Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2761 9 緊急
Network 		craftycontrol crafty controller craftycontrolのcrafty controllerにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-5652 2026-04-30 12:24 2026-04-21 Show GitHub Exploit DB Packet Storm
2762 7.5 重要
Network 		HashiCorp Vault HashiCorpのVaultにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-5807 2026-04-30 12:24 2026-04-17 Show GitHub Exploit DB Packet Storm
2763 7.1 重要
Local 		radare radare2 radareのradare2におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-6940 2026-04-30 12:24 2026-04-23 Show GitHub Exploit DB Packet Storm
2764 7.8 重要
Local 		radare radare2 radareのradare2における複数の脆弱性 CWE-22
CWE-59
CVE-2026-6941 2026-04-30 12:24 2026-04-23 Show GitHub Exploit DB Packet Storm
2765 7.5 重要
Network 		Sgbett BSV Ruby SDK (bsv-sdk) SgbettのBSV Ruby SDK (bsv-sdk)における例外的な状態のチェックに関する脆弱性 CWE-754
例外的な状態における不適切なチェック 		CVE-2026-40069 2026-04-30 12:18 2026-04-9 Show GitHub Exploit DB Packet Storm
2766 5.3 警告
Network 		SenseLive X3500 Firmware SenseLiveのX3500 Firmwareにおける重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2026-40431 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
2767 9.8 緊急
Network 		SenseLive X3500 Firmware SenseLiveのX3500 Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-40620 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
2768 8.1 重要
Network 		SenseLive X3500 Firmware SenseLiveのX3500 Firmwareにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-40623 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
2769 9.8 緊急
Network 		SenseLive X3500 Firmware SenseLiveのX3500 Firmwareにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性 CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-40630 2026-04-30 12:18 2026-04-24 Show GitHub Exploit DB Packet Storm
2770 5.3 警告
Network 		opentelemetry opentelemetry
OpenTelemetry.Extensions.Propagators
Opentelemetry.api 		opentelemetryのOpentelemetry.api等の複数製品における過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-40894 2026-04-30 12:18 2026-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347461 - squid squid Buffer overflows in Squid before 2.4.STABLE6 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code (1) via the MSNT auth helper (msnt_auth) when using denyus… NVD-CWE-Other
CVE-2002-0713 2016-10-18 11:21 2002-07-26 Show GitHub Exploit DB Packet Storm
347462 - squid squid FTP proxy in Squid before 2.4.STABLE6 does not compare the IP addresses of control and data connections with the FTP server, which allows remote attackers to bypass firewall rules or spoof FTP server… NVD-CWE-Other
CVE-2002-0714 2016-10-18 11:21 2002-07-26 Show GitHub Exploit DB Packet Storm
347463 - squid squid Vulnerability in Squid before 2.4.STABLE6 related to proxy authentication credentials may allow remote web sites to obtain the user's proxy login and password. NVD-CWE-Other
CVE-2002-0715 2016-10-18 11:21 2002-07-26 Show GitHub Exploit DB Packet Storm
347464 - sco openserver Format string vulnerability in crontab for SCO OpenServer 5.0.5 and 5.0.6 allows local users to gain privileges via format string specifiers in the file name argument. NVD-CWE-Other
CVE-2002-0716 2016-10-18 11:21 2002-07-26 Show GitHub Exploit DB Packet Storm
347465 - php php PHP 4.2.0 and 4.2.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an HTTP POST request with certain arguments in a multipart/form-data form, which gener… NVD-CWE-Other
CVE-2002-0717 2016-10-18 11:21 2002-07-26 Show GitHub Exploit DB Packet Storm
347466 - microsoft sql_server Microsoft SQL Server 2000 allows remote attackers to cause a denial of service via a malformed 0x08 packet that is missing a colon separator. NVD-CWE-Other
CVE-2002-0729 2016-10-18 11:21 2002-08-12 Show GitHub Exploit DB Packet Storm
347467 - c-note
padl_software 		squid_auth_ldap
nss_ldap
pam_ldap 		Format string vulnerability in the logging() function in C-Note Squid LDAP authentication module (squid_auth_LDAP) 2.0.2 and earlier allows remote attackers to cause a denial of service and possibly … NVD-CWE-Other
CVE-2002-0735 2016-10-18 11:21 2002-08-12 Show GitHub Exploit DB Packet Storm
347468 - postgresql postgresql The multibyte support in PostgreSQL 6.5.x with SQL_ASCII encoding consumes an extra character when processing a character that cannot be converted, which could remove an escape character from the que… NVD-CWE-Other
CVE-2002-0802 2016-10-18 11:21 2002-08-12 Show GitHub Exploit DB Packet Storm
347469 - lotus domino htcgibin.exe in Lotus Domino server 5.0.9a and earlier allows remote attackers to determine the physical pathname for the server via requests that contain certain MS-DOS device names such as com5, su… NVD-CWE-Other
CVE-2002-0407 2016-10-18 11:20 2002-07-26 Show GitHub Exploit DB Packet Storm
347470 - lotus domino htcgibin.exe in Lotus Domino server 5.0.9a and earlier, when configured with the NoBanner setting, allows remote attackers to determine the version number of the server via a request that generates a… NVD-CWE-Other
CVE-2002-0408 2016-10-18 11:20 2002-07-26 Show GitHub Exploit DB Packet Storm