Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3501	7.7	重要 Network	The Kyverno Authors	Kyverno	The Kyverno AuthorsのKyvernoにおける到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-41485	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3502	4	警告 Local	The GnuPG Project	Libgcrypt	The GnuPG ProjectのLibgcryptにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-41990	2026-04-30 12:25	2026-04-23	Show	GitHub Exploit DB Packet Storm

3503	7.4	重要 Network	axios project	axios	axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-42033	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3504	5.3	警告 Network	axios project	axios	axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-42034	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3505	7.4	重要 Network	axios project	axios	axios projectのaxiosにおける複数の脆弱性	CWE-113 CWE-1321	CVE-2026-42035	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3506	5.3	警告 Network	axios project	axios	axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-42036	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3507	5.3	警告 Network	axios project	axios	axios projectのaxiosにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-42037	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3508	7.5	重要 Network	axios project	axios	axios projectのaxiosにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42038	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3509	7.5	重要 Network	axios project	axios	axios projectのaxiosにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-42039	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

3510	3.7	低 Network	axios project	axios	axios projectのaxiosにおける複数の脆弱性	CWE-116 CWE-626	CVE-2026-42040	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347611	-	netscape	communicator	Buffer overflow in Composer in Netscape 4.77 allows local users to overwrite process memory and execute arbitrary code via a font tag with a long face attribute.	NVD-CWE-Other	CVE-2002-1766	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347612	-	oracle	database_server	Buffer overflow in tnslsnr of Oracle 8i Database Server 8.1.5 for Linux allows local users to execute arbitrary code as the oracle user via a long command line argument.	NVD-CWE-Other	CVE-2002-1767	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347613	-	cisco	ios	Cisco IOS 11.1 through 12.2, when HSRP support is not enabled, allows remote attackers to cause a denial of service (CPU consumption) via randomly sized UDP packets to the Hot Standby Routing Protoco…	NVD-CWE-Other	CVE-2002-1768	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347614	-	qualcomm	eudora	Qualcomm Eudora 5.1 allows remote attackers to execute arbitrary code via an HTML e-mail message that uses a file:// URL in a t:video tag to reference an attached Windows Media Player file containing…	NVD-CWE-Other	CVE-2002-1770	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347615	-	matt_wright	formmail	Matt Wright FormMail 1.9 and earlier allows remote attackers to send spam or anonymous e-mail by injecting a newline character followed by CC:, BCC:, or additional TO: fields in the email and realnam…	NVD-CWE-Other	CVE-2002-1771	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347616	-	novell	netware	Novell Netware 5.0 through 5.1 may allow local users to gain "Domain Admin" rights by logging into a Novell Directory Services (NDS) account, and executing "net use" on an NDS_ADM account that is not…	NVD-CWE-Other	CVE-2002-1772	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347617	-	mirabilis	icq_for_macos_x	Buffer overflow in ICQ 2.6x for MacOS X 10.0 through 10.1.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long request.	NVD-CWE-Other	CVE-2002-1773	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347618	-	symantec	norton_personal_firewall	Symantec Norton Personal Firewall 2002 allows remote attackers to bypass the portscan protection by using a (1) SYN/FIN, (2) SYN/FIN/URG, (3) SYN/FIN/PUSH, or (4) SYN/FIN/URG/PUSH scan.	NVD-CWE-Other	CVE-2002-1778	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347619	-	alcatech_gmbh	bpm_studio_pro	BPM Studio Pro 4.2 by ALCATech GmbH includes a webserver that allows a remote attacker to cause a denial of service (crash) by sending a URL request for a MS-DOS device such as con. NOTE: it has bee…	NVD-CWE-Other	CVE-2002-1780	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

347620	-	delegate	delegate	Multiple buffer overflows in DeleGate 7.7.0 through 7.8.1 allow remote attackers to execute arbitrary code, as demonstrated using a long USER command to the POP proxy.	NVD-CWE-Other	CVE-2002-1781	2017-07-11 10:29	2002-12-31	Show	GitHub Exploit DB Packet Storm