Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 2:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
541	6.5	警告 Network	pyLoad-ng project	pyLoad-ng	pyLoad-ng projectのpyLoad-ngにおける複数の脆弱性 New	CWE-22 CWE-36	CVE-2026-42315	2026-05-18 11:30	2026-05-11	Show	GitHub Exploit DB Packet Storm

542	7.5	重要 Network	mongoosejs	mongoose	mongoosejsのmongooseにおけるインジェクションに関する脆弱性 New	CWE-74 インジェクション	CVE-2026-42334	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

543	7.5	重要 Network	Getarcane	Arcane	GetarcaneのArcaneにおける認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2026-42461	2026-05-18 11:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

544	8.1	重要 Network	FIT2CLOUD	SQLBot	FIT2CLOUDのSQLBotにおけるユーザ制御の鍵による認証回避に関する脆弱性 New	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-42463	2026-05-18 11:30	2026-05-13	Show	GitHub Exploit DB Packet Storm

545	7.8	重要 Local	マイクロソフト	Microsoft Office	マイクロソフトのMicrosoft Officeにおけるヒープベースのバッファオーバーフローの脆弱性 New	CWE-122 ヒープオーバーフロー	CVE-2026-42831	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

546	5.5	警告 Local	マイクロソフト	Microsoft Word Microsoft Office Microsoft Excel	マイクロソフトのMicrosoft Excel等の複数製品におけるアクセス制御に関する脆弱性 New	CWE-284 CWE-noinfo	CVE-2026-42832	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

547	7.5	重要 Network	Espressif Systems	ESP32 Arduino	Espressif SystemsのESP32 Arduinoにおける認証に関する脆弱性 New	CWE-287 CWE-noinfo	CVE-2026-42855	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

548	6.1	警告 Network	マイクロソフト	Microsoft Exchange Server	マイクロソフトのMicrosoft Exchange Serverにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42897	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

549	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 New	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43286	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

550	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 New	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43287	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346271	-	sco	openserver	Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to (1) atcronsh, (2)…	NVD-CWE-Other	CVE-2001-1148	2017-07-11 10:29	2001-06-13	Show	GitHub Exploit DB Packet Storm

346272	-	citrix	ica_client	Citrix Independent Computing Architecture (ICA) Client for Windows 6.1 allows remote malicious web sites to execute arbitrary code via a .ICA file, which is downloaded and automatically executed by t…	NVD-CWE-Other	CVE-2001-1192	2017-07-11 10:29	2001-12-13	Show	GitHub Exploit DB Packet Storm

346273	-	zyxel	prestige_1600 prestige_681	Zyxel Prestige 681 and 1600 SDSL Routers allow remote attackers to cause a denial of service via malformed packets with (1) an IP length less than actual packet size, or (2) fragmented packets whose …	NVD-CWE-Other	CVE-2001-1194	2017-07-11 10:29	2001-12-14	Show	GitHub Exploit DB Packet Storm

346274	-	kde	kdeutils	klprfax_filter in KDE2 KDEUtils allows local users to overwrite arbitrary files via a symlink attack on the klprfax.filter temporary file.	NVD-CWE-Other	CVE-2001-1197	2017-07-11 10:29	2001-12-14	Show	GitHub Exploit DB Packet Storm

346275	-	total_pc_solutions	php_rocket_add-in	Directory traversal vulnerability in phprocketaddin in Total PC Solutions PHP Rocket Add-in for FrontPage 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the page parameter.	NVD-CWE-Other	CVE-2001-1204	2017-07-11 10:29	2001-12-28	Show	GitHub Exploit DB Packet Storm

346276	-	guiseppe_tanzilli_and_matthias_eckermann	mod_auth_pgsql	The PostgreSQL authentication modules (1) mod_auth_pgsql 0.9.5, and (2) mod_auth_pgsql_sys 0.9.4, allow remote attackers to bypass authentication and execute arbitrary SQL via a SQL injection attack …	NVD-CWE-Other	CVE-2001-1379	2017-07-11 10:29	2001-08-29	Show	GitHub Exploit DB Packet Storm

346277	-	ncompress	ncompress	Stack-based buffer overflow in the comprexx function for ncompress 4.2.4 and earlier, when used in situations that cross security boundaries (such as FTP server), may allow remote attackers to execut…	NVD-CWE-Other	CVE-2001-1413	2017-07-11 10:29	2004-12-23	Show	GitHub Exploit DB Packet Storm

346278	-	openbsd	openbsd	vi.recover in OpenBSD before 3.1 allows local users to remove arbitrary zero-byte files such as device nodes.	NVD-CWE-Other	CVE-2001-1415	2017-07-11 10:29	2001-11-13	Show	GitHub Exploit DB Packet Storm

346279	-	aol	instant_messenger	AOL Instant Messenger (AIM) 4.7 allows remote attackers to cause a denial of service (application hang or crash) via a buddy icon GIF file whose length and width values are larger than the actual ima…	NVD-CWE-Other	CVE-2001-1417	2017-07-11 10:29	2001-10-6	Show	GitHub Exploit DB Packet Storm

346280	-	aol	instant_messenger	AOL Instant Messenger (AIM) 4.7 allows remote attackers to cause a denial of service (application crash) via a malformed WAV file.	NVD-CWE-Other	CVE-2001-1418	2017-07-11 10:29	2001-10-6	Show	GitHub Exploit DB Packet Storm