Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
301	9.8	緊急 Network	Apache Software Foundation	Apache Tomcat	Apache Software FoundationのApache Tomcatにおける入力確認に関する脆弱性 New	CWE-20 不適切な入力確認	CVE-2026-41293	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

302	5	警告 Local	マイクロソフト	Visual Studio Code	マイクロソフトのVisual Studio Codeにおける複数の脆弱性 New	CWE-200 CWE-59 CWE-79 CWE-79	CVE-2026-41610	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

303	3.3	低 Local	マイクロソフト	Visual Studio Code	Visual Studio Code のリモートでコードが実行される脆弱性 New	CWE-77 CWE-79 CWE-80	CVE-2026-41611	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

304	8.8	重要 Network	マイクロソフト	Visual Studio Code	マイクロソフトのVisual Studio Codeにおける複数の脆弱性 New	CWE-384 CWE-384 CWE-78	CVE-2026-41613	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

305	7.4	重要 Network	マイクロソフト	Microsoft Authenticator	Microsoft Authenticator の情報漏えいの脆弱性 New	CWE-200 情報漏えい	CVE-2026-41615	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

306	6.5	警告 Network	Distribution	Distribution	Distributionにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-41888	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

307	7.5	重要 Network	Signal K	Signal K Server	Signal KのSignal K Serverにおける過度な認証試行の不適切な制限に関する脆弱性 New	CWE-307 過度な認証試行の不適切な制限	CVE-2026-41893	2026-05-18 11:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

308	9.8	緊急 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおけるSQL インジェクションの脆弱性 New	CWE-89 SQLインジェクション	CVE-2026-42031	2026-05-18 11:30	2026-05-13	Show	GitHub Exploit DB Packet Storm

309	9.1	緊急 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-42032	2026-05-18 11:30	2026-05-13	Show	GitHub Exploit DB Packet Storm

310	4.9	警告 Network	argoproj	Argo Workflows	Argo Project AuthorsのArgo Workflowsにおける認証情報の不十分な保護に関する脆弱性 New	CWE-522 認証情報の不十分な保護	CVE-2026-42295	2026-05-18 11:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346311	-	linux	linux_kernel	Unknown vulnerabilities in strnlen_user for Linux kernel before 2.2.19, with unknown impact.	NVD-CWE-Other	CVE-2001-1396	2016-12-8 11:59	2001-04-17	Show	GitHub Exploit DB Packet Storm

346312	-	linux	linux_kernel	The System V (SYS5) shared memory implementation for Linux kernel before 2.2.19 could allow attackers to modify recently freed memory.	NVD-CWE-Other	CVE-2001-1397	2016-12-8 11:59	2001-04-17	Show	GitHub Exploit DB Packet Storm

346313	-	linux	linux_kernel	Masquerading code for Linux kernel before 2.2.19 does not fully check packet lengths in certain cases, which may lead to a vulnerability.	NVD-CWE-Other	CVE-2001-1398	2016-12-8 11:59	2001-04-17	Show	GitHub Exploit DB Packet Storm

346314	-	linux	linux_kernel	Certain operations in Linux kernel before 2.2.19 on the x86 architecture copy the wrong number of bytes, which might allow attackers to modify memory, aka "User access asm bug on x86."	NVD-CWE-Other	CVE-2001-1399	2016-12-8 11:59	2001-04-17	Show	GitHub Exploit DB Packet Storm

346315	-	linux	linux_kernel	Unknown vulnerabilities in the UDP port allocation for Linux kernel before 2.2.19 could allow local users to cause a denial of service (deadlock).	NVD-CWE-Other	CVE-2001-1400	2016-12-8 11:59	2001-04-17	Show	GitHub Exploit DB Packet Storm

346316	-	greg_roelofs	libpng libpng3	Buffer overflow in libpng 1.0.12-3.woody.2 and libpng3 1.2.1-1.1.woody.2 on Debian GNU/Linux 3.0, and other operating systems, may allow attackers to cause a denial of service and possibly execute ar…	NVD-CWE-Other	CVE-2002-0660	2016-12-8 11:59	2002-08-12	Show	GitHub Exploit DB Packet Storm

346317	-	tinyproxy	tinyproxy	tinyproxy HTTP proxy 1.5.0, 1.4.3, and earlier allows remote attackers to execute arbitrary code via memory that is freed twice (double-free).	NVD-CWE-Other	CVE-2002-0847	2016-12-8 11:59	2002-08-12	Show	GitHub Exploit DB Packet Storm

346318	-	xinetd	xinetd	xinetd 2.3.4 leaks file descriptors for the signal pipe to services that are launched by xinetd, which could allow those services to cause a denial of service via the pipe.	NVD-CWE-Other	CVE-2002-0871	2016-12-8 11:59	2002-09-5	Show	GitHub Exploit DB Packet Storm

346319	-	acme_labs	thttpd	Directory traversal vulnerability in thttpd, when using virtual hosting, allows remote attackers to read arbitrary files via .. (dot dot) sequences in the Host: header.	NVD-CWE-Other	CVE-2002-1562	2016-12-8 11:59	2003-05-12	Show	GitHub Exploit DB Packet Storm

346320	-	nullsoft	shoutcast_dsp	Directory traversal vulnerability in Nullsoft SHOUTcast DSP before 1.9.7 allows remote attackers to read arbitrary files via unspecified vectors that are a "slight variation" of CVE-2006-3534.	NVD-CWE-Other	CVE-2006-3535	2016-12-7 11:59	2006-07-13	Show	GitHub Exploit DB Packet Storm