Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2881	5.4	警告 Network	オラクル	PeopleSoft Enterprise HCM Shared Components	オラクルのPeoplesoft Enterprise Hcm Shared Componentsにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-22019	2026-04-24 11:38	2026-04-21	Show	GitHub Exploit DB Packet Storm

2882	6.1	警告 Adjacent	Schneider Electric	PowerChute Serial Shutdown	Schneider Electric のPowerChute Serial Shutdownにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-2399	2026-04-24 11:38	2026-04-14	Show	GitHub Exploit DB Packet Storm

2883	4.3	警告 Network	Schneider Electric	PowerChute Serial Shutdown	Schneider Electric のPowerChute Serial ShutdownにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-2400	2026-04-24 11:38	2026-04-14	Show	GitHub Exploit DB Packet Storm

2884	5	警告 Local	Schneider Electric	PowerChute Serial Shutdown	Schneider Electric のPowerChute Serial Shutdownにおけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2026-2401	2026-04-24 11:38	2026-04-14	Show	GitHub Exploit DB Packet Storm

2885	5.3	警告 Network	Schneider Electric	PowerChute Serial Shutdown	Schneider Electric のPowerChute Serial Shutdownにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-2402	2026-04-24 11:38	2026-04-14	Show	GitHub Exploit DB Packet Storm

2886	4.3	警告 Network	Schneider Electric	PowerChute Serial Shutdown	Schneider Electric のPowerChute Serial Shutdownにおける入力で指定された数量の不適切な検証に関する脆弱性	CWE-1284 入力で指定された数量の不適切な検証	CVE-2026-2403	2026-04-24 11:38	2026-04-14	Show	GitHub Exploit DB Packet Storm

2887	5.3	警告 Network	Schneider Electric	PowerChute Serial Shutdown	Schneider Electric のPowerChute Serial Shutdownにおけるエンコードおよびエスケープに関する脆弱性	CWE-116 不適切なエンコード、または出力のエスケープ	CVE-2026-2404	2026-04-24 11:38	2026-04-14	Show	GitHub Exploit DB Packet Storm

2888	6.5	警告 Network	Schneider Electric	PowerChute Serial Shutdown	Schneider Electric のPowerChute Serial Shutdownにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-2405	2026-04-24 11:38	2026-04-14	Show	GitHub Exploit DB Packet Storm

2889	9.8	緊急 Network	OpenAEV	OpenAEV	OpenAEVにおけるパスワード管理機能に関する脆弱性	CWE-640 パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み	CVE-2026-24467	2026-04-24 11:38	2026-04-20	Show	GitHub Exploit DB Packet Storm

2890	7.5	重要 Network	Vexa AI, Inc.	Vexa	Vexa AI, Inc.のVexaにおける複数の脆弱性	CWE-306 CWE-862	CVE-2026-25058	2026-04-24 11:37	2026-04-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348851	-	allaire	spectra	The Allaire Spectra container editor preview tool does not properly enforce object security, which allows an attacker to conduct unauthorized activities via an object-method that is added to the cont…	NVD-CWE-Other	CVE-2000-0334	2008-09-11 04:04	2000-04-24	Show	GitHub Exploit DB Packet Storm

348852	-	gnu isc	glibc bind	The resolver in glibc 2.1.3 uses predictable IDs, which allows a local attacker to spoof DNS query results.	NVD-CWE-Other	CVE-2000-0335	2008-09-11 04:04	2000-05-3	Show	GitHub Exploit DB Packet Storm

348853	-	openldap mandrakesoft redhat turbolinux	openldap mandrake_linux linux turbolinux	Linux OpenLDAP server allows local users to modify arbitrary files via a symlink attack.	NVD-CWE-Other	CVE-2000-0336	2008-09-11 04:04	2000-04-21	Show	GitHub Exploit DB Packet Storm

348854	-	networkice	icecap_manager	A debugging feature in NetworkICE ICEcap 2.0.23 and earlier is enabled, which allows a remote attacker to bypass the weak authentication and post unencrypted events.	NVD-CWE-Other	CVE-2000-0350	2008-09-11 04:04	2000-05-17	Show	GitHub Exploit DB Packet Storm

348855	-	university_of_washington	pine	Pine 4.x allows a remote attacker to execute arbitrary commands via an index.html file which executes lynx and obtains a uudecoded file from a malicious web server, which is then executed by Pine.	NVD-CWE-Other	CVE-2000-0353	2008-09-11 04:04	1999-06-28	Show	GitHub Exploit DB Packet Storm

348856	-	bent_bagger redhat suse	pbpg linux suse_linux	pg and pb in SuSE pbpg 1.x package allows an attacker to read arbitrary files.	NVD-CWE-Other	CVE-2000-0355	2008-09-11 04:04	1999-08-21	Show	GitHub Exploit DB Packet Storm

348857	-	redhat	linux	Pluggable Authentication Modules (PAM) in Red Hat Linux 6.1 does not properly lock access to disabled NIS accounts.	NVD-CWE-Other	CVE-2000-0356	2008-09-11 04:04	1999-10-13	Show	GitHub Exploit DB Packet Storm

348858	-	redhat	linux	ORBit and esound in Red Hat Linux 6.1 do not use sufficiently random numbers, which allows local users to guess the authentication keys.	NVD-CWE-Other	CVE-2000-0357	2008-09-11 04:04	1999-12-3	Show	GitHub Exploit DB Packet Storm

348859	-	redhat	linux	ORBit and gnome-session in Red Hat Linux 6.1 allows remote attackers to crash a program.	NVD-CWE-Other	CVE-2000-0358	2008-09-11 04:04	1999-12-3	Show	GitHub Exploit DB Packet Storm

348860	-	acme_labs	thttpd	Buffer overflow in Trivial HTTP (THTTPd) allows remote attackers to cause a denial of service or execute arbitrary commands via a long If-Modified-Since header.	NVD-CWE-Other	CVE-2000-0359	2008-09-11 04:04	2000-10-20	Show	GitHub Exploit DB Packet Storm