Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249641 4.3 警告 SquirrelMail Project - SquirrelMail の functions/mime.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2023 2012-03-27 18:43 2011-07-10 Show GitHub Exploit DB Packet Storm
249642 4.3 警告 TIBCO Software - TIBCO iProcess Engine および iProcess Workspace におけるセッションをハイジャックされる脆弱性 CWE-Other
その他 		CVE-2011-2021 2012-03-27 18:43 2011-05-18 Show GitHub Exploit DB Packet Storm
249643 4.3 警告 TIBCO Software - TIBCO iProcess Engine および iProcess Workspace におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2020 2012-03-27 18:43 2011-05-18 Show GitHub Exploit DB Packet Storm
249644 4.3 警告 Wireshark - Wireshark の snoop_read 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-1959 2012-03-27 18:43 2011-05-31 Show GitHub Exploit DB Packet Storm
249645 4.3 警告 Wireshark - Wireshark におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2011-1958 2012-03-27 18:43 2011-05-31 Show GitHub Exploit DB Packet Storm
249646 4.3 警告 Wireshark - Wireshark の dissect_dcm_main 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1957 2012-03-27 18:43 2011-05-31 Show GitHub Exploit DB Packet Storm
249647 4.3 警告 Wireshark - Wireshark の bytes_repr_len 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2011-1956 2012-03-27 18:43 2011-06-6 Show GitHub Exploit DB Packet Storm
249648 6.8 警告 postrev - Post Revolution におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-1954 2012-03-27 18:43 2011-05-22 Show GitHub Exploit DB Packet Storm
249649 4.3 警告 postrev - Post Revolution の common.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1953 2012-03-27 18:43 2011-05-22 Show GitHub Exploit DB Packet Storm
249650 5 警告 postrev - Post Revolution の common.php におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1952 2012-03-27 18:43 2011-05-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2751 5.3 MEDIUM
Network 		- - linux-entra-sso is a browser plugin for Linux to SSO on Microsoft Entra ID. Prior to 1.8.1, platform/chrome/js/platform-chrome.js:69-88 registers a single declarativeNetRequest rule whose urlFilter i… CWE-284
CWE-436
Improper Access Control
 Interpretation Conflict 		CVE-2026-42177 2026-05-14 01:31 2026-05-13 Show GitHub Exploit DB Packet Storm
2752 8.1 HIGH
Network 		- - An authenticated iControl REST user with low privileges can create or modify arbitrary files through an undisclosed iControl REST endpoint on the BIG-IQ system.  Note: Software versions which have re… CWE-22
Path Traversal 		CVE-2026-20916 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2753 6.8 MEDIUM
Network 		- - When running in Appliance mode, a directory traversal vulnerability exists in an undisclosed iControl REST endpoint that may allow an authenticated attacker with administrator role privileges to cros… CWE-35
 Path Traversal: '.../...//' 		CVE-2026-24464 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2754 4.4 MEDIUM
Local 		- - When BIG-IP DNS is provisioned, a vulnerability exists in the gtm_add and bigip_add iControl REST commands that return the ssh-password parameter in cleartext in the iControl REST response and is als… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2026-28758 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2755 8.7 HIGH
Network 		- - A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at least the Certificate Manager role can modify configuration objects that allow running ar… CWE-250
 Execution with Unnecessary Privileges 		CVE-2026-32643 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2756 8.7 HIGH
Network 		- - A vulnerability exists in BIG-IP scripted monitors that may allow an authenticated attacker with the Resource Administrator or Administrator role to execute arbitrary system commands with higher priv… CWE-250
 Execution with Unnecessary Privileges 		CVE-2026-32673 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2757 5.3 MEDIUM
Network 		- - When Bidirectional Forwarding Detection (BFD) is configured in Static and Dynamic routing protocols, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to stop processing BFD pack… CWE-410
 Insufficient Resource Pool 		CVE-2026-34019 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2758 8.7 HIGH
Network 		- - When running in Appliance mode, an authenticated remote command injection vulnerability exists in an undisclosed iControl REST endpoint. A successful exploit can allow the attacker to cross a securit… CWE-78
OS Command  		CVE-2026-34176 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2759 6.5 MEDIUM
Network 		- - An authenticated iControl SOAP user may be able to obtain information of other accounts.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated. CWE-266
 Incorrect Privilege Assignment 		CVE-2026-35062 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm
2760 7.5 HIGH
Network 		- - When the BIG-IP Configuration utility is configured to use Lightweight Directory Access Protocol (LDAP) authentication, undisclosed traffic can cause the httpd process to exhaust the available file d… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2026-39455 2026-05-14 01:27 2026-05-14 Show GitHub Exploit DB Packet Storm