Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2791 7.5 重要
Network 		Gardyn Gardin API GardynのGardin APIにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-32646 2026-04-24 11:36 2026-04-3 Show GitHub Exploit DB Packet Storm
2792 5.3 警告
Network 		Gardyn Gardin API GardynのGardin APIにおけるアクティブ状態のデバッグコードに関する脆弱性 CWE-489
間違ったセッションへのデータの漏洩 		CVE-2026-32662 2026-04-24 11:36 2026-04-3 Show GitHub Exploit DB Packet Storm
2793 9.1 緊急
Network 		Apache Software Foundation Apache Kafka Apache Software FoundationのApache Kafkaにおける入力で指定されたインデックス、位置、またはオフセットの不適切な検証に関する脆弱性 CWE-1285
入力で指定されたインデックス、位置、またはオフセットの不適切な検証 		CVE-2026-33557 2026-04-24 11:36 2026-04-20 Show GitHub Exploit DB Packet Storm
2794 5.3 警告
Network 		Apache Software Foundation Apache Kafka Apache Software FoundationのApache Kafkaにおけるサーバログファイルからの情報漏えいに関する脆弱性 CWE-533
サーバログファイルからの情報漏えい 		CVE-2026-33558 2026-04-24 11:35 2026-04-20 Show GitHub Exploit DB Packet Storm
2795 8.8 重要
Network 		Artica ST Pandora FMS Artica STのPandora FMSにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-34186 2026-04-24 11:35 2026-04-13 Show GitHub Exploit DB Packet Storm
2796 7.2 重要
Network 		Artica ST Pandora FMS Artica STのPandora FMSにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-34188 2026-04-24 11:35 2026-04-13 Show GitHub Exploit DB Packet Storm
2797 9.8 緊急
Network 		Vinyl Cache
Varnish Software		 varnish enterprise
Vinyl Cache 		Varnish Software等の複数ベンダの製品における動作順序 (正規化前の検証) に関する脆弱性 CWE-180
不適切な動作順序 (正規化前の検証) 		CVE-2026-34475 2026-04-24 11:35 2026-03-27 Show GitHub Exploit DB Packet Storm
2798 9.8 緊急
Network 		GNU Project GNU C Library GNU ProjectのGNU C Libraryにおける複数の脆弱性 CWE-122
CWE-787
CVE-2026-5450 2026-04-24 11:35 2026-04-20 Show GitHub Exploit DB Packet Storm
2799 7.2 重要
Network 		LibreNMS LibreNMS LibreNMSにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-6204 2026-04-24 11:35 2026-04-13 Show GitHub Exploit DB Packet Storm
2800 10 緊急
Network 		ATRODO (Jon Gentle) Net::Dropbear ATRODO (Jon Gentle)のNet::Dropbearにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2016-6129
CVE-2018-12437
CVE-2025-15638 		2026-04-24 11:35 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
315091 - - - Rejected reason: Erroneous assignment - CVE-2024-1444 2024-02-17 02:15 2024-02-17 Show GitHub Exploit DB Packet Storm
315092 7.5 HIGH
Network 		ethereal
debian 		ethereal
debian_linux 		SMB dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via malformed packets that cause Ethereal to dereference a NULL poin… CWE-476
 NULL Pointer Dereference 		CVE-2002-0401 2024-02-17 02:07 2002-06-18 Show GitHub Exploit DB Packet Storm
315093 7.5 HIGH
Network 		linux linux_kernel xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the name_index fields when sharing xattr blocks, which could prevent default ACLs from being applied. CWE-697
 Incorrect Comparison 		CVE-2005-2801 2024-02-17 01:53 2005-09-7 Show GitHub Exploit DB Packet Storm
315094 9.8 CRITICAL
Network 		freebsd freebsd TCP Wrappers (tcp_wrappers) in FreeBSD 4.1.1 through 4.3 with the PARANOID ACL option enabled does not properly check the result of a reverse DNS lookup, which could allow remote attackers to bypass … CWE-863
 Incorrect Authorization 		CVE-2001-1155 2024-02-17 01:51 2001-08-23 Show GitHub Exploit DB Packet Storm
315095 5.5 MEDIUM
Local 		openbsd openbsd The uipc system calls (uipc_syscalls.c) in OpenBSD 2.9 and 3.0 provide user mode return instead of versus rval kernel mode values to the fdrelease function, which allows local users to cause a denial… CWE-476
 NULL Pointer Dereference 		CVE-2001-1559 2024-02-16 23:16 2001-12-31 Show GitHub Exploit DB Packet Storm
315096 7.1 HIGH
Local 		ibm db2_universal_database Shared memory sections and events in IBM DB2 8.1 have default permissions of read and write for the Everyone group, which allows local users to gain unauthorized access, gain sensitive information, s… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2005-4868 2024-02-16 23:10 2005-12-31 Show GitHub Exploit DB Packet Storm
315097 7.5 HIGH
Network 		microsoft windows_xp
windows_2000
windows_server_2003 		The Negotiate Security Software Provider (SSP) interface in Windows 2000, Windows XP, and Windows Server 2003, allows remote attackers to cause a denial of service (crash from null dereference) or ex… CWE-476
 NULL Pointer Dereference 		CVE-2004-0119 2024-02-16 06:44 2004-06-1 Show GitHub Exploit DB Packet Storm
315098 7.5 HIGH
Network 		realnetworks helix_universal_server RealNetworks Helix Universal Server 9.0.1 and 9.0.2 allows remote attackers to cause a denial of service (crash) via malformed requests that trigger a null dereference, as demonstrated using (1) GET_… CWE-476
 NULL Pointer Dereference 		CVE-2004-0389 2024-02-16 06:42 2004-06-1 Show GitHub Exploit DB Packet Storm
315099 9.8 CRITICAL
Network 		infodrom cfingerd Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function. CWE-193
 Off-by-one Error 		CVE-2001-0609 2024-02-16 06:29 2001-08-2 Show GitHub Exploit DB Packet Storm
315100 7.5 HIGH
Network 		microsoft internet_information_services Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote attackers to view the source code for files with extensions containing with one additional character after .html,… CWE-193
 Off-by-one Error 		CVE-2002-1745 2024-02-16 06:28 2002-12-31 Show GitHub Exploit DB Packet Storm