Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3451 7.5 重要
Network 		Angeet ES3 KVM Firmware AngeetのES3 KVM Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-32297 2026-04-30 12:13 2026-03-17 Show GitHub Exploit DB Packet Storm
3452 9.1 緊急
Network 		Angeet ES3 KVM Firmware AngeetのES3 KVM FirmwareにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-32298 2026-04-30 12:13 2026-03-17 Show GitHub Exploit DB Packet Storm
3453 7.5 重要
Network 		オラクル Oracle Financial Services Customer Screening オラクルのOracle Financial Services Customer Screeningにおける認可に関する脆弱性 CWE-285
不適切な認可 		CVE-2026-34320 2026-04-30 12:13 2026-04-21 Show GitHub Exploit DB Packet Storm
3454 5.8 警告
Network 		Pavel Zbornik (pavelzbornik) whisperX REST API Pavel Zbornik (pavelzbornik)のwhisperX REST APIにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-34981 2026-04-30 12:13 2026-04-6 Show GitHub Exploit DB Packet Storm
3455 7.5 重要
Network 		Distribution Distribution Distributionにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-35172 2026-04-30 12:13 2026-04-6 Show GitHub Exploit DB Packet Storm
3456 7.5 重要
Network 		UnJS Team defu UnJS Teamのdefuにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 CWE-1321
オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染) 		CVE-2026-35209 2026-04-30 12:13 2026-04-6 Show GitHub Exploit DB Packet Storm
3457 7.5 重要
Network 		オラクル Oracle Financial Services Transaction Filtering オラクルのOracle Financial Services Transaction Filteringにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35231 2026-04-30 12:13 2026-04-21 Show GitHub Exploit DB Packet Storm
3458 6.3 警告
Local 		Flatpak XDG Desktop Portal (xdg-desktop-portal) FlatpakのXDG Desktop Portal (xdg-desktop-portal)におけるUNIX Symbolic Link のフォローに関する脆弱性 CWE-61
UNIX Symbolic Link のフォロー 		CVE-2026-40354 2026-04-30 12:13 2026-04-11 Show GitHub Exploit DB Packet Storm
3459 5.3 警告
Local 		Veeam one サムスンのOneにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-40448 2026-04-30 12:13 2026-04-22 Show GitHub Exploit DB Packet Storm
3460 6.6 警告
Local 		Veeam one サムスンのOneにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-40449 2026-04-30 12:13 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348131 - avaya cajun_p550
cajun_p550r
cajun_p580
cajun_p880
cajun_p882 		Avaya Cajun switches P880, P882, P580, and P550R 5.2.14 and earlier contain undocumented accounts (1) manuf and (2) diag with default passwords, which allows remote attackers to gain privileges. NVD-CWE-Other
CVE-2002-1229 2016-10-18 11:24 2002-10-28 Show GitHub Exploit DB Packet Storm
348132 - cisco pix_firewall The encryption algorithms for enable and passwd commands on Cisco PIX Firewall can be executed quickly due to a limited number of rounds, which make it easier for an attacker to decrypt the passwords… NVD-CWE-Other
CVE-2002-0954 2016-10-18 11:23 2002-10-4 Show GitHub Exploit DB Packet Storm
348133 - analogx simpleserver_www Buffer overflow in AnalogX SimpleServer:WWW 1.16 and earlier allows remote attackers to cause a denial of service (crash) and execute code via a long HTTP request method name. NVD-CWE-Other
CVE-2002-0968 2016-10-18 11:23 2002-10-4 Show GitHub Exploit DB Packet Storm
348134 - att
tightvnc
tridia 		winvnc_server
tightvnc
tridiavnc 		Vulnerability in VNC, TightVNC, and TridiaVNC allows local users to execute arbitrary code as LocalSystem by using the Win32 Messaging System to bypass the VNC GUI and access the "Add new clients" di… NVD-CWE-Other
CVE-2002-0971 2016-10-18 11:23 2002-09-24 Show GitHub Exploit DB Packet Storm
348135 - postgresql postgresql Buffer overflows in PostgreSQL 7.2 allow attackers to cause a denial of service and possibly execute arbitrary code via long arguments to the functions (1) lpad or (2) rpad. NVD-CWE-Other
CVE-2002-0972 2016-10-18 11:23 2002-09-24 Show GitHub Exploit DB Packet Storm
348136 - freebsd freebsd Integer signedness error in several system calls for FreeBSD 4.6.1 RELEASE-p10 and earlier may allow attackers to access sensitive kernel memory via large negative values to the (1) accept, (2) getso… NVD-CWE-Other
CVE-2002-0973 2016-10-18 11:23 2002-09-24 Show GitHub Exploit DB Packet Storm
348137 - microsoft directx_files_viewer_control Buffer overflow in Microsoft DirectX Files Viewer ActiveX control (xweb.ocx) 2.0.6.15 and earlier allows remote attackers to execute arbitrary via a long File parameter. NVD-CWE-Other
CVE-2002-0975 2016-10-18 11:23 2002-09-24 Show GitHub Exploit DB Packet Storm
348138 - microsoft virtual_machine The Java logging feature for the Java Virtual Machine in Internet Explorer writes output from functions such as System.out.println to a known pathname, which can be used to execute arbitrary code. NVD-CWE-Other
CVE-2002-0979 2016-10-18 11:23 2002-09-24 Show GitHub Exploit DB Packet Storm
348139 - microsoft sql_server Microsoft SQL Server 2000 SP2, when configured as a distributor, allows attackers to execute arbitrary code via the @scriptfile parameter to the sp_MScopyscript stored procedure. NVD-CWE-Other
CVE-2002-0982 2016-10-18 11:23 2002-09-24 Show GitHub Exploit DB Packet Storm
348140 - rob_flynn gaim The URL handler in the manual browser option for Gaim before 0.59.1 allows remote attackers to execute arbitrary script via shell metacharacters in a link. NVD-CWE-Other
CVE-2002-0989 2016-10-18 11:23 2002-09-24 Show GitHub Exploit DB Packet Storm