Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 4, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 2971 | 9.1 |
緊急
Network |
Apache Software Foundation | Apache Wicket | Apache Software FoundationのApache Wicketにおけるセッションの固定化の脆弱性 |
CWE-384 CWE-384 |
CVE-2026-40010 | 2026-05-8 12:23 | 2026-05-6 | Show | GitHub Exploit DB Packet Storm |
| 2972 | 9.1 |
緊急
Network |
Apache Software Foundation | Apache OpenNLP | Apache Software FoundationのApache OpenNLPにおけるXML 外部エンティティの脆弱性 |
CWE-611
XML 外部エンティティ参照の不適切な制限 |
CVE-2026-40682 | 2026-05-8 12:23 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 2973 | 9.8 |
緊急
Network |
Apache Software Foundation | Apache OpenNLP | Apache Software FoundationのApache OpenNLPにおけるクラスまたはコードを選択する外部から制御された入力の使用に関する脆弱性 |
CWE-470
クラスまたはコードを選択する外部から制御された入力の使用 |
CVE-2026-42027 | 2026-05-8 12:23 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 2974 | 6.5 |
警告
Network |
nginxui | Nginx UI | Nginx UI TeamのNginx UIにおける複数の脆弱性 |
CWE-200 CWE-863 |
CVE-2026-42220 | 2026-05-8 12:23 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 2975 | 9.8 |
緊急
Network |
nginxui | Nginx UI | Nginx UI TeamのNginx UIにおける重要な機能に対する認証の欠如に関する脆弱性 |
CWE-306
重要な機能に対する認証の欠如 解説 |
CVE-2026-42221 | 2026-05-8 12:23 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 2976 | 9.8 |
緊急
Network |
nginxui | Nginx UI | Nginx UI TeamのNginx UIにおける複数の脆弱性 |
CWE-284 CWE-306 |
CVE-2026-42222 | 2026-05-8 12:23 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 2977 | 6.5 |
警告
Network |
nginxui | Nginx UI | Nginx UI TeamのNginx UIにおける情報漏えいに関する脆弱性 |
CWE-200
情報漏えい |
CVE-2026-42223 | 2026-05-8 12:23 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 2978 | 7.5 |
重要
Network |
n8n | n8n | n8nにおける認証の欠如に関する脆弱性 |
CWE-862
認証の欠如 |
CVE-2026-42226 | 2026-05-8 12:23 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 2979 | 6.5 |
警告
Network |
n8n | n8n | n8nにおけるユーザ制御の鍵による認証回避に関する脆弱性 |
CWE-639
ユーザ制御の鍵による認証回避 |
CVE-2026-42227 | 2026-05-8 12:23 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 2980 | 6.5 |
警告
Network |
n8n | n8n | n8nにおける認証の欠如に関する脆弱性 |
CWE-862
認証の欠如 |
CVE-2026-42228 | 2026-05-8 12:22 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 4, 2026, 4:17 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 312731 | 7.8 |
HIGH
Local |
autodesk |
autocad autocad_advance_steel autocad_architecture autocad_civil_3d autocad_electrical autocad_mechanical autocad_mep autocad_plant_3d dwg_trueview autocad_lt |
A maliciously crafted DWG file when parsed in ACAD.exe through Autodesk AutoCAD can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write … |
CWE-787
Out-of-bounds Write |
CVE-2024-9489 | 2024-11-2 01:27 | 2024-10-30 | Show | GitHub Exploit DB Packet Storm |
| 312732 | 7.8 |
HIGH
Local |
autodesk |
autocad autocad_advance_steel autocad_architecture autocad_civil_3d autocad_electrical autocad_mechanical autocad_mep autocad_plant_3d dwg_trueview autocad_lt |
A maliciously crafted DXF file when parsed in acdb25.dll through Autodesk AutoCAD can force to access a variable prior to initialization. A malicious actor can leverage this vulnerability to cause a … |
CWE-908
Use of Uninitialized Resource |
CVE-2024-8896 | 2024-11-2 01:27 | 2024-10-30 | Show | GitHub Exploit DB Packet Storm |
| 312733 | 7.8 |
HIGH
Local |
autodesk |
autocad autocad_advance_steel autocad_architecture autocad_civil_3d autocad_electrical autocad_mechanical autocad_mep autocad_plant_3d dwg_trueview autocad_lt |
A maliciously crafted DWG file, when parsed through Autodesk AutoCAD and certain AutoCAD-based products, can force a Stack-based Buffer Overflow. A malicious actor can leverage this vulnerability to … |
CWE-787
Out-of-bounds Write |
CVE-2024-7992 | 2024-11-2 01:26 | 2024-10-30 | Show | GitHub Exploit DB Packet Storm |
| 312734 | 7.8 |
HIGH
Local |
autodesk |
autocad autocad_advance_steel autocad_architecture autocad_civil_3d autocad_electrical autocad_mechanical autocad_mep autocad_plant_3d dwg_trueview autocad_lt |
A maliciously crafted DWG file, when parsed through Autodesk AutoCAD and certain AutoCAD-based products, can force an Out-of-Bounds Write. A malicious actor can leverage this vulnerability to cause a… |
CWE-787
Out-of-bounds Write |
CVE-2024-7991 | 2024-11-2 01:26 | 2024-10-30 | Show | GitHub Exploit DB Packet Storm |
| 312735 | 7.8 |
HIGH
Local |
autodesk |
autocad autocad_advance_steel autocad_architecture autocad_civil_3d autocad_electrical autocad_mechanical autocad_mep autocad_plant_3d |
A maliciously crafted CATPART file when parsed in AcTranslators.exe through Autodesk AutoCAD can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to cause a… |
CWE-787
Out-of-bounds Write |
CVE-2024-8592 | 2024-11-2 01:22 | 2024-10-30 | Show | GitHub Exploit DB Packet Storm |
| 312736 | 7.8 |
HIGH
Local |
autodesk |
autocad autocad_advance_steel autocad_architecture autocad_civil_3d autocad_electrical autocad_mechanical autocad_mep autocad_plant_3d |
A maliciously crafted MODEL file when parsed in libodxdll.dll through Autodesk AutoCAD can force a Use-After-Free vulnerability. A malicious actor can leverage this vulnerability to cause a crash, wr… |
CWE-416
Use After Free |
CVE-2024-8595 | 2024-11-2 01:18 | 2024-10-30 | Show | GitHub Exploit DB Packet Storm |
| 312737 | 7.8 |
HIGH
Local |
autodesk |
autocad autocad_advance_steel autocad_architecture autocad_civil_3d autocad_electrical autocad_mechanical autocad_mep autocad_plant_3d |
A maliciously crafted MODEL file when parsed in libodxdll.dll through Autodesk AutoCAD can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a cras… |
CWE-787
Out-of-bounds Write |
CVE-2024-8594 | 2024-11-2 01:18 | 2024-10-30 | Show | GitHub Exploit DB Packet Storm |
| 312738 | 7.8 |
HIGH
Local |
autodesk |
autocad autocad_advance_steel autocad_architecture autocad_civil_3d autocad_electrical autocad_mechanical autocad_mep autocad_plant_3d |
A maliciously crafted CATPART file when parsed in ASMKERN230A.dll through Autodesk AutoCAD can force a Out-of-Bounds Write vulnerability. A malicious actor can leverage this vulnerability to cause a… |
CWE-787
Out-of-bounds Write |
CVE-2024-8593 | 2024-11-2 01:18 | 2024-10-30 | Show | GitHub Exploit DB Packet Storm |
| 312739 | 7.8 |
HIGH
Local |
autodesk |
autocad autocad_advance_steel autocad_architecture autocad_civil_3d autocad_electrical autocad_mechanical autocad_mep autocad_plant_3d |
A maliciously crafted 3DM file when parsed in AcTranslators.exe through Autodesk AutoCAD can force a Heap-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to ca… |
CWE-787
Out-of-bounds Write |
CVE-2024-8591 | 2024-11-2 01:18 | 2024-10-30 | Show | GitHub Exploit DB Packet Storm |
| 312740 | 7.8 |
HIGH
Local |
autodesk |
autocad autocad_advance_steel autocad_architecture autocad_civil_3d autocad_electrical autocad_mechanical autocad_mep autocad_plant_3d |
A maliciously crafted 3DM file when parsed in atf_api.dll through Autodesk AutoCAD can force a Use-After-Free vulnerability. A malicious actor can leverage this vulnerability to cause a crash, write… |
CWE-416
Use After Free |
CVE-2024-8590 | 2024-11-2 01:18 | 2024-10-30 | Show | GitHub Exploit DB Packet Storm |