Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250451 6.4 警告 マイクロソフト - Microsoft Windows Server 2008 における無効なドメイン名の継続的な名前解決を可能にされる脆弱性 CWE-Other
その他 		CVE-2012-1194 2012-02-21 16:25 2012-02-17 Show GitHub Exploit DB Packet Storm
250452 6.4 警告 PowerDNS - PowerDNS における無効なドメイン名の継続的な名前解決を可能にされる脆弱性 CWE-DesignError
CVE-2012-1193 2012-02-21 16:24 2012-02-17 Show GitHub Exploit DB Packet Storm
250453 6.4 警告 Stichting NLnet Labs - Unbound における無効なドメイン名の継続的な名前解決を可能にされる脆弱性 CWE-DesignError
CVE-2012-1192 2012-02-21 16:22 2012-02-17 Show GitHub Exploit DB Packet Storm
250454 6.4 警告 Daniel J. Bernstein - Daniel J. Bernstein djbdns における無効なドメイン名の継続的な名前解決を可能にされる脆弱性 CWE-20
CWE-DesignError
CVE-2012-1191 2012-02-21 16:20 2012-02-17 Show GitHub Exploit DB Packet Storm
250455 5 警告 PowerDNS - PowerDNS Authoritative Server の common_startup.cc におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0206 2012-02-21 15:50 2012-01-10 Show GitHub Exploit DB Packet Storm
250456 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバにおける権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0154 2012-02-20 18:30 2012-02-14 Show GitHub Exploit DB Packet Storm
250457 7.2 危険 マイクロソフト - Microsoft Windows の afd.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0148 2012-02-20 18:28 2012-02-14 Show GitHub Exploit DB Packet Storm
250458 7.2 危険 マイクロソフト - Microsoft Windows Server 2003 の afd.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0149 2012-02-20 18:27 2012-02-14 Show GitHub Exploit DB Packet Storm
250459 4.3 警告 マイクロソフト - Microsoft Internet Explorer 6 から 9 におけるコンテンツを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2012-0010 2012-02-20 18:24 2012-02-14 Show GitHub Exploit DB Packet Storm
250460 9.3 危険 マイクロソフト - Microsoft Internet Explorer 7 から 9 における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0011 2012-02-20 18:22 2012-02-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2281 5.3 MEDIUM
Local 		- - The socket connection handler in aswArPot.sys in the Avast and AVG Windows Anti Rootkit driver before 22.1 allows local attackers to execute arbitrary code in kernel mode or cause a denial of service… CWE-400
 Uncontrolled Resource Consumption 		CVE-2022-26523 2026-05-9 01:02 2026-05-8 Show GitHub Exploit DB Packet Storm
2282 6.5 MEDIUM
Network 		- - Nokia Broadcast Message Center (BMC) before 13.1 allows an unauthenticated remote attacker to do OS command injection as root via shell metacharacters in the Log Scanner Search Pattern field. CWE-78
OS Command  		CVE-2022-45899 2026-05-9 01:02 2026-05-8 Show GitHub Exploit DB Packet Storm
2283 5.8 MEDIUM
Network 		- - solidtime is an open-source time-tracking app. In version 0.12.0, the PUT /api/v1/organizations/{organization}/time-entries/{timeEntry} API accepts a route-bound timeEntry from another organization w… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-42279 2026-05-9 01:02 2026-05-8 Show GitHub Exploit DB Packet Storm
2284 7.5 HIGH
Network 		- - Mikrotik RouterOS (x86) 6.40.5 through 6.49.10 (fixed in 7) allows a remote attacker to cause a denial of service (device crash) via crafted packet data to the SMB service on TCP port 445. CWE-400
 Uncontrolled Resource Consumption 		CVE-2024-27686 2026-05-9 01:02 2026-05-8 Show GitHub Exploit DB Packet Storm
2285 6.3 MEDIUM
Network 		- - /cgi-bin/time.cgi in Atlona AT-OME-MS42 Matrix Switcher 1.1.2 allow remote authenticated users to execute arbitrary commands as root via a POST request that carries a serverName parameter. CWE-77
Command Injection 		CVE-2024-30167 2026-05-9 01:02 2026-05-8 Show GitHub Exploit DB Packet Storm
2286 7.3 HIGH
Network 		- - An issue was discovered in Control Web Panel (CWP) before 0.9.8.1209. User input passed via the "key" GET parameter to /admin/index.php (when the "api" parameter is set) is not properly sanitized bef… CWE-78
OS Command  		CVE-2025-67888 2026-05-9 01:02 2026-05-8 Show GitHub Exploit DB Packet Storm
2287 7.5 HIGH
Network 		coredns.io coredns CoreDNS is a DNS server that chains plugins. In versions prior to 1.14.3, the tsig plugin can be bypassed on non-plain-DNS transports (DoT, DoH, DoH3, DoQ, and gRPC) because it trusts the transport w… CWE-303
 Incorrect Implementation of Authentication Algorithm 		CVE-2026-33190 2026-05-9 01:01 2026-05-6 Show GitHub Exploit DB Packet Storm
2288 7.5 HIGH
Network 		coredns.io coredns CoreDNS is a DNS server that chains plugins. In versions prior to 1.14.3, the transfer plugin can select the wrong ACL stanza when both a parent zone and a more-specific subzone are configured. The l… CWE-863
 Incorrect Authorization 		CVE-2026-33489 2026-05-9 01:00 2026-05-6 Show GitHub Exploit DB Packet Storm
2289 9.8 CRITICAL
Network 		coredns.io coredns CoreDNS is a DNS server written in Go. In versions prior to 1.14.3, the gRPC, QUIC, DoH, and DoH3 transport implementations incorrectly handle TSIG authentication. For gRPC and QUIC, the server check… CWE-287
Improper Authentication 		CVE-2026-35579 2026-05-9 00:58 2026-05-6 Show GitHub Exploit DB Packet Storm
2290 6.1 MEDIUM
Network 		- - A Cross Site Scripting vulnerability in Alkacon OpenCms before 10.5.1 exists via cmis-online/type. CWE-79
Cross-site Scripting 		CVE-2023-42343 2026-05-9 00:58 2026-05-8 Show GitHub Exploit DB Packet Storm