Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
661 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows WAN ARP Driver Elevation of Privilege Vulnerability CWE-416
解放済みメモリの使用 		CVE-2026-40408 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
662 7 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows SMB クライアントの特権の昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40410 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
663 9.6 緊急
Network 		TanStack tanstack/react-start-rsc
@tanstack/router-devtools-core
@tanstack/router-utils
@tanstack/react-router-devtools
@tanstack/valibot-adapter
@tanstack/zod-adapter
@tanstack/vue-start-se… 		TanStackの@tanstack/arktype-adapter等の複数製品における埋め込まれた悪意のあるコードに関する脆弱性 CWE-506
埋め込まれた悪意のあるコード 		CVE-2026-45321 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
664 6.5 警告
Network 		IBM
HCL Technologies Limited		 BigFix WebUI Reports
BigFix WebUI Common
BigFix WebUI API
BigFix WebUI Framework
BigFix WebUI Profile Management
BigFix WebU… 		HCL Technologies LimitedのBigFix WebUI API等の複数製品における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2025-15633 2026-05-18 12:06 2026-05-9 Show GitHub Exploit DB Packet Storm
665 4.3 警告
Network 		IBM
HCL Technologies Limited		 BigFix WebUI Reports
BigFix WebUI Common
BigFix WebUI API
BigFix WebUI Framework
BigFix WebUI Profile Management
BigFix WebU… 		HCL Technologies LimitedのBigFix WebUI API等の複数製品における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2025-15634 2026-05-18 12:06 2026-05-9 Show GitHub Exploit DB Packet Storm
666 4.9 警告
Network 		Buffalo Americas, Inc. TeraStation NAS TS5400R Firmware Buffalo Americas, Inc.のTeraStation NAS TS5400R Firmwareにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2026-29516 2026-05-18 12:06 2026-03-16 Show GitHub Exploit DB Packet Storm
667 6.5 警告
Network 		Mem0 mem0 Mem0のmem0における複数の脆弱性 CWE-306
CWE-862
CVE-2026-31241 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
668 9.1 緊急
Network 		Mem0 mem0 Mem0のmem0における複数の脆弱性 CWE-306
CWE-862
CVE-2026-31242 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
669 6.5 警告
Network 		Mem0 mem0 Mem0のmem0における複数の脆弱性 CWE-306
CWE-862
CVE-2026-31243 2026-05-18 12:05 2026-05-12 Show GitHub Exploit DB Packet Storm
670 6.5 警告
Network 		Mem0 mem0 Mem0のmem0における複数の脆弱性 CWE-306
CWE-862
CVE-2026-31244 2026-05-18 12:05 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
352901 - log2mail log2mail Buffer overflow in log2mail before 0.2.5.1 allows remote attackers to execute arbitrary code via a long log message. NVD-CWE-Other
CVE-2002-1251 2008-09-6 05:30 2002-11-12 Show GitHub Exploit DB Packet Storm
352902 - abuse abuse Abuse 2.00 and earlier allows local users to gain privileges via command line arguments that specify alternate Lisp scripts that run at escalated privileges, which can contain functions that execute … NVD-CWE-Other
CVE-2002-1253 2008-09-6 05:30 2002-11-12 Show GitHub Exploit DB Packet Storm
352903 - apple mac_os_x Unknown vulnerability in NetInfo Manager application in Mac OS X 10.2.2 allows local users to access restricted parts of a filesystem. NVD-CWE-Other
CVE-2002-1269 2008-09-6 05:30 2002-12-11 Show GitHub Exploit DB Packet Storm
352904 - squirrelmail squirrelmail An incomplete fix for a cross-site scripting (XSS) vulnerability in SquirrelMail 1.2.8 calls the strip_tags function on the PHP_SELF value but does not save the result back to that variable, leaving … NVD-CWE-Other
CVE-2002-1276 2008-09-6 05:30 2002-11-29 Show GitHub Exploit DB Packet Storm
352905 - windowmaker windowmaker Buffer overflow in Window Maker (wmaker) 0.80.0 and earlier may allow remote attackers to execute arbitrary code via a certain image file that is not properly handled when Window Maker uses width and… NVD-CWE-Other
CVE-2002-1277 2008-09-6 05:30 2002-11-12 Show GitHub Exploit DB Packet Storm
352906 - hp hp-ux Unknown vulnerability in passwd for VVOS HP-UX 11.04, with unknown impact, related to "Unexpected behavior." NVD-CWE-Other
CVE-2002-1406 2008-09-6 05:30 2003-04-11 Show GitHub Exploit DB Packet Storm
352907 - hp openview_emanate_snmp_agent
vvos 		Unknown vulnerability or vulnerabilities in HP OpenView EMANATE 14.2 snmpModules allow the SNMP read-write community name to be exposed, related to (1) "'read-only' community access," and/or (2) an e… NVD-CWE-Other
CVE-2002-1408 2008-09-6 05:30 2003-04-11 Show GitHub Exploit DB Packet Storm
352908 - ben_chivers
easy_scripts_archive 		ben_chivers_guestbook
easy_guestbook 		Easy Guestbook CGI programs do not authenticate the administrator, which allows remote attackers to (1) delete entries via direct access of admin.cgi, or (2) reconfigure Guestbook via direct access o… NVD-CWE-Other
CVE-2002-1410 2008-09-6 05:30 2003-04-11 Show GitHub Exploit DB Packet Storm
352909 - duma photo_gallery_system Directory traversal vulnerability in update.dpgs in Duma Photo Gallery System (DPGS) 0.99.4 allows remote attackers to read arbitrary files via .. (dot dot) sequences in the id parameter. NVD-CWE-Other
CVE-2002-1411 2008-09-6 05:30 2003-04-11 Show GitHub Exploit DB Packet Storm
352910 - novell netware RCONAG6 for Novell Netware SP2, while running RconJ in secure mode, allows remote attackers to bypass authentication using the RconJ "Secure IP" (SSL) option during a connection. NVD-CWE-Other
CVE-2002-1413 2008-09-6 05:30 2003-04-11 Show GitHub Exploit DB Packet Storm