Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2761 6.1 警告
Local 		VMware Spring AI VMwareのSpring AIにおける安全でない一時ファイルに関する脆弱性 CWE-377
安全でない一時ファイル 		CVE-2026-40979 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
2762 6.5 警告
Network 		VMware Spring AI VMwareのSpring AIにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-40980 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
2763 5.3 警告
Local 		OpenClaw OpenClaw OpenClawにおける不完全なブラックリストに関する脆弱性 CWE-184
不完全なブラックリスト 		CVE-2026-41332 2026-05-1 10:47 2026-04-23 Show GitHub Exploit DB Packet Storm
2764 4.3 警告
Network 		OpenClaw OpenClaw OpenClawにおける認可されていない制御領域への重要情報の漏えいに関する脆弱性 CWE-497
認可されていない制御領域への重要情報の漏えい 		CVE-2026-41339 2026-05-1 10:47 2026-04-23 Show GitHub Exploit DB Packet Storm
2765 5.3 警告
Network 		OpenClaw OpenClaw OpenClawにおける不適切な動作順序(早期増幅)に関する脆弱性 CWE-408
不適切な動作順序(早期増幅) 		CVE-2026-41374 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
2766 4.6 警告
Adjacent 		OpenClaw OpenClaw OpenClawにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-41398 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
2767 7.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-41399 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
2768 7.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-41400 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
2769 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおける誤って解決された名前や参照の使用に関する脆弱性 CWE-706
誤って解決された名前や参照の使用 		CVE-2026-41402 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
2770 9.8 緊急
Network 		Apache Software Foundation MINA Apache Software FoundationのMINAにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-41409 2026-05-1 10:46 2026-04-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
317471 5.5 MEDIUM
Local 		microsoft windows_xp
windows_2000
windows_2003_server 		The Server Message Block (SMB) driver (MRXSMB.SYS) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to cause a denial of service (hang) by calling the… CWE-667
 Improper Locking 		CVE-2006-2374 2024-02-16 05:22 2006-06-14 Show GitHub Exploit DB Packet Storm
317472 7.5 HIGH
Network 		lksctp
canonical 		stream_control_transmission_protocol
ubuntu_linux 		Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a denial of service (deadlock) via a large number of small messages to a receiver application that cannot process the messages quick… CWE-667
 Improper Locking 		CVE-2006-2275 2024-02-16 05:22 2006-05-10 Show GitHub Exploit DB Packet Storm
317473 5.5 MEDIUM
Local 		linux
debian 		linux_kernel
debian_linux 		The handle_stop_signal function in signal.c in Linux kernel 2.6.11 up to other versions before 2.6.13 and 2.6.12.6 allows local users to cause a denial of service (deadlock) by sending a SIGKILL to a… CWE-667
 Improper Locking 		CVE-2005-3847 2024-02-16 05:22 2005-11-27 Show GitHub Exploit DB Packet Storm
317474 4.7 MEDIUM
Local 		linux
debian
canonical 		linux_kernel
debian_linux
ubuntu_linux 		Race condition in Linux 2.6, when threads are sharing memory mapping via CLONE_VM (such as linuxthreads and vfork), might allow local users to cause a denial of service (deadlock) by triggering a cor… CWE-667
 Improper Locking 		CVE-2005-3106 2024-02-16 05:19 2005-09-30 Show GitHub Exploit DB Packet Storm
317475 5.5 MEDIUM
Local 		image_processing_project image_processing A design flaw in image processing software that modifies JPEG images might not modify the original EXIF thumbnail, which could lead to an information leak of potentially sensitive visual information … CWE-212
 Improper Removal of Sensitive Information Before Storage or Transfer 		CVE-2005-0406 2024-02-16 05:19 2005-02-14 Show GitHub Exploit DB Packet Storm
317476 3.3 LOW
Local 		heysoft eventsave\+
eventsave 		Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2 does not check whether the log file can be written to, which allows attackers to prevent events from being recorded by opening the log… CWE-667
 Improper Locking 		CVE-2002-1869 2024-02-16 05:19 2002-12-31 Show GitHub Exploit DB Packet Storm
317477 5.5 MEDIUM
Local 		zonelabs
checkpoint 		zonealarm
zonealarm_pro 		ZoneAlarm and ZoneAlarm Pro allows a local attacker to cause a denial of service by running a trojan to initialize a ZoneAlarm mutex object which prevents ZoneAlarm from starting. CWE-667
 Improper Locking 		CVE-2001-0682 2024-02-16 05:19 2001-08-29 Show GitHub Exploit DB Packet Storm
317478 - proftpd proftpd ProFTPD 1.2.x, including 1.2.8 and 1.2.10, responds in a different amount of time when a given username exists, which allows remote attackers to identify valid usernames by timing the server response. CWE-203
 Information Exposure Through Discrepancy 		CVE-2004-1602 2024-02-16 03:46 2004-10-15 Show GitHub Exploit DB Packet Storm
317479 - novell ichain Novell iChain 2.2 before Support Pack 1 uses a shorter timeout for a non-existent user than a valid user, which makes it easier for remote attackers to guess usernames and conduct brute force passwor… CWE-203
 Information Exposure Through Discrepancy 		CVE-2003-0637 2024-02-16 03:46 2003-08-27 Show GitHub Exploit DB Packet Storm
317480 - openbsd
openpkg
siemens 		openssh
openpkg
scalance_x204rna_ecc_firmware
scalance_x204rna_firmware 		OpenSSH-portable (OpenSSH) 3.6.1p1 and earlier with PAM support enabled immediately sends an error message when a user does not exist, which allows remote attackers to determine valid usernames via a… CWE-203
 Information Exposure Through Discrepancy 		CVE-2003-0190 2024-02-16 03:46 2003-05-12 Show GitHub Exploit DB Packet Storm