Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
391 7.5 重要
Network 		Linux Foundation tekton pipelines Linux Foundationのtekton pipelinesにおける引数の挿入または変更に関する脆弱性 CWE-88
引数の挿入または変更 		CVE-2026-40938 2026-04-30 12:27 2026-04-21 Show GitHub Exploit DB Packet Storm
392 6.5 警告
Network 		Apache Software Foundation ActiveMQ Web
Apache ActiveMQ 		Apache Software FoundationのApache ActiveMQ等の複数製品における複数の脆弱性 CWE-79
CWE-79
CWE-915
CVE-2026-41043 2026-04-30 12:27 2026-04-24 Show GitHub Exploit DB Packet Storm
393 8.8 重要
Network 		Apache Software Foundation Apache ActiveMQ
ActiveMQ Broker 		Apache Software FoundationのApache ActiveMQ等の複数製品における複数の脆弱性 CWE-20
CWE-94
CVE-2026-41044 2026-04-30 12:27 2026-04-24 Show GitHub Exploit DB Packet Storm
394 8.2 重要
Network 		oauth2_proxy project oauth2_proxy oauth2_proxy projectのoauth2_proxyにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性 CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-41059 2026-04-30 12:27 2026-04-22 Show GitHub Exploit DB Packet Storm
395 7.5 重要
Network 		lxml lxml lxmlにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2026-41066 2026-04-30 12:27 2026-04-24 Show GitHub Exploit DB Packet Storm
396 7.7 重要
Network 		The Kyverno Authors Kyverno The Kyverno AuthorsのKyvernoにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41068 2026-04-30 12:27 2026-04-24 Show GitHub Exploit DB Packet Storm
397 8.8 重要
Network 		pyLoad pyLoad pyLoadにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2026-41133 2026-04-30 12:27 2026-04-22 Show GitHub Exploit DB Packet Storm
398 8.2 重要
Network 		Minio Inc. Minio Minio Inc.のMinioにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-41145 2026-04-30 12:27 2026-04-22 Show GitHub Exploit DB Packet Storm
399 9.8 緊急
Network 		JetBrains Junie JetBrainsのJunieにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-41153 2026-04-30 12:27 2026-04-17 Show GitHub Exploit DB Packet Storm
400 8.1 重要
Network 		Statamic Statamic Statamicにおけるクラスまたはコードを選択する外部から制御された入力の使用に関する脆弱性 CWE-470
クラスまたはコードを選択する外部から制御された入力の使用 		CVE-2026-41175 2026-04-30 12:27 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313211 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-26287 2024-02-22 21:15 2024-02-22 Show GitHub Exploit DB Packet Storm
313212 - sun sunos Extra long export lists over 256 characters in some mount daemons allows NFS directories to be mounted by anyone. NVD-CWE-Other
CVE-1999-0211 2024-02-22 11:15 1994-02-14 Show GitHub Exploit DB Packet Storm
313213 5.5 MEDIUM
Local 		microsoft windows_nt
windows_2000 		NTFS file system in Windows NT 4.0 and Windows 2000 SP2 allows local attackers to hide file usage activities via a hard link to the target file, which causes the link to be recorded in the audit trai… CWE-59
Link Following 		CVE-2002-0725 2024-02-22 05:38 2002-09-5 Show GitHub Exploit DB Packet Storm
313214 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-1709. Reason: This candidate is a duplicate of CVE-2024-1709. Notes: All CVE users should reference CVE-2024-1709 instead of th… - CVE-2024-27215 2024-02-22 03:15 2024-02-22 Show GitHub Exploit DB Packet Storm
313215 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2024-24475 2024-02-21 10:15 2024-02-21 Show GitHub Exploit DB Packet Storm
313216 - - - Rejected reason: This CVE was misassigned. See CVE-2023-47623 for the canonical reference. - CVE-2024-25113 2024-02-18 07:15 2024-02-18 Show GitHub Exploit DB Packet Storm
313217 4.9 MEDIUM
Network 		- - Rejected reason: ** REJECT ** This CVE ID has been rejected by its CNA as it was not a security issue. - CVE-2022-40433 2024-02-17 09:15 2023-08-23 Show GitHub Exploit DB Packet Storm
313218 9.8 CRITICAL
Network 		gaim_project gaim Multiple buffer overflows in Gaim 0.75 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) octal encoding in yahoo_decode that causes a null byte to be wri… CWE-193
 Off-by-one Error 		CVE-2004-0005 2024-02-17 05:47 2004-03-3 Show GitHub Exploit DB Packet Storm
313219 5.5 MEDIUM
Local 		wftpd_pro_server_project wftpd_pro_server WFTPD Pro Server 3.21 Release 1, with the XeroxDocutech option enabled, allows local users to cause a denial of service (crash) via a (1) MKD or (2) XMKD command that causes an absolute path of 260 c… CWE-193
 Off-by-one Error 		CVE-2004-0342 2024-02-17 05:44 2004-11-23 Show GitHub Exploit DB Packet Storm
313220 9.8 CRITICAL
Network 		ethereal ethereal Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) AIM, (2) GIOP Gryphon, (3) OSPF,… CWE-193
 Off-by-one Error 		CVE-2003-0356 2024-02-17 05:39 2003-06-9 Show GitHub Exploit DB Packet Storm