Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4381 9.8 緊急
Network 		Shenzhen Tenda Technology Co.,Ltd. W308R Firmware Shenzhen Tenda Technology Co.,Ltd.のW308R Firmwareにおけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2018-25316 2026-05-7 11:31 2026-04-29 Show GitHub Exploit DB Packet Storm
4382 9.8 緊急
Network 		Shenzhen Tenda Technology Co.,Ltd. W3002R Firmware
A302 Firmware
W309R Firmware 		Shenzhen Tenda Technology Co.,Ltd.のA302 Firmware等の複数製品におけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2018-25317 2026-05-7 11:31 2026-04-29 Show GitHub Exploit DB Packet Storm
4383 9.8 緊急
Network 		Shenzhen Tenda Technology Co.,Ltd. FH303 Firmware
A300 Firmware 		Shenzhen Tenda Technology Co.,Ltd.のA300 Firmware等の複数製品におけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2018-25318 2026-05-7 11:31 2026-04-29 Show GitHub Exploit DB Packet Storm
4384 9.8 緊急
Network 		DeanWu (pylixm) Django-mdeditor DeanWu (pylixm)のDjango-mdeditorにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2025-13030 2026-05-7 11:31 2026-04-30 Show GitHub Exploit DB Packet Storm
4385 7.8 重要
Local 		The Qt Company qtdeclarative The Qt Companyのqtdeclarativeにおける複数の脆弱性 CWE-20
CWE-94
CWE-94
CVE-2025-14576 2026-05-7 11:30 2026-04-30 Show GitHub Exploit DB Packet Storm
4386 6.4 警告
Local 		レッドハット OpenShift Update Service (OSUS) レッドハットのOpenShift Update Service (OSUS)における不適切なデフォルトパーミッションに関する脆弱性 CWE-276
不適切なデフォルトパーミッション 		CVE-2025-57854 2026-05-7 11:30 2026-04-8 Show GitHub Exploit DB Packet Storm
4387 5.4 警告
Network 		Wolters Kluwer Financial Services, Inc. LEX Baza Dokumentow Wolters Kluwer Financial Services, Inc.のLEX Baza Dokumentowにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-1493 2026-05-7 11:30 2026-04-30 Show GitHub Exploit DB Packet Storm
4388 5.7 警告
Adjacent 		シスコシステムズ Firepower Threat Defense (FTD)
Adaptive Security Appliance (ASA) Software 		シスコシステムズのAdaptive Security Appliance (ASA) Software等の複数製品における入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-20020 2026-05-7 11:30 2026-03-4 Show GitHub Exploit DB Packet Storm
4389 6.1 警告
Network 		シスコシステムズ Firepower Threat Defense (FTD)
Adaptive Security Appliance (ASA) Software 		シスコシステムズのAdaptive Security Appliance (ASA) Software等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-80
クロスサイトスクリプティング (Basic XSS) 		CVE-2026-20070 2026-05-7 11:30 2026-03-4 Show GitHub Exploit DB Packet Storm
4390 5.8 警告
Network 		シスコシステムズ Firepower Threat Defense (FTD)
Adaptive Security Appliance (ASA) Software 		シスコシステムズのAdaptive Security Appliance (ASA) Software等の複数製品におけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-20073 2026-05-7 11:30 2026-03-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
355231 - allaire coldfusion_server The Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly. NVD-CWE-Other
CVE-1999-0455 2008-09-9 21:34 1999-12-25 Show GitHub Exploit DB Packet Storm
355232 - debian debian_linux Linux ftpwatch program allows local users to gain root privileges. NVD-CWE-Other
CVE-1999-0457 2008-09-9 21:34 1999-01-17 Show GitHub Exploit DB Packet Storm
355233 - l0pht l0phtcrack L0phtcrack 2.5 used temporary files in the system TEMP directory which could contain password information. NVD-CWE-Other
CVE-1999-0458 2008-09-9 21:34 1999-01-6 Show GitHub Exploit DB Packet Storm
355234 - suse suse_linux suidperl in Linux Perl does not check the nosuid mount option on file systems, allowing local users to gain root access by placing a setuid script in a mountable file system, e.g. a CD-ROM or floppy … NVD-CWE-Other
CVE-1999-0462 2008-09-9 21:34 1999-03-17 Show GitHub Exploit DB Packet Storm
355235 - l0pht l0phtcrack Remote attackers can perform a denial of service using IRIX fcagent. NVD-CWE-Other
CVE-1999-0463 2008-09-9 21:34 1998-12-1 Show GitHub Exploit DB Packet Storm
355236 - netbsd netbsd The SVR4 /dev/wabi special device file in NetBSD 1.3.3 and earlier allows a local user to read or write arbitrary files on the disk associated with that device. NVD-CWE-Other
CVE-1999-0466 2008-09-9 21:34 1999-04-21 Show GitHub Exploit DB Packet Storm
355237 - novell netware A weak encryption algorithm is used for passwords in Novell Remote.NLM, allowing them to be easily decrypted. NVD-CWE-Other
CVE-1999-0470 2008-09-9 21:34 1999-04-9 Show GitHub Exploit DB Packet Storm
355238 - andrew_tridgell rsync The rsync command before rsync 2.3.1 may inadvertently change the permissions of the client's working directory to the permissions of the directory being transferred. NVD-CWE-Other
CVE-1999-0473 2008-09-9 21:34 1999-04-7 Show GitHub Exploit DB Packet Storm
355239 - sendmail sendmail Denial of service in HP-UX sendmail 8.8.6 related to accepting connections. NVD-CWE-Other
CVE-1999-0478 2008-09-9 21:34 1998-12-1 Show GitHub Exploit DB Packet Storm
355240 - netscape
hp 		enterprise_server
hp-ux 		Denial of service Netscape Enterprise Server with VirtualVault on HP-UX VVOS systems. NVD-CWE-Other
CVE-1999-0479 2008-09-9 21:34 1999-03-1 Show GitHub Exploit DB Packet Storm