Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2781 10 緊急
Network 		マイクロソフト Azure AI Foundry Azure AI Foundry の特権昇格の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35435 2026-05-11 11:10 2026-05-7 Show GitHub Exploit DB Packet Storm
2782 9.8 緊急
Network 		coredns.io CoreDNS The CoreDNS AuthorsのCoreDNSにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-35579 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
2783 9.8 緊急
Network 		Kestra Kestra KestraにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-38428 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
2784 7.2 重要
Network 		Gotenberg, Inc. Gotenberg TheCodingMachineのGotenbergにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-39383 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
2785 8.8 重要
Network 		Apache Software Foundation Apache NiFi Apache Software FoundationのApache NiFiにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-39816 2026-05-11 11:10 2026-05-8 Show GitHub Exploit DB Packet Storm
2786 8.2 重要
Network 		Quarkus Quarkus Quarkusにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-39852 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
2787 4.8 警告
Network 		Linux Containers Incus Linux ContainersのIncusにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-40243 2026-05-11 11:10 2026-05-6 Show GitHub Exploit DB Packet Storm
2788 7.5 重要
Network 		Gotenberg, Inc. Gotenberg TheCodingMachineのGotenbergにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-40280 2026-05-11 11:10 2026-05-5 Show GitHub Exploit DB Packet Storm
2789 8.8 重要
Network 		Math.js Math.js Math.jsにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性 CWE-915
動的に決定されたオブジェクト属性の不適切に制御された変更 		CVE-2026-41139 2026-05-11 11:10 2026-05-7 Show GitHub Exploit DB Packet Storm
2790 8.8 重要
Network 		OpenEXR OpenEXR OpenEXRにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-41142 2026-05-11 11:10 2026-05-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345901 - tftpd32 tftpd32 Buffer overflow in tftpd of TFTP32 2.21 and earlier allows remote attackers to execute arbitrary code via a long filename argument. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2002-2226 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345902 - ikonboard ikonboard Cross-site scripting (XSS) vulnerability in Ikonboard 3.1.1 allows remote attackers to inject arbitrary web script or HTML via (1) a javascript: URL in a photo URL or (2) an X-Forwarded-For: header. CWE-79
Cross-site Scripting 		CVE-2002-2231 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345903 - mollensoft_software enceladus_server_suite Directory traversal vulnerability in Enceladus Server Suite 3.9 allows remote attackers to list arbitrary directories and possibly cause a denial of service via "@" (at) characters in a CD (CWD) comm… CWE-22
Path Traversal 		CVE-2002-2233 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345904 - tftp tftp_server tftp32 TFTP server 2.21 and earlier allows remote attackers to cause a denial of service via a GET request with a DOS device name such as com1 or aux. CWE-20
 Improper Input Validation  		CVE-2002-2237 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345905 - kunani kunani_odbc_ftp_server Directory traversal vulnerability in the Kunani ODBC FTP Server 1.0.10 allows remote attackers to read arbitrary files via a "..\" (dot dot backslash) in a GET request. CWE-22
Path Traversal 		CVE-2002-2238 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345906 - cisco ios The Cisco Optical Service Module (OSM) for the Catalyst 6500 and 7600 series running Cisco IOS 12.1(8)E through 12.1(13.4)E allows remote attackers to cause a denial of service (hang) via a malformed… CWE-20
 Improper Input Validation  		CVE-2002-2239 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345907 - myserver myserver Directory traversal vulnerability in MyServer 0.11 and 0.2 allows remote attackers to read arbitrary files via a ".." (dot dot) in an HTTP GET request. CWE-22
Path Traversal 		CVE-2002-2240 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345908 - deerfield visnetic_website Buffer overflow in httpd32.exe in Deerfield VisNetic WebSite before 3.5.15 allows remote attackers to cause a denial of service (crash) via a long HTTP OPTIONS request. CWE-399
 Resource Management Errors 		CVE-2002-2241 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345909 - kismac kismac The Apple Package Manager in KisMAC 0.02a and earlier modifies file permissions of sensitive files after installation, which could allow attackers to conduct unauthorized activities on those files. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2002-2242 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345910 - akfingerd akfingerd Akfingerd 0.5 and possibly earlier versions only allows one connection at a time and does not time out connections, which allows remote attackers to cause a denial of service (refused connections) by… NVD-CWE-Other
CVE-2002-2243 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm