEDIUM Local	mgetty_project	mgetty	faxrunqd.in in mgetty 1.1.28 and earlier allows local users to overwrite files via a symlink attack on JOB files.	CWE-59 Link Following	CVE-2003-0517	2024-01-27 02:20	2003-08-18	Show	GitHub Exploit DB Packet Storm

317756	7.8	HIGH Local	ibm	u2_universe	cci_dir in IBM U2 UniVerse 10.0.0.9 and earlier creates hard links and unlinks files as root, which allows local users to gain privileges by deleting and overwriting arbitrary files.	CWE-59 Link Following	CVE-2003-0578	2024-01-27 02:19	2003-08-18	Show	GitHub Exploit DB Packet Storm

317757	7.8	HIGH Local	oracle	mysql	Buffer overflow in MySQL daemon (mysqld) before 3.23.50, and 4.0 beta before 4.02, on the Win32 platform, allows local users to execute arbitrary code via a long "datadir" parameter in the my.ini ini…	CWE-120 Classic Buffer Overflow	CVE-2002-0969	2024-01-27 02:19	2002-10-11	Show	GitHub Exploit DB Packet Storm

317758	5.5	MEDIUM Local	blackberry	qnx_neutrino_real-time_operating_system	Hard link and possibly symbolic link following vulnerabilities in QNX RTOS 4.25 (aka QNX4) allow local users to overwrite arbitrary files via (1) the -f argument to the monitor utility, (2) the -d ar…	CWE-59 Link Following	CVE-2002-0793	2024-01-27 02:18	2002-08-12	Show	GitHub Exploit DB Packet Storm

317759	5.5	MEDIUM Local	kernel avaya	util-linux cvlan interactive_response integrated_management_suit intuity_lx message_networking messaging_storage_server	script command in the util-linux package before 2.11n allows local users to overwrite arbitrary files by setting a hardlink from the typescript log file to any file on the system, then having root ex…	CWE-59 Link Following	CVE-2001-1494	2024-01-27 02:16	2001-12-31	Show	GitHub Exploit DB Packet Storm

317760	7.1	HIGH Local	microsoft	windows_nt	The Winsock2ProtocolCatalogMutex mutex in Windows NT 4.0 has inappropriate Everyone/Full Control permissions, which allows local users to modify the permissions to "No Access" and disable Winsock net…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2001-0006	2024-01-27 02:08	2001-02-12	Show	GitHub Exploit DB Packet Storm