Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
671 7.1 重要
Local 		Gwenhael Goavec-Merou (trabucayre) openFPGALoader Gwenhael Goavec-Merou (trabucayre)のopenFPGALoaderにおける境界外読み取りに関する脆弱性 New CWE-125
境界外読み取り 		CVE-2026-35176 2026-04-30 12:08 2026-04-6 Show GitHub Exploit DB Packet Storm
672 6.5 警告
Network 		Coder Code Extension Marketplace CoderのCode Extension Marketplaceにおけるパストラバーサルの脆弱性 New CWE-22
パス・トラバーサル 		CVE-2026-35454 2026-04-30 12:07 2026-04-6 Show GitHub Exploit DB Packet Storm
673 9.8 緊急
Network 		SenseLive X3500 Firmware SenseLiveのX3500 Firmwareにおけるハードコードされた認証情報の使用に関する脆弱性 New CWE-798
ハードコードされた認証情報の使用 		CVE-2026-35503 2026-04-30 12:07 2026-04-24 Show GitHub Exploit DB Packet Storm
674 8.1 重要
Network 		SenseLive X3500 Firmware SenseLiveのX3500 Firmwareにおける認証情報の不十分な保護に関する脆弱性 New CWE-522
認証情報の不十分な保護 		CVE-2026-39462 2026-04-30 12:07 2026-04-24 Show GitHub Exploit DB Packet Storm
675 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおけるリソースのロックに関する脆弱性 New CWE-667
不適切なロック 		CVE-2026-31509 2026-04-30 11:07 2026-04-22 Show GitHub Exploit DB Packet Storm
676 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性 New CWE-476
NULL ポインタデリファレンス 		CVE-2026-31510 2026-04-30 11:07 2026-04-22 Show GitHub Exploit DB Packet Storm
677 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2026-31511 2026-04-30 11:06 2026-04-22 Show GitHub Exploit DB Packet Storm
678 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 New CWE-noinfo
情報不足 		CVE-2026-31512 2026-04-30 11:06 2026-04-22 Show GitHub Exploit DB Packet Storm
679 8.1 重要
Adjacent 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性 New CWE-125
境界外読み取り 		CVE-2026-31513 2026-04-30 11:06 2026-04-22 Show GitHub Exploit DB Packet Storm
680 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 New CWE-noinfo
情報不足 		CVE-2026-31514 2026-04-30 11:06 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313691 9.8 CRITICAL
Network 		acme thttpd Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows remote attackers to cause a denial of service and possibly execute arbitrary code. CWE-193
 Off-by-one Error 		CVE-2001-1496 2024-02-8 11:19 2001-12-31 Show GitHub Exploit DB Packet Storm
313692 9.8 CRITICAL
Network 		mbedthis appweb_http_server Mbedthis AppWeb HTTP server before 1.1.3 allows remote attackers to bypass access restrictions via a URI with mixed case characters. CWE-178
 Improper Handling of Case Sensitivity 		CVE-2004-2214 2024-02-8 11:12 2004-12-31 Show GitHub Exploit DB Packet Storm
313693 9.8 CRITICAL
Network 		novell edirectory Novell eDirectory 8.6.2 and 8.7 use case insensitive passwords, which makes it easier for remote attackers to conduct brute force password guessing. CWE-178
 Improper Handling of Case Sensitivity 		CVE-2002-2119 2024-02-8 11:12 2002-12-31 Show GitHub Exploit DB Packet Storm
313694 7.5 HIGH
Network 		apple quicktime_streaming_server
darwin_streaming_server
mac_os_x_server
mac_os_x 		Apache for Apple Mac OS X 10.2.8 and 10.3.6 restricts access to files in a case sensitive manner, but the Apple HFS+ filesystem accesses files in a case insensitive manner, which allows remote attack… CWE-178
 Improper Handling of Case Sensitivity 		CVE-2004-1083 2024-02-8 11:09 2004-12-3 Show GitHub Exploit DB Packet Storm
313695 - - - Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2024-22984 2024-02-8 05:15 2024-02-8 Show GitHub Exploit DB Packet Storm
313696 - cisco ios AAA authentication on Cisco systems allows attackers to execute commands without authorization. NVD-CWE-Other
CVE-1999-0293 2024-02-8 03:06 1998-01-1 Show GitHub Exploit DB Packet Storm
313697 - - - Rejected reason: We have rejected this CVE as it was determined a non-security issue by the vendor. - CVE-2023-5584 2024-02-7 00:15 2024-02-7 Show GitHub Exploit DB Packet Storm
313698 - postgresql postgresql The intagg contrib module for PostgreSQL 8.0.0 and earlier allows attackers to cause a denial of service (crash) via crafted arrays. NVD-CWE-Other
CVE-2005-0246 2024-02-6 04:56 2005-05-2 Show GitHub Exploit DB Packet Storm
313699 - - - Rejected reason: This candidate was in a CNA pool that was not assigned to any issues during 2023. - CVE-2023-47170 2024-02-5 14:15 2024-02-5 Show GitHub Exploit DB Packet Storm
313700 9.8 CRITICAL
Network 		pingtel xpressa_firmware Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 downloads phone applications from a web site but can not verify the integrity of the applications, which could allow remote attacke… CWE-494
 Download of Code Without Integrity Check 		CVE-2002-0671 2024-02-3 11:32 2002-07-23 Show GitHub Exploit DB Packet Storm