Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1041	4.8	警告 Network	F5 Networks	WAF NGINX Gateway Fabric DoS NGINX Instance Manager NGINX Ingress Controller NGINX plus nginx open source	F5 NetworksのDoS等の複数製品における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-48142	2026-06-23 10:00	2026-06-17	Show	GitHub Exploit DB Packet Storm

1042	8.1	重要 Network	F5 Networks	NGINX Gateway Fabric	F5 NetworksのNGINX Gateway Fabricにおけるインジェクションに関する脆弱性	CWE-74 インジェクション	CVE-2026-50107	2026-06-23 10:00	2026-06-17	Show	GitHub Exploit DB Packet Storm

1043	-	-	三菱電機	MELSEC iQ-Fシリーズ FX5-ENET/IP形Ethernetユニット MELSEC iQ-F FX5-EIP形EtherNet/IPユニット	三菱電機製MELSEC iQ-FシリーズのFX5-EIPおよびFX5-ENET/IPにおける脆弱性	CWE-190 CWE-440	CVE-2026-8805 CVE-2026-8806	2026-06-22 18:05	2026-06-19	Show	GitHub Exploit DB Packet Storm

1044	-	-	（複数のベンダ）	（複数の製品）	Vendor-signed UEFIアプリケーションにおけるセキュアブートバイパスの脆弱性	-	-	2026-06-22 17:17	2026-06-19	Show	GitHub Exploit DB Packet Storm

1045	-	-	（複数のベンダ）	（複数の製品）	CISA ICS Advisory / ICS Medical Advisory（2026年06月18日）	-	-	2026-06-22 17:17	2026-06-19	Show	GitHub Exploit DB Packet Storm

1046	8.4	重要 Local	マイクロソフト	Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch…	Microsoft Office のリモートコードが実行される脆弱性	CWE-416 CWE-787	CVE-2026-45474	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

1047	7.8	重要 Local	マイクロソフト	Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch…	Microsoft Office のリモートコードが実行される脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-45475	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

1048	5.4	警告 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft Office Project Server のなりすましの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45483	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

1049	7.8	重要 Local	マイクロソフト	.NET	.NET SDK の特権昇格の脆弱性	CWE-285 CWE-863	CVE-2026-45490	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

1050	5.5	警告 Local	マイクロソフト	.NET	.NET の改ざんの脆弱性	CWE-59 リンク解釈の問題	CVE-2026-45491	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
362491	-	ssh	ssh	A race condition in the authentication agent mechanism of sshd 1.2.17 allows an attacker to steal another user's credentials.	NVD-CWE-Other	CVE-1999-0248	2008-09-6 05:16	1999-01-1	Show	GitHub Exploit DB Packet Storm

362492	-	freebsd	freebsd	Buffer overflow in FreeBSD lpd through long DNS hostnames.	NVD-CWE-Other	CVE-1999-0299	2008-09-6 05:16	1997-03-5	Show	GitHub Exploit DB Packet Storm

362493	-	futuresoft	tftp_server_2000	Multiple stack-based buffer overflows in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allow remote attackers to execute arbitrary code via a long (1) filename or (2) transfer mode string in a Re…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2005-1812	2008-09-5 13:00	2005-06-1	Show	GitHub Exploit DB Packet Storm

362494	-	futuresoft	tftp_server_2000	Directory traversal vulnerability in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allows remote attackers to read arbitrary files via a TFTP GET request containing (1) "../" (dot dot slash) or (…	CWE-22 Path Traversal	CVE-2005-1813	2008-09-5 13:00	2005-06-1	Show	GitHub Exploit DB Packet Storm

362495	-	apache	derby	Apache Derby before 10.1.2.1 exposes the (1) user and (2) password attributes in cleartext via (a) the RDBNAM parameter of the ACCSEC command and (b) the output of the DatabaseMetaData.getURL functio…	CWE-200 Information Exposure	CVE-2005-4849	2008-09-5 13:00	2005-12-31	Show	GitHub Exploit DB Packet Storm

362496	-	macromedia	jrun	Session fixation vulnerability in Macromedia JRun 4.0 allows remote attackers to hijack user sessions by pre-setting the user session ID information used by the session server.	CWE-287 Improper Authentication	CVE-2004-2182	2008-09-5 13:00	2004-12-31	Show	GitHub Exploit DB Packet Storm

362497	-	intersystems	cache	Unspecified vulnerability in the %XML.Utils.SchemaServer class in InterSystems Cache' 5.0 allows attackers to access arbitrary files on a server.	NVD-CWE-noinfo	CVE-2004-2683	2008-09-5 13:00	2004-12-31	Show	GitHub Exploit DB Packet Storm

362498	-	intersystems	cache_database	Unspecified vulnerability in the %template package in InterSystems Cache' 5.0 allows attackers to access certain files on a server, including (1) cache.key and (2) cache.dat, related to .csp files un…	NVD-CWE-noinfo	CVE-2004-2684	2008-09-5 13:00	2004-12-31	Show	GitHub Exploit DB Packet Storm

362499	-	apple samba	xcode samba	distcc 2.x, as used in XCode 1.5 and others, when not configured to restrict access to the server port, allows remote attackers to execute arbitrary commands via compilation jobs, which are executed …	CWE-16 Configuration	CVE-2004-2687	2008-09-5 13:00	2004-12-31	Show	GitHub Exploit DB Packet Storm

362500	-	aspdotnetstorefront	aspdotnetstorefront	Unrestricted file upload vulnerability in AspDotNetStorefront 3.3 allows remote authenticated administrators to upload arbitrary files with executable extensions via admin/images.aspx.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2004-2700	2008-09-5 13:00	2004-12-31	Show	GitHub Exploit DB Packet Storm