Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250001	7.8	危険	シスコシステムズ	-	複数の Cisco 製品におけるサービス運用妨害 (デバイスリロード) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3299	2011-11-9 16:30	2011-10-5	Show	GitHub Exploit DB Packet Storm

250002	7.9	危険	シスコシステムズ	-	複数の Cisco 製品における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-3298	2011-11-9 16:30	2011-10-5	Show	GitHub Exploit DB Packet Storm

250003	7.8	危険	シスコシステムズ	-	Cisco Firewall Services モジュールにおけるサービス運用妨害 (モジュールクラッシュ) の脆弱性	CWE-287 不適切な認証	CVE-2011-3297	2011-11-9 16:29	2011-10-5	Show	GitHub Exploit DB Packet Storm

250004	7.8	危険	シスコシステムズ	-	Cisco Firewall Services モジュールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3296	2011-11-9 16:29	2011-10-5	Show	GitHub Exploit DB Packet Storm

250005	7.8	危険	シスコシステムズ	-	Cisco Unified Presence におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3288	2011-11-9 16:28	2011-09-28	Show	GitHub Exploit DB Packet Storm

250006	7.8	危険	シスコシステムズ	-	Cisco Jabber Extensible Communications Platform におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3287	2011-11-9 16:27	2011-09-28	Show	GitHub Exploit DB Packet Storm

250007	4.3	警告	Wireshark	-	Wireshark の ERF ファイルパーサにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4102	2011-11-9 10:57	2011-11-1	Show	GitHub Exploit DB Packet Storm

250008	4.3	警告	Wireshark	-	Wireshark の Infiniband 解析部におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-4101	2011-11-9 10:56	2011-11-1	Show	GitHub Exploit DB Packet Storm

250009	4.3	警告	Wireshark	-	Wireshark の CSN.1 解析部におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-4100	2011-11-9 10:56	2011-11-1	Show	GitHub Exploit DB Packet Storm

250010	7.8	危険	シスコシステムズ	-	Cisco Network Admission Control (NAC) Manager におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-3305	2011-11-9 10:55	2011-10-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
321	7.7	HIGH Network	getoutline	outline	Outline is a service that allows for collaborative documentation. The `shares.create` API endpoint starting in version 0.86.0 and prior to version 1.7.0 has an insecure direct object reference.. When… Update	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-41649	2026-05-2 00:54	2026-04-29	Show	GitHub Exploit DB Packet Storm

322	9.8	CRITICAL Network	openclaw	openclaw	OpenClaw before 2026.3.22 contains a privilege escalation vulnerability where bootstrap setup codes are not bound to intended device roles and scopes during pairing. Attackers can exploit this during… Update	CWE-648 Incorrect Use of Privileged APIs	CVE-2026-41386	2026-05-2 00:52	2026-04-29	Show	GitHub Exploit DB Packet Storm

323	6.5	MEDIUM Network	openclaw	openclaw	OpenClaw before 2026.3.31 stores Nostr privateKey as plaintext in configuration, allowing exposure through config.get method calls that bypass redaction mechanisms. Attackers can retrieve unredacted … Update	CWE-312 Cleartext Storage of Sensitive Information	CVE-2026-41385	2026-05-2 00:52	2026-04-29	Show	GitHub Exploit DB Packet Storm

324	7.8	HIGH Local	openclaw	openclaw	OpenClaw before 2026.3.24 contains an environment variable injection vulnerability in the CLI backend runner that allows attackers to inject malicious environment variables through workspace configur… Update	CWE-15 External Control of System or Configuration Setting	CVE-2026-41384	2026-05-2 00:52	2026-04-29	Show	GitHub Exploit DB Packet Storm

325	8.1	HIGH Network	openclaw	openclaw	OpenClaw before 2026.4.2 contains an arbitrary directory deletion vulnerability in mirror mode that allows attackers to delete remote directories by influencing remoteWorkspaceDir and remoteAgentWork… Update	CWE-22 Path Traversal	CVE-2026-41383	2026-05-2 00:52	2026-04-29	Show	GitHub Exploit DB Packet Storm

326	5.4	MEDIUM Network	openclaw	openclaw	OpenClaw before 2026.3.31 contains an authorization bypass vulnerability in Discord voice ingress that allows attackers to bypass channel and member allowlist restrictions. Attackers can exploit stal… Update	CWE-862 Missing Authorization	CVE-2026-41382	2026-05-2 00:51	2026-04-29	Show	GitHub Exploit DB Packet Storm

327	5.4	MEDIUM Network	openclaw	openclaw	OpenClaw before 2026.3.31 contains an access control bypass vulnerability in the Discord voice manager that allows attackers to bypass channel-level member access allowlist restrictions. Attackers ca… Update	CWE-863 Incorrect Authorization	CVE-2026-41381	2026-05-2 00:51	2026-04-29	Show	GitHub Exploit DB Packet Storm

328	7.3	HIGH Local	openclaw	openclaw	OpenClaw before 2026.3.28 contains an execution approval vulnerability in exec-approvals-allowlist.ts that allows allow-always persistence to trust wrapper carrier executables instead of invoked targ… Update	CWE-807 Reliance on Untrusted Inputs in a Security Decision	CVE-2026-41380	2026-05-2 00:51	2026-04-29	Show	GitHub Exploit DB Packet Storm

329	7.1	HIGH Network	openclaw	openclaw	OpenClaw before 2026.3.28 contains a privilege escalation vulnerability allowing authenticated operators with write permissions to access admin-class Talk Voice configuration persistence. Attackers w… Update	CWE-863 Incorrect Authorization	CVE-2026-41379	2026-05-2 00:51	2026-04-29	Show	GitHub Exploit DB Packet Storm

330	8.8	HIGH Network	openclaw	openclaw	OpenClaw before 2026.3.31 contains a privilege escalation vulnerability allowing paired nodes with role=node to dispatch node.event agent requests with unrestricted gateway-side tool access. Attacker… Update	CWE-862 Missing Authorization	CVE-2026-41378	2026-05-2 00:51	2026-04-29	Show	GitHub Exploit DB Packet Storm