Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1051 4.3 警告
Network 		Kostyasha Github Integration KostyashaのGithub Integrationにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-48925 2026-06-3 15:38 2026-05-27 Show GitHub Exploit DB Packet Storm
1052 5.5 警告
Network 		Jenkins プロジェクト buildgraph-view Jenkinsのbuildgraph-viewにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-48927 2026-06-3 15:38 2026-05-27 Show GitHub Exploit DB Packet Storm
1053 6.5 警告
Network 		IBM IBM i IBMのIBM Iにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-6936 2026-06-3 15:38 2026-05-27 Show GitHub Exploit DB Packet Storm
1054 2.7
Network 		Synology Inc. Surveillance Station Synology Inc.のSurveillance Stationにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2024-47267 2026-06-3 15:38 2026-05-27 Show GitHub Exploit DB Packet Storm
1055 4.9 警告
Network 		Synology Inc. Surveillance Station Synology Inc.のSurveillance Stationにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-47268 2026-06-3 15:38 2026-05-27 Show GitHub Exploit DB Packet Storm
1056 4.9 警告
Network 		Synology Inc. Surveillance Station Synology Inc.のSurveillance Stationにおける重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2024-47269 2026-06-3 15:37 2026-05-27 Show GitHub Exploit DB Packet Storm
1057 2.7
Network 		Synology Inc. Surveillance Station Synology Inc.のSurveillance Stationにおけるパーミッションの不適切な保持に関する脆弱性 CWE-281
パーミッションの不適切な保持 		CVE-2024-47270 2026-06-3 15:37 2026-05-27 Show GitHub Exploit DB Packet Storm
1058 4.9 警告
Network 		Synology Inc. Surveillance Station Synology Inc.のSurveillance Stationにおける認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2024-47271 2026-06-3 15:37 2026-05-27 Show GitHub Exploit DB Packet Storm
1059 2.7
Network 		Synology Inc. Surveillance Station Synology Inc.のSurveillance Stationにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2024-47272 2026-06-3 15:37 2026-05-27 Show GitHub Exploit DB Packet Storm
1060 4.3 警告
Network 		IBM IBM Business Automation Workflow IBMのIBM Business Automation Workflowにおけるエラーメッセージによる情報漏えいに関する脆弱性 CWE-209
エラーメッセージによる情報漏えい 		CVE-2026-1248 2026-06-3 15:37 2026-05-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
41 7.8 HIGH
Local 		- - InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploi… New CWE-121
Stack-based Buffer Overflow 		CVE-2026-34697 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm
42 7.8 HIGH
Local 		- - InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of thi… New CWE-416
 Use After Free 		CVE-2026-34696 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm
43 7.8 HIGH
Local 		- - InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploi… New CWE-121
Stack-based Buffer Overflow 		CVE-2026-34695 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm
44 5.9 MEDIUM
Network 		- - Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high-privileged attacker to injec… New CWE-79
Cross-site Scripting 		CVE-2026-34694 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm
45 8.0 HIGH
Network 		- - Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this vulnerability to inject … New CWE-79
Cross-site Scripting 		CVE-2026-34693 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm
46 9.3 CRITICAL
Network 		- - Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scr… New CWE-79
Cross-site Scripting 		CVE-2026-34691 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm
47 - - - Unrestricted resource allocation in AMD uProf may be exploitable to consume excessive system resources, potentially leading to a loss of availability. New CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-28237 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm
48 8.8 HIGH
Network 		google chrome Out of bounds read and write in V8 in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: … New CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2026-11645 2026-06-10 03:16 2026-06-9 Show GitHub Exploit DB Packet Storm
49 - - - Improper access control in AMD uProf may allow a local attacker with user privileges to write to the kernel-shared memory section, potentially resulting in crash or denial of service. New CWE-497
 Exposure of Sensitive System Information to an Unauthorized Control Sphere 		CVE-2026-0466 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm
50 - - - Improper access control for register interface in the input-output memory management unit (IOMMU) could allow a privileged attacker to cause non-coherent accesses by the AMD secure processor (ASP) po… New CWE-1262
 Improper Access Control for Register Interface 		CVE-2025-54509 2026-06-10 03:16 2026-06-10 Show GitHub Exploit DB Packet Storm