Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3691 5.2 警告
Network 		オラクル Hyperion Infrastructure Technology オラクルのHyperion Infrastructure Technologyにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35244 2026-05-7 10:51 2026-04-21 Show GitHub Exploit DB Packet Storm
3692 9.1 緊急
Network 		Volcengine OpenViking VolcengineのOpenVikingにおける安全でない失敗処理に関する脆弱性 CWE-636
安全でない失敗処理 		CVE-2026-40525 2026-05-7 10:51 2026-04-17 Show GitHub Exploit DB Packet Storm
3693 7.1 重要
Network 		Apache Software Foundation Apache Atlas Apache Software FoundationのApache Atlasにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-40563 2026-05-7 10:51 2026-05-4 Show GitHub Exploit DB Packet Storm
3694 8.8 重要
Adjacent 		Espressif Systems ESP32 Arduino Espressif SystemsのESP32 Arduinoにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-41429 2026-05-7 10:51 2026-04-24 Show GitHub Exploit DB Packet Storm
3695 9 緊急
Network 		Jenkins プロジェクト GitHub JenkinsのGitHubにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42523 2026-05-7 10:51 2026-04-29 Show GitHub Exploit DB Packet Storm
3696 8 重要
Network 		Jenkins プロジェクト HTML Publisher Plugin JenkinsのHTML Publisher Pluginにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42524 2026-05-7 10:51 2026-04-29 Show GitHub Exploit DB Packet Storm
3697 4.3 警告
Network 		Jenkins プロジェクト Azure AD JenkinsのAzure ADにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-42525 2026-05-7 10:51 2026-04-29 Show GitHub Exploit DB Packet Storm
3698 8.8 重要
Adjacent 		TP-LINK Technologies TL-WR841N ファームウェア TP-LINK TechnologiesのTL-WR841N ファームウェアにおけるデフォルトの暗号鍵の使用に関する脆弱性 CWE-1394
デフォルトの暗号鍵の使用 		CVE-2026-5039 2026-05-7 10:51 2026-04-23 Show GitHub Exploit DB Packet Storm
3699 7.3 重要
Network 		GNU Project GNU C Library GNU ProjectのGNU C Libraryにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-5435 2026-05-7 10:51 2026-04-28 Show GitHub Exploit DB Packet Storm
3700 7.5 重要
Network 		Progress Software Corporation Telerik UI for ASP.NET AJAX Progress Software CorporationのTelerik UI for ASP.NET AJAXにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-6022 2026-05-7 10:51 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347081 - google talk Google Talk before 1.0.0.76, with email notification enabled, allows remote attackers to cause a denial of service (connection reset) via email with a blank sender. CWE-20
 Improper Input Validation  		CVE-2005-3678 2017-07-11 10:33 2005-11-19 Show GitHub Exploit DB Packet Storm
347082 - wizz_forum wizz_forum Multiple SQL injection vulnerabilities in Wizz Forum 1.20 allow remote attackers to execute arbitrary SQL commands via (1) the AuthID parameter in ForumAuthDetails.php, and the TopicID parameter in (… NVD-CWE-Other
CVE-2005-3682 2017-07-11 10:33 2005-11-19 Show GitHub Exploit DB Packet Storm
347083 - freeftpd freeftpd Stack-based buffer overflow in freeFTPd before 1.0.9 with Logging enabled, allows remote attackers to cause a denial of service (application crash), and possibly execute arbitrary code, via a long US… NVD-CWE-Other
CVE-2005-3683 2017-07-11 10:33 2005-11-19 Show GitHub Exploit DB Packet Storm
347084 - freeftpd freeftpd Multiple buffer overflows in freeFTPd 1.0.8, without logging enabled, allow remote authenticated attackers to cause a denial of service (application crash), and possibly execute arbitrary code, via l… NVD-CWE-Other
CVE-2005-3684 2017-07-11 10:33 2005-11-19 Show GitHub Exploit DB Packet Storm
347085 - mailenable mailenable_enterprise
mailenable_professional 		Stack-based buffer overflow in the IMAP service (meimaps.exe) of MailEnable Professional 1.6 and earlier and Enterprise 1.1 and earlier allows remote attackers to execute arbitrary code via a long ma… NVD-CWE-Other
CVE-2005-3690 2017-07-11 10:33 2005-11-19 Show GitHub Exploit DB Packet Storm
347086 - centericq centericq centericq 4.20.0-r3 with "Enable peer-to-peer communications" set allows remote attackers to cause a denial of service (segmentation fault and crash) via short zero-length packets, and possibly packe… NVD-CWE-Other
CVE-2005-3694 2017-07-11 10:33 2005-11-21 Show GitHub Exploit DB Packet Storm
347087 - apple mac_os_x
mac_os_x_server 		Unknown vulnerability in iodbcadmintool in the ODBC Administrator utility in Mac OS X and OS X Server 10.3.9 and 10.4.3 allows local users to execute arbitrary code via unknown attack vectors. NVD-CWE-Other
CVE-2005-3700 2017-07-11 10:33 2005-12-1 Show GitHub Exploit DB Packet Storm
347088 - apple mac_os_x_server Unspecified vulnerability in passwordserver in Mac OS X Server 10.3.9 and 10.4.3, when creating an Open Directory master server, allows local users to gain privileges via unknown attack vectors. NVD-CWE-Other
CVE-2005-3701 2017-07-11 10:33 2005-12-1 Show GitHub Exploit DB Packet Storm
347089 - apple mac_os_x
mac_os_x_server 		System log server in Mac OS X and OS X Server 10.4 through 10.4.3 allows remote attackers to spoof syslog messages in log files by injecting various control characters such as newline (NL). NVD-CWE-Other
CVE-2005-3704 2017-07-11 10:33 2005-12-1 Show GitHub Exploit DB Packet Storm
347090 - apple mac_os_x
mac_os_x_server 		Heap-based buffer overflow in WebKit in Mac OS X and OS X Server 10.3.9 and 10.4.3, as used in applications such as Safari, allows remote attackers to execute arbitrary code via unknown attack vector… NVD-CWE-Other
CVE-2005-3705 2017-07-11 10:33 2005-12-1 Show GitHub Exploit DB Packet Storm