Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 12:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3061	6.5	警告 Network	Fleet Device Management	fleet	Fleet Device Managementのfleetにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-26062	2026-05-20 13:21	2026-05-14	Show	GitHub Exploit DB Packet Storm

3062	9.8	緊急 Network	Fleet Device Management	fleet	Fleet Device ManagementのfleetにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-26191	2026-05-20 13:21	2026-05-14	Show	GitHub Exploit DB Packet Storm

3063	8.6	重要 Network	lfprojects	mlflow	lfprojectsのmlflowにおける根本の脆弱性による認証回避の脆弱性	CWE-305 根本の脆弱性による認証回避	CVE-2026-2652	2026-05-20 13:21	2026-05-15	Show	GitHub Exploit DB Packet Storm

3064	9.1	緊急 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品における余分なパラメータの不適切な処理に関する脆弱性	CWE-235 余分なパラメータの不適切な処理	CVE-2026-27851	2026-05-20 13:21	2026-05-12	Show	GitHub Exploit DB Packet Storm

3065	4.3	警告 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc.のMattermost Serverにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-28759	2026-05-20 13:21	2026-05-18	Show	GitHub Exploit DB Packet Storm

3066	5.5	警告 Local	マイクロソフト	Microsoft Teams	Microsoft Teams のなりすましの脆弱性	CWE-552 外部からアクセス可能なファイルまたはディレクトリ	CVE-2026-32185	2026-05-20 13:21	2026-05-12	Show	GitHub Exploit DB Packet Storm

3067	7.2	重要 Network	Esri	Portal for ArcGIS	EsriのPortal for ArcGISにおける不適切な権限設定に関する脆弱性	CWE-266 不適切な権限設定	CVE-2026-33518	2026-05-20 13:21	2026-04-21	Show	GitHub Exploit DB Packet Storm

3068	9.8	緊急 Network	Esri	Portal for ArcGIS	EsriのPortal for ArcGISにおける不適切な権限設定に関する脆弱性	CWE-266 不適切な権限設定	CVE-2026-33519	2026-05-20 13:20	2026-04-21	Show	GitHub Exploit DB Packet Storm

3069	5.3	警告 Adjacent	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品におけるリソースの挿入に関する脆弱性	CWE-99 リソースの挿入	CVE-2026-33603	2026-05-20 13:20	2026-05-12	Show	GitHub Exploit DB Packet Storm

3070	6.1	警告 Network	シーメンス	teamcenter	シーメンスのteamcenterにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-33862	2026-05-20 13:20	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345581	-	sgi squirrelmail	propack squirrelmail	Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.2 allow remote attackers to execute arbitrary script as other users and possibly steal authentication information via multiple …	NVD-CWE-Other	CVE-2004-0519	2017-10-11 10:29	2004-08-18	Show	GitHub Exploit DB Packet Storm

345582	-	open_webmail sgi squirrelmail	open_webmail propack squirrelmail	Cross-site scripting (XSS) vulnerability in mime.php for SquirrelMail before 1.4.3 allows remote attackers to insert arbitrary HTML and script via the content-type mail header, as demonstrated using …	NVD-CWE-Other	CVE-2004-0520	2017-10-11 10:29	2004-08-18	Show	GitHub Exploit DB Packet Storm

345583	-	sgi squirrelmail	propack squirrelmail	SQL injection vulnerability in SquirrelMail before 1.4.3 RC1 allows remote attackers to execute unauthorized SQL statements, with unknown impact, probably via abook_database.php.	NVD-CWE-Other	CVE-2004-0521	2017-10-11 10:29	2004-08-18	Show	GitHub Exploit DB Packet Storm

345584	-	mandrakesoft suse conectiva engardelinux gentoo linux	mandrake_multi_network_firewall suse_email_server suse_linux_admin-cd_for_firewall suse_linux_connectivity_server suse_linux_database_server suse_linux_firewall_cd suse_linux_firewa…	The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally …	NVD-CWE-Other	CVE-2004-0535	2017-10-11 10:29	2004-08-6	Show	GitHub Exploit DB Packet Storm

345585	-	sox conectiva gentoo redhat	sox linux enterprise_linux enterprise_linux_desktop fedora_core	Multiple buffer overflows in the st_wavstartread function in wav.c for Sound eXchange (SoX) 12.17.2 through 12.17.4 allow remote attackers to execute arbitrary code via certain WAV file header fields.	NVD-CWE-Other	CVE-2004-0557	2017-10-11 10:29	2004-08-6	Show	GitHub Exploit DB Packet Storm

345586	-	avaya gentoo linux redhat suse conectiva	converged_communications_server modular_messaging_message_storage_server linux linux_kernel enterprise_linux suse_linux intuity_audix suse_email_server suse_linux_admin-cd_for…	Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal handler with a certain sequence of fsave and …	NVD-CWE-Other	CVE-2004-0554	2017-10-11 10:29	2004-08-6	Show	GitHub Exploit DB Packet Storm

345587	-	mandrakesoft gentoo linux trustix	mandrake_multi_network_firewall linux linux_kernel mandrake_linux mandrake_linux_corporate_server secure_linux	Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH bit but does not verify the FPH owner, which allows local users to read register values of other process…	NVD-CWE-Other	CVE-2004-0565	2017-10-11 10:29	2004-12-6	Show	GitHub Exploit DB Packet Storm

345588	-	mandrakesoft redhat suse	mandrake_linux mandrake_linux_corporate_server fedora_core suse_linux	Insecure permissions for the /proc/scsi/qla2300/HbaApiNode file in Linux allows local users to cause a denial of service.	NVD-CWE-Other	CVE-2004-0587	2017-10-11 10:29	2004-08-6	Show	GitHub Exploit DB Packet Storm

345589	-	greg_roelofs	libpng	The png_handle_iCCP function in libpng 1.2.5 and earlier allows remote attackers to cause a denial of service (application crash) via a certain PNG image that triggers a null dereference.	NVD-CWE-Other	CVE-2004-0598	2017-10-11 10:29	2004-11-23	Show	GitHub Exploit DB Packet Storm

345590	-	greg_roelofs	libpng	Multiple integer overflows in the (1) png_read_png in pngread.c or (2) png_handle_sPLT functions in pngrutil.c or (3) progressive display image reading capability in libpng 1.2.5 and earlier allow re…	NVD-CWE-Other	CVE-2004-0599	2017-10-11 10:29	2004-11-23	Show	GitHub Exploit DB Packet Storm