Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4071	9.1	緊急 Network	CyberPanel	CyberPanel	CyberPanelにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-41473	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

4072	8.2	重要 Local	レッドハット	Red Hat Advanced Cluster Management for Kubernetes	レッドハットのRed Hat Advanced Cluster Management for Kubernetesにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-4740	2026-04-30 12:08	2026-04-7	Show	GitHub Exploit DB Packet Storm

4073	9.8	緊急 Network	Pipecat	Pipecat	Pipecatにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2025-62373	2026-04-30 12:08	2026-04-23	Show	GitHub Exploit DB Packet Storm

4074	7.8	重要 Local	Amazon.com, Inc.	Kiro IDE	Amazon.com, Inc.のKiro IDEにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-0830	2026-04-30 12:08	2026-01-9	Show	GitHub Exploit DB Packet Storm

4075	5.4	警告 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-25720	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

4076	9.8	緊急 Network	huggingface	LeRobot	huggingfaceのLeRobotにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-25874	2026-04-30 12:08	2026-04-23	Show	GitHub Exploit DB Packet Storm

4077	8.1	重要 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-27841	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

4078	9.1	緊急 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-27843	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

4079	7.5	重要 Network	Navigation Data Standard (NDS)	Zserio	Navigation Data Standard (NDS)のZserioにおける過剰なサイズ値のメモリ割り当てに関する脆弱性	CWE-789 過剰なサイズ値のメモリ割り当て	CVE-2026-33524	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

4080	7.5	重要 Network	Navigation Data Standard (NDS)	Zserio	Navigation Data Standard (NDS)のZserioにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-33666	2026-04-30 12:08	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348381	-	3com	3cp4144	Buffer overflow in 3Com OfficeConnect Remote 812 ADSL Router 1.1.9.4 allows remote attackers to cause a denial of service (reboot or packet loss) via a long string containing Telnet escape characters…	NVD-CWE-Other	CVE-2004-0476	2017-07-11 10:30	2004-08-18	Show	GitHub Exploit DB Packet Storm

348382	-	3com	3cp4144	Unknown vulnerability in 3Com OfficeConnect Remote 812 ADSL Router allows remote attackers to bypass authentication via repeated attempts using any username and password. NOTE: this identifier was i…	NVD-CWE-Other	CVE-2004-0477	2017-07-11 10:30	2004-12-6	Show	GitHub Exploit DB Packet Storm

348383	-	mozilla	mozilla	Unknown versions of Mozilla allow remote attackers to cause a denial of service (high CPU/RAM consumption) using Javascript with an infinite loop that continues to add input to a form, possibly as t…	CWE-399 Resource Management Errors	CVE-2004-0478	2017-07-11 10:30	2004-07-7	Show	GitHub Exploit DB Packet Storm

348384	-	sgi	irix	Unknown vulnerability in rpc.mountd for SGI IRIX 6.5.24 allows remote attackers to cause a denial of service (infinite loop) via certain RPC requests.	NVD-CWE-Other	CVE-2004-0483	2017-07-11 10:30	2004-07-7	Show	GitHub Exploit DB Packet Storm

348385	-	apple	mac_os_x	The default protocol helper for the disk: URI on Mac OS X 10.3.3 and 10.2.8 allows remote attackers to write arbitrary files by causing a disk image file (.dmg) to be mounted as a disk volume.	NVD-CWE-Other	CVE-2004-0485	2017-07-11 10:30	2004-07-7	Show	GitHub Exploit DB Packet Storm

348386	-	apple	mac_os_x mac_os_x_server	HelpViewer in Mac OS X 10.3.3 and 10.2.8 processes scripts that it did not initiate, which can allow attackers to execute arbitrary code, an issue that was originally reported as a directory traversa…	NVD-CWE-Other	CVE-2004-0486	2017-07-11 10:30	2004-07-7	Show	GitHub Exploit DB Packet Storm

348387	-	symantec	norton_antivirus	A certain ActiveX control in Symantec Norton AntiVirus 2004 allows remote attackers to cause a denial of service (resource consumption) and possibly execute arbitrary programs.	NVD-CWE-Other	CVE-2004-0487	2017-07-11 10:30	2004-08-18	Show	GitHub Exploit DB Packet Storm

348388	-	cpanel	cpanel	cPanel, when compiling Apache 1.3.29 and PHP with the mod_phpsuexec option, does not set the --enable-discard-path option, which causes php to use the SCRIPT_FILENAME variable to find and execute a s…	NVD-CWE-Other	CVE-2004-0490	2017-07-11 10:30	2004-08-18	Show	GitHub Exploit DB Packet Storm

348389	-	microsoft	outlook	Outlook 2003 allows remote attackers to bypass intended access restrictions and cause Outlook to request a URL from a remote site via an HTML e-mail message containing a Vector Markup Language (VML) …	NVD-CWE-Other	CVE-2004-0501	2017-07-11 10:30	2004-08-18	Show	GitHub Exploit DB Packet Storm

348390	-	microsoft	outlook	Outlook 2003, when replying to an e-mail message, stores certain files in a predictable location for the "src" of an img tag of the original message, which allows remote attackers to bypass zone rest…	NVD-CWE-Other	CVE-2004-0502	2017-07-11 10:30	2004-08-18	Show	GitHub Exploit DB Packet Storm