Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3721 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-3073 2026-05-18 12:07 2026-05-14 Show GitHub Exploit DB Packet Storm
3722 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-3074 2026-05-18 12:07 2026-05-14 Show GitHub Exploit DB Packet Storm
3723 5.8 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるフィルタリングの回避に関する脆弱性 CWE-441
フィルタリング回避 		CVE-2026-3160 2026-05-18 12:07 2026-05-14 Show GitHub Exploit DB Packet Storm
3724 9.1 緊急
Network 		マイクロソフト Azure SDK for Java Azure SDK for Java のセキュリティ機能のバイパスの脆弱性 CWE-287
CWE-347
CVE-2026-33117 2026-05-18 12:07 2026-05-12 Show GitHub Exploit DB Packet Storm
3725 9.9 緊急
Network 		マイクロソフト Microsoft Dynamics 365 Customer Insights Microsoft Dynamics 365 Customer Insights の特権昇格の脆弱性 CWE-269
不適切な権限管理 		CVE-2026-33821 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
3726 6.5 警告
Adjacent 		Pengutronix e.K. barebox Pengutronix e.K.のbareboxにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-34960 2026-05-18 12:06 2026-05-11 Show GitHub Exploit DB Packet Storm
3727 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows テレフォニー サービスの特権昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40382 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
3728 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows 共通ログ ファイル システム ドライバーの特権の昇格の脆弱性 CWE-191
整数アンダーフロー 		CVE-2026-40397 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
3729 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows リモート デスクトップ サービスの特権昇格の脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-40398 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
3730 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows TCP/IP の特権昇格の脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-40399 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346091 - sgi
xmlsoft 		propack
libxml
libxml2 		Buffer overflow in the (1) nanohttp or (2) nanoftp modules in XMLSoft Libxml 2 (Libxml2) 2.6.0 through 2.6.5 allow remote attackers to execute arbitrary code via a long URL. NVD-CWE-Other
CVE-2004-0110 2017-10-11 10:29 2004-03-15 Show GitHub Exploit DB Packet Storm
346092 - nfs nfs-utils rpc.mountd in nfs-utils after 1.0.3 and before 1.0.6 allows attackers to cause a denial of service (crash) via an NFS mount of a directory from a client whose reverse DNS lookup name is different fro… NVD-CWE-Other
CVE-2004-0154 2017-10-11 10:29 2004-06-14 Show GitHub Exploit DB Packet Storm
346093 - kame racoon The KAME IKE Daemon Racoon, when authenticating a peer during Phase 1, validates the X.509 certificate but does not verify the RSA signature authentication, which allows remote attackers to establish… NVD-CWE-Other
CVE-2004-0155 2017-10-11 10:29 2004-06-1 Show GitHub Exploit DB Packet Storm
346094 - kame racoon KAME IKE daemon (racoon) does not properly handle hash values, which allows remote attackers to delete certificates via (1) a certain delete message that is not properly handled in isakmp.c or isakmp… NVD-CWE-Other
CVE-2004-0164 2017-10-11 10:29 2004-03-3 Show GitHub Exploit DB Packet Storm
346095 - openbsd openssh Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992. CWE-22
Path Traversal 		CVE-2004-0175 2017-10-11 10:29 2004-08-18 Show GitHub Exploit DB Packet Storm
346096 - linux linux_kernel The JFS file system code in Linux 2.4.x has an information leak in which in-memory data is written to the device for the JFS file system, which allows local users to obtain sensitive information by r… NVD-CWE-Other
CVE-2004-0181 2017-10-11 10:29 2004-06-1 Show GitHub Exploit DB Packet Storm
346097 - sgi
utempter
slackware 		propack
utempter
slackware_linux 		Utempter allows device names that contain .. (dot dot) directory traversal sequences, which allows local users to overwrite arbitrary files via a symlink attack on device names in combination with an… NVD-CWE-Other
CVE-2004-0233 2017-10-11 10:29 2004-08-18 Show GitHub Exploit DB Packet Storm
346098 - clearswift
f-secure
rarlab
redhat
sgi
stalker
tsugio_okamoto
winzip 		mailsweeper
f-secure_anti-virus
f-secure_for_firewalls
f-secure_internet_security
f-secure_personal_express
internet_gatekeeper
winrar
lha
propack
cgpmcafee
winzip
fe… 		Multiple stack-based buffer overflows in the get_header function in header.c for LHA 1.14, as used in products such as Barracuda Spam Firewall, allow remote attackers or local users to execute arbitr… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2004-0234 2017-10-11 10:29 2004-08-18 Show GitHub Exploit DB Packet Storm
346099 - clearswift
f-secure
rarlab
redhat
sgi
stalker
tsugio_okamoto
winzip 		mailsweeper
f-secure_anti-virus
f-secure_for_firewalls
f-secure_internet_security
f-secure_personal_express
internet_gatekeeper
winrar
lha
propack
cgpmcafee
winzip
fe… 		Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute … NVD-CWE-Other
CVE-2004-0235 2017-10-11 10:29 2004-08-18 Show GitHub Exploit DB Packet Storm
346100 - cisco ios Cisco 6000, 6500, and 7600 series systems with Multilayer Switch Feature Card 2 (MSFC2) and a FlexWAN or OSM module allow local users to cause a denial of service (hang or reset) by sending a layer 2… CWE-20
 Improper Input Validation  		CVE-2004-0244 2017-10-11 10:29 2004-11-23 Show GitHub Exploit DB Packet Storm