Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5161 7.8 重要
Local 		アドビシステムズ Adobe Substance 3D Painter アドビのAdobe Substance 3D Painterにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-34676 2026-05-14 10:20 2026-05-12 Show GitHub Exploit DB Packet Storm
5162 7.8 重要
Local 		アドビシステムズ Adobe Illustrator アドビのAdobe Illustratorにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-34687 2026-05-14 10:20 2026-05-12 Show GitHub Exploit DB Packet Storm
5163 8.2 重要
Local 		デル insightiq デルのinsightiqにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-35071 2026-05-14 10:20 2026-05-12 Show GitHub Exploit DB Packet Storm
5164 9.8 緊急
Network 		デル Dell ObjectScale
elastic cloud storage 		デルのelastic cloud storage等の複数製品におけるCSV ファイル内の数式要素の中和に関する脆弱性 CWE-1236
CSV ファイル内の数式要素の不適切な中和 		CVE-2026-35157 2026-05-14 10:20 2026-05-11 Show GitHub Exploit DB Packet Storm
5165 5.4 警告
Network 		Frappe Frappe Frappeにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-3673 2026-05-14 10:20 2026-04-22 Show GitHub Exploit DB Packet Storm
5166 9.8 緊急
Network 		Grokability, Inc. Snipe-IT Grokability, Inc.のSnipe-ITにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-37709 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
5167 6.5 警告
Local 		Linux Containers LXC Linux ContainersのLXCにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-39402 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
5168 8.8 重要
Network 		Pi-hole FTLDNS Pi-holeのFTLDNSにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-39849 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
5169 7.5 重要
Network 		- アップルのmacOSにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2026-39871 2026-05-14 10:19 2026-05-11 Show GitHub Exploit DB Packet Storm
5170 8.8 重要
Network 		Anthropic PBC Claude Code Anthropic PBCのClaude Codeにおける複数の脆弱性 CWE-20
CWE-77
CWE-noinfo
CVE-2026-40068 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347231 - caldera
immunix
mandrakesoft
squid
redhat
trustix 		openlinux_server
immunix
mandrake_single_network_firewall
squid_web_proxy
mandrake_linux
mandrake_linux_corporate_server
linux
secure_linux 		Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypas… NVD-CWE-Other
CVE-2001-1030 2017-10-10 10:29 2001-07-18 Show GitHub Exploit DB Packet Storm
347232 - francisco_burzi php-nuke admin.php in PHP-Nuke 5.2 and earlier, except 5.0RC1, does not check login credentials for upload operations, which allows remote attackers to copy and upload arbitrary files and read the PHP-Nuke co… NVD-CWE-Other
CVE-2001-1032 2017-10-10 10:29 2001-09-24 Show GitHub Exploit DB Packet Storm
347233 - slrn_development_team slrn Binary decoding feature of slrn 0.9 and earlier allows remote attackers to execute commands via shell scripts that are inserted into a news post. NVD-CWE-Other
CVE-2001-1035 2017-10-10 10:29 2001-09-24 Show GitHub Exploit DB Packet Storm
347234 - gnu
slackware 		findutils
slackware_linux 		GNU locate in findutils 4.1 on Slackware 7.1 and 8.0 allows local users to gain privileges via an old formatted filename database (locatedb) that contains an entry with an out-of-range offset, which … NVD-CWE-Other
CVE-2001-1036 2017-10-10 10:29 2001-08-31 Show GitHub Exploit DB Packet Storm
347235 - qualcomm qpopper Buffer overflow in qpopper (aka qpop or popper) 4.0 through 4.0.2 allows remote attackers to gain privileges via a long username. NVD-CWE-Other
CVE-2001-1046 2017-10-10 10:29 2001-06-2 Show GitHub Exploit DB Packet Storm
347236 - adcycle adcycle AdLogin.pm in AdCycle 1.15 and earlier allows remote attackers to bypass authentication and gain privileges by injecting SQL code in the $password argument. NVD-CWE-Other
CVE-2001-1053 2017-10-10 10:29 2001-07-13 Show GitHub Exploit DB Packet Storm
347237 - microsoft windows_98
windows_98se 		The Microsoft Windows network stack allows remote attackers to cause a denial of service (CPU consumption) via a flood of malformed ARP request packets with random source IP and MAC addresses, as dem… NVD-CWE-Other
CVE-2001-1055 2017-10-10 10:29 2001-07-30 Show GitHub Exploit DB Packet Storm
347238 - vmware workstation VMWare creates a temporary file vmware-log.USERNAME with insecure permissions, which allows local users to read or modify license information. NVD-CWE-Other
CVE-2001-1059 2017-10-10 10:29 2001-07-30 Show GitHub Exploit DB Packet Storm
347239 - caldera unixware
openunix 		Buffer overflow in uidadmin in Caldera Open Unix 8.0.0 and UnixWare 7 allows local users to gain root privileges via a long -S (scheme) command line argument. NVD-CWE-Other
CVE-2001-1063 2017-10-10 10:29 2001-08-31 Show GitHub Exploit DB Packet Storm
347240 - aol aol_server Buffer overflow in AOLserver 3.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via an HTTP request with a long Authorization header. NVD-CWE-Other
CVE-2001-1067 2017-10-10 10:29 2001-08-31 Show GitHub Exploit DB Packet Storm