Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
51 5.3 警告
Local 		OpenClaw OpenClaw OpenClawにおける不完全なブラックリストに関する脆弱性 CWE-184
不完全なブラックリスト 		CVE-2026-41332 2026-05-1 10:47 2026-04-23 Show GitHub Exploit DB Packet Storm
52 4.3 警告
Network 		OpenClaw OpenClaw OpenClawにおける認可されていない制御領域への重要情報の漏えいに関する脆弱性 CWE-497
認可されていない制御領域への重要情報の漏えい 		CVE-2026-41339 2026-05-1 10:47 2026-04-23 Show GitHub Exploit DB Packet Storm
53 5.3 警告
Network 		OpenClaw OpenClaw OpenClawにおける不適切な動作順序(早期増幅)に関する脆弱性 CWE-408
不適切な動作順序(早期増幅) 		CVE-2026-41374 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
54 4.6 警告
Adjacent 		OpenClaw OpenClaw OpenClawにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-41398 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
55 7.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-41399 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
56 7.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-41400 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
57 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおける誤って解決された名前や参照の使用に関する脆弱性 CWE-706
誤って解決された名前や参照の使用 		CVE-2026-41402 2026-05-1 10:46 2026-04-28 Show GitHub Exploit DB Packet Storm
58 9.8 緊急
Network 		Apache Software Foundation MINA Apache Software FoundationのMINAにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-41409 2026-05-1 10:46 2026-04-27 Show GitHub Exploit DB Packet Storm
59 3.3
Local 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-4159 2026-05-1 10:46 2026-03-19 Show GitHub Exploit DB Packet Storm
60 9.8 緊急
Network 		Apache Software Foundation MINA Apache Software FoundationのMINAにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-41635 2026-05-1 10:46 2026-04-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313221 7.1 HIGH
Local 		schroepl mod_gzip mod_gzip 1.3.26.1a and earlier, and possibly later official versions, when running in debug mode without the Apache log, allows local users to overwrite arbitrary files via (1) a symlink attack on pr… CWE-59
Link Following 		CVE-2003-0844 2024-02-17 05:29 2003-11-17 Show GitHub Exploit DB Packet Storm
313222 9.8 CRITICAL
Network 		pedestalsoftware integrity_protection_driver Pedestal Software Integrity Protection Driver (IPD) 1.3 and earlier allows privileged attackers, such as rootkits, to bypass file access restrictions to the Windows kernel by using the NtCreateSymbol… CWE-59
Link Following 		CVE-2003-1233 2024-02-17 04:01 2003-12-31 Show GitHub Exploit DB Packet Storm
313223 - - - Rejected reason: Erroneous assignement - CVE-2024-1515 2024-02-17 03:15 2024-02-17 Show GitHub Exploit DB Packet Storm
313224 - - - Rejected reason: Erroneous assignment - CVE-2024-1444 2024-02-17 02:15 2024-02-17 Show GitHub Exploit DB Packet Storm
313225 7.5 HIGH
Network 		ethereal
debian 		ethereal
debian_linux 		SMB dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via malformed packets that cause Ethereal to dereference a NULL poin… CWE-476
 NULL Pointer Dereference 		CVE-2002-0401 2024-02-17 02:07 2002-06-18 Show GitHub Exploit DB Packet Storm
313226 7.5 HIGH
Network 		linux linux_kernel xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the name_index fields when sharing xattr blocks, which could prevent default ACLs from being applied. CWE-697
 Incorrect Comparison 		CVE-2005-2801 2024-02-17 01:53 2005-09-7 Show GitHub Exploit DB Packet Storm
313227 9.8 CRITICAL
Network 		freebsd freebsd TCP Wrappers (tcp_wrappers) in FreeBSD 4.1.1 through 4.3 with the PARANOID ACL option enabled does not properly check the result of a reverse DNS lookup, which could allow remote attackers to bypass … CWE-863
 Incorrect Authorization 		CVE-2001-1155 2024-02-17 01:51 2001-08-23 Show GitHub Exploit DB Packet Storm
313228 5.5 MEDIUM
Local 		openbsd openbsd The uipc system calls (uipc_syscalls.c) in OpenBSD 2.9 and 3.0 provide user mode return instead of versus rval kernel mode values to the fdrelease function, which allows local users to cause a denial… CWE-476
 NULL Pointer Dereference 		CVE-2001-1559 2024-02-16 23:16 2001-12-31 Show GitHub Exploit DB Packet Storm
313229 7.1 HIGH
Local 		ibm db2_universal_database Shared memory sections and events in IBM DB2 8.1 have default permissions of read and write for the Everyone group, which allows local users to gain unauthorized access, gain sensitive information, s… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2005-4868 2024-02-16 23:10 2005-12-31 Show GitHub Exploit DB Packet Storm
313230 7.5 HIGH
Network 		microsoft windows_xp
windows_2000
windows_server_2003 		The Negotiate Security Software Provider (SSP) interface in Windows 2000, Windows XP, and Windows Server 2003, allows remote attackers to cause a denial of service (crash from null dereference) or ex… CWE-476
 NULL Pointer Dereference 		CVE-2004-0119 2024-02-16 06:44 2004-06-1 Show GitHub Exploit DB Packet Storm