Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3581	8.5	重要 Network	n8n-MCP	n8n-MCP	n8n-MCPにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42449	2026-05-18 12:14	2026-05-7	Show	GitHub Exploit DB Packet Storm

3582	7.3	重要 Network	Apache Software Foundation	Apache Tomcat	Apache Software FoundationのApache Tomcatにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-42498	2026-05-18 12:14	2026-05-12	Show	GitHub Exploit DB Packet Storm

3583	9.8	緊急 Network	archivebox	archivebox	archiveboxにおける引数の挿入または変更に関する脆弱性	CWE-88 引数の挿入または変更	CVE-2026-42601	2026-05-18 12:14	2026-05-9	Show	GitHub Exploit DB Packet Storm

3584	8.8	重要 Network	azuracast	azuracast	AzuraCastにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-42605	2026-05-18 12:14	2026-05-9	Show	GitHub Exploit DB Packet Storm

3585	8.8	重要 Network	azuracast	azuracast	AzuraCastにおけるパスワード管理機能に関する脆弱性	CWE-640 パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み	CVE-2026-42606	2026-05-18 12:14	2026-05-9	Show	GitHub Exploit DB Packet Storm

3586	9.9	緊急 Network	マイクロソフト	Azure Logic Apps	Azure Logic Apps の特権昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-42823	2026-05-18 12:14	2026-05-12	Show	GitHub Exploit DB Packet Storm

3587	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows テレフォニーサービスの特権昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-42825	2026-05-18 12:14	2026-05-12	Show	GitHub Exploit DB Packet Storm

3588	6.5	警告 Local	マイクロソフト	Azure Monitor Agent	Azure Monitor エージェントの拡張機能の特権昇格の脆弱性	CWE-426 信頼性のない検索パス	CVE-2026-42830	2026-05-18 12:14	2026-05-12	Show	GitHub Exploit DB Packet Storm

3589	9.1	緊急 Network	マイクロソフト	Microsoft Dynamics 365	Microsoft Dynamics 365 オンプレミスのリモートでコードが実行される脆弱性	CWE-250 CWE-noinfo	CVE-2026-42833	2026-05-18 12:14	2026-05-12	Show	GitHub Exploit DB Packet Storm

3590	5.4	警告 Network	Outlook.com	Microsoft Edge Chromium	Microsoft Edge (Chromium ベース) の特権の昇格の脆弱性	CWE-74 インジェクション	CVE-2026-42838	2026-05-18 12:14	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
354791	-	id_software	quake	Buffer overflows in Quake 1.9 client allows remote malicious servers to execute arbitrary commands via long (1) precache paths, (2) server name, (3) server address, or (4) argument to the map console…	NVD-CWE-Other	CVE-1999-1502	2016-10-18 11:05	1998-04-8	Show	GitHub Exploit DB Packet Storm

354792	-	id_software	quakeworld	Buffer overflow in QuakeWorld 2.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary commands via a long initial connect packet.	NVD-CWE-Other	CVE-1999-1505	2016-10-18 11:05	1998-04-7	Show	GitHub Exploit DB Packet Storm

354793	-	tek	phaser_network_printer_740 phaser_network_printer_750 phaser_network_printer_750dp phaser_network_printer_840 phaser_network_printer_930	Web server in Tektronix PhaserLink Printer 840.0 and earlier allows a remote attacker to gain administrator access by directly calling undocumented URLs such as ncl_items.html and ncl_subjects.html.	NVD-CWE-Other	CVE-1999-1508	2016-10-18 11:05	1999-11-16	Show	GitHub Exploit DB Packet Storm

354794	-	etype	eserv	Directory traversal vulnerability in Etype Eserv 2.50 web server allows a remote attacker to read any file in the file system via a .. (dot dot) in a URL.	NVD-CWE-Other	CVE-1999-1509	2016-10-18 11:05	1999-11-4	Show	GitHub Exploit DB Packet Storm

354795	-	3com	superstack_ii_hub	Management information base (MIB) for a 3Com SuperStack II hub running software version 2.10 contains an object identifier (.1.3.6.1.4.1.43.10.4.2) that is accessible by a read-only community string,…	NVD-CWE-Other	CVE-1999-1513	2016-10-18 11:05	1999-08-30	Show	GitHub Exploit DB Packet Storm

354796	-	tenfour	tfs_gateway_smtp	A buffer overflow in TenFour TFS Gateway SMTP mail server 3.2 allows an attacker to crash the mail server and possibly execute arbitrary code by offering more than 128 bytes in a MAIL FROM string.	NVD-CWE-Other	CVE-1999-1516	2016-10-18 11:05	1999-09-2	Show	GitHub Exploit DB Packet Storm

354797	-	freebsd	freebsd	runtar in the Amanda backup system used in various UNIX operating systems executes tar with root privileges, which allows a user to overwrite or read arbitrary files by providing the target files to …	NVD-CWE-Other	CVE-1999-1517	2016-10-18 11:05	1999-11-1	Show	GitHub Exploit DB Packet Storm

354798	-	roxen	roxen_web_server	Vulnerability in htmlparse.pike in Roxen Web Server 1.3.11 and earlier, possibly related to recursive parsing and referer tags in RXML.	NVD-CWE-Other	CVE-1999-1522	2016-10-18 11:05	1999-10-7	Show	GitHub Exploit DB Packet Storm

354799	-	flowpoint	flowpoint_dsl_router	FlowPoint DSL router firmware versions prior to 3.0.8 allows a remote attacker to exploit a password recovery feature from the network and conduct brute force password guessing, instead of limiting t…	NVD-CWE-Other	CVE-1999-1524	2016-10-18 11:05	1999-08-7	Show	GitHub Exploit DB Packet Storm

354800	-	sun	forte netbeans_developer	Internal HTTP server in Sun Netbeans Java IDE in Netbeans Developer 3.0 Beta and Forte Community Edition 1.0 Beta does not properly restrict access to IP addresses as specified in its configuration, …	NVD-CWE-Other	CVE-1999-1527	2016-10-18 11:05	1999-11-23	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed