Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2511 9.1 緊急
Network 		PowerDNS dnsdist PowerDNSのdnsdistにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-33598 2026-04-27 10:50 2026-04-22 Show GitHub Exploit DB Packet Storm
2512 8.1 重要
Adjacent 		PowerDNS dnsdist PowerDNSのdnsdistにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-33599 2026-04-27 10:50 2026-04-22 Show GitHub Exploit DB Packet Storm
2513 8.2 重要
Network 		PowerDNS dnsdist PowerDNSのdnsdistにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-33602 2026-04-27 10:50 2026-04-22 Show GitHub Exploit DB Packet Storm
2514 10 緊急
Network 		Flatpak Flatpak FlatpakにおけるUNIX Symbolic Link のフォローに関する脆弱性 CWE-61
UNIX Symbolic Link のフォロー 		CVE-2026-34078 2026-04-27 10:50 2026-04-7 Show GitHub Exploit DB Packet Storm
2515 9.1 緊急
Network 		- オラクルのEnterprise Manager Base Platformにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-34279 2026-04-27 10:50 2026-04-21 Show GitHub Exploit DB Packet Storm
2516 4.7 警告
Network 		オラクル Oracle Applications Framework オラクルのOracle Applications Frameworkにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-34298 2026-04-27 10:50 2026-04-21 Show GitHub Exploit DB Packet Storm
2517 6.5 警告
Network 		オラクル PeopleSoft Enterprise FIN Maintenance Management オラクルのPeopleSoft Enterprise FIN Maintenance Managementにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-34299 2026-04-27 10:49 2026-04-21 Show GitHub Exploit DB Packet Storm
2518 6.5 警告
Network 		オラクル PeopleSoft Enterprise FIN Maintenance Management オラクルのPeopleSoft Enterprise FIN Maintenance Managementにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-34301 2026-04-27 10:49 2026-04-21 Show GitHub Exploit DB Packet Storm
2519 5.5 警告
Network 		オラクル Oracle Workflow オラクルのOracle Workflowにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-34302 2026-04-27 10:49 2026-04-21 Show GitHub Exploit DB Packet Storm
2520 7.5 重要
Network 		オラクル Oracle WebLogic Server オラクルのOracle WebLogic Serverにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-34305 2026-04-27 10:49 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
315711 9.8 CRITICAL
Network 		mit
apple
debian 		kerberos_5
mac_os_x_server
mac_os_x
debian_linux 		Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions. CWE-415
 Double Free 		CVE-2005-1689 2024-02-3 00:24 2005-07-18 Show GitHub Exploit DB Packet Storm
315712 7.8 HIGH
Local 		microsoft outlook
internet_explorer
windows_xp
windows_server_2003
windows_98
windows_me
windows_98se
windows_nt 		Double free vulnerability in mshtml.dll for certain versions of Internet Explorer 6.x allows remote attackers to cause a denial of service (application crash) via a malformed GIF image. CWE-415
 Double Free 		CVE-2003-1048 2024-02-3 00:23 2004-07-27 Show GitHub Exploit DB Packet Storm
315713 9.8 CRITICAL
Network 		openssl openssl Double free vulnerability in OpenSSL 0.9.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an SSL client certificate with a certain invalid ASN.1 … CWE-415
 Double Free 		CVE-2003-0545 2024-02-3 00:23 2003-11-17 Show GitHub Exploit DB Packet Storm
315714 7.5 HIGH
Network 		gnome gtk Double free vulnerability in gtk 2 (gtk2) before 2.2.4 allows remote attackers to cause a denial of service (crash) via a crafted BMP image. CWE-415
 Double Free 		CVE-2005-0891 2024-02-3 00:22 2005-05-2 Show GitHub Exploit DB Packet Storm
315715 9.8 CRITICAL
Network 		zlib zlib The decompression algorithm in zlib 1.1.3 and earlier, as used in many different utilities and packages, causes inflateEnd to release certain memory more than once (a "double free"), which may allow … CWE-415
 Double Free 		CVE-2002-0059 2024-02-3 00:16 2002-03-15 Show GitHub Exploit DB Packet Storm
315716 - linux linux_kernel Memory leak in the request_key_auth_destroy function in request_key_auth in Linux kernel 2.6.10 up to 2.6.13 allows local users to cause a denial of service (memory consumption) via a large number of… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2005-3119 2024-02-3 00:13 2005-10-12 Show GitHub Exploit DB Packet Storm
315717 - mit
redhat
mandrakesoft 		kerberos_ftp_client
linux
mandrake_linux
mandrake_multi_network_firewall 		Kerberos FTP client allows remote FTP sites to execute arbitrary code via a pipe (|) character in a filename that is retrieved by the client. CWE-78
OS Command  		CVE-2003-0041 2024-02-3 00:13 2003-02-19 Show GitHub Exploit DB Packet Storm
315718 - apple terminal Terminal 1.3 in Apple Mac OS X 10.2 allows remote attackers to execute arbitrary commands via shell metacharacters in a telnet:// link, which is executed by Terminal.app window. CWE-78
OS Command  		CVE-2002-1898 2024-02-3 00:13 2002-12-31 Show GitHub Exploit DB Packet Storm
315719 9.8 CRITICAL
Network 		gaim_project gaim Buffer overflow in the AIM and ICQ module in Gaim before 1.5.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an away message with a … CWE-131
Incorrect Calculation of Buffer Size 		CVE-2005-2103 2024-02-3 00:02 2005-08-16 Show GitHub Exploit DB Packet Storm
315720 6.5 MEDIUM
Network 		xmlsoft libxml2 libxml2, possibly before 2.5.0, does not properly detect recursion during entity expansion, which allows context-dependent attackers to cause a denial of service (memory and CPU consumption) via a cr… CWE-776
XML Entity Expansion 		CVE-2003-1564 2024-02-2 23:10 2003-12-31 Show GitHub Exploit DB Packet Storm