Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3551	9.8	緊急 Network	huggingface	LeRobot	huggingfaceのLeRobotにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-25874	2026-04-30 12:08	2026-04-23	Show	GitHub Exploit DB Packet Storm

3552	8.1	重要 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-27841	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

3553	9.1	緊急 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-27843	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

3554	7.5	重要 Network	Navigation Data Standard (NDS)	Zserio	Navigation Data Standard (NDS)のZserioにおける過剰なサイズ値のメモリ割り当てに関する脆弱性	CWE-789 過剰なサイズ値のメモリ割り当て	CVE-2026-33524	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

3555	7.5	重要 Network	Navigation Data Standard (NDS)	Zserio	Navigation Data Standard (NDS)のZserioにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-33666	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

3556	7.5	重要 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35064	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

3557	7.1	重要 Local	Gwenhael Goavec-Merou (trabucayre)	openFPGALoader	Gwenhael Goavec-Merou (trabucayre)のopenFPGALoaderにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-35170	2026-04-30 12:08	2026-04-6	Show	GitHub Exploit DB Packet Storm

3558	7.1	重要 Local	Gwenhael Goavec-Merou (trabucayre)	openFPGALoader	Gwenhael Goavec-Merou (trabucayre)のopenFPGALoaderにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-35176	2026-04-30 12:08	2026-04-6	Show	GitHub Exploit DB Packet Storm

3559	6.5	警告 Network	Coder	Code Extension Marketplace	CoderのCode Extension Marketplaceにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35454	2026-04-30 12:07	2026-04-6	Show	GitHub Exploit DB Packet Storm

3560	9.8	緊急 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおけるハードコードされた認証情報の使用に関する脆弱性	CWE-798 ハードコードされた認証情報の使用	CVE-2026-35503	2026-04-30 12:07	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348541	-	arcad_systemhaus	arcad	ARCAD Systemhaus 0.078-5 installs critical programs and files with world-writeable permissions, which could allow local users to gain privileges by replacing a program with a Trojan horse.	NVD-CWE-Other	CVE-1999-1350	2016-10-18 11:03	1999-09-29	Show	GitHub Exploit DB Packet Storm

348542	-	kvirc	irc_client	Directory traversal vulnerability in KVIrc IRC client 0.9.0 with the "Listen to !nick <soundname> requests" option enabled allows remote attackers to read arbitrary files via a .. (dot dot) in a DCC …	NVD-CWE-Other	CVE-1999-1351	2016-10-18 11:03	1999-09-24	Show	GitHub Exploit DB Packet Storm

348543	-	linux	linux_kernel	mknod in Linux 2.2 follows symbolic links, which could allow local users to overwrite files or gain privileges.	NVD-CWE-Other	CVE-1999-1352	2016-10-18 11:03	1999-09-28	Show	GitHub Exploit DB Packet Storm

348544	-	softarc	firstclass_internet_server	E-mail client in Softarc FirstClass Internet Server 5.506 and earlier stores usernames and passwords in cleartext in the files (1) home.fc for version 5.506, (2) network.fc for version 3.5, or (3) FC…	NVD-CWE-Other	CVE-1999-1354	2016-10-18 11:03	1999-08-30	Show	GitHub Exploit DB Packet Storm

348545	-	compaq	smartstart	Compaq Integration Maintenance Utility as used in Compaq Insight Manager agent before SmartStart 4.50 modifies the legal notice caption (LegalNoticeCaption) and text (LegalNoticeText) in Windows NT, …	NVD-CWE-Other	CVE-1999-1356	2016-10-18 11:03	1999-09-2	Show	GitHub Exploit DB Packet Storm

348546	-	netscape	communicator	Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating systems converts the 0x8b character to a "<" sign, and the 0x9b character to a ">" sign, which could all…	NVD-CWE-Other	CVE-1999-1357	2016-10-18 11:03	1999-10-5	Show	GitHub Exploit DB Packet Storm

348547	-	microsoft	windows_nt	Windows NT 3.51 and 4.0 running WINS (Windows Internet Name Service) allows remote attackers to cause a denial of service (resource exhaustion) via a flood of malformed packets, which causes the serv…	NVD-CWE-Other	CVE-1999-1361	2016-10-18 11:03	1998-05-9	Show	GitHub Exploit DB Packet Storm

348548	-	david_harris	pegasus_mail	Pegasus e-mail client 3.0 and earlier uses weak encryption to store POP3 passwords in the pmail.ini file, which allows local users to easily decrypt the passwords and read e-mail.	NVD-CWE-Other	CVE-1999-1366	2016-10-18 11:03	1999-05-15	Show	GitHub Exploit DB Packet Storm

348549	-	realnetworks	realserver	Real Media RealServer (rmserver) 6.0.3.353 stores a password in plaintext in the world-readable rmserver.cfg file, which allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-1369	2016-10-18 11:03	1999-04-14	Show	GitHub Exploit DB Packet Storm

348550	-	triactive	remote_management	Triactive Remote Manager with Basic authentication enabled stores the username and password in cleartext in registry keys, which could allow local users to gain privileges.	NVD-CWE-Other	CVE-1999-1372	2016-10-18 11:03	1999-02-19	Show	GitHub Exploit DB Packet Storm