Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1231	5.4	警告 Network	Apache Software Foundation	Apache Shiro	Apache Software FoundationのApache Shiroにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-48589	2026-06-3 15:39	2026-05-25	Show	GitHub Exploit DB Packet Storm

1232	9.8	緊急 Network	DAEMON Tools	DAEMON Tools	Disc Soft LtdのDAEMON Toolsにおける埋め込まれた悪意のあるコードに関する脆弱性	CWE-506 埋め込まれた悪意のあるコード	CVE-2026-8398	2026-06-3 15:38	2026-05-15	Show	GitHub Exploit DB Packet Storm

1233	5.4	警告 Network	Synology Inc.	Contacts	Synology Inc.のContactsにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-13167	2026-06-3 15:38	2026-05-27	Show	GitHub Exploit DB Packet Storm

1234	5.5	警告 Local	Libusb	Libusb	Libusbにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-23679	2026-06-3 15:38	2026-05-27	Show	GitHub Exploit DB Packet Storm

1235	7.8	重要 Local	MediaArea.net SARL	MediaInfoLib	MediaArea.net SARLのMediaInfoLibにおける整数アンダーフローの脆弱性	CWE-191 整数アンダーフロー	CVE-2026-25104	2026-06-3 15:38	2026-05-26	Show	GitHub Exploit DB Packet Storm

1236	7.8	重要 Local	MediaArea.net SARL	MediaInfoLib	MediaArea.net SARLのMediaInfoLibにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-25713	2026-06-3 15:38	2026-05-26	Show	GitHub Exploit DB Packet Storm

1237	5.3	警告 Network	Espen Hovlandsdal (rexxars)	eventsource-encoder	Espen Hovlandsdal (rexxars)のeventsource-encoderにおける複数の脆弱性	CWE-113 CWE-93	CVE-2026-44214	2026-06-3 15:38	2026-05-26	Show	GitHub Exploit DB Packet Storm

1238	6.1	警告 Network	Nitro	Nitro	Nitroにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-44372	2026-06-3 15:38	2026-05-13	Show	GitHub Exploit DB Packet Storm

1239	5.3	警告 Network	Nitro	Nitro	Nitroにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-44373	2026-06-3 15:38	2026-05-13	Show	GitHub Exploit DB Packet Storm

1240	7.5	重要 Network	Lookyloo	Playwright Capture	LookylooのPlaywright Captureにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-44439	2026-06-3 15:38	2026-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345021	-	tightvnc	tightvnc	TightVNC before 1.2.6 generates the same challenge string for multiple connections, which allows remote attackers to bypass VNC authentication by sniffing the challenge and response of other users.	NVD-CWE-Other	CVE-2002-1336	2017-10-10 10:30	2002-12-11	Show	GitHub Exploit DB Packet Storm

345022	-	sun	cobalt_raq_4	overflow.cgi CGI script in Sun Cobalt RaQ 4 with the SHP (Security Hardening Patch) installed allows remote attackers to execute arbitrary code via a POST request with shell metacharacters in the ema…	NVD-CWE-Other	CVE-2002-1361	2017-10-10 10:30	2002-12-23	Show	GitHub Exploit DB Packet Storm

345023	-	matthew_smith	micq	mICQ 0.4.9 and earlier allows remote attackers to cause a denial of service (crash) via malformed ICQ message types without a 0xFE separator character.	NVD-CWE-Other	CVE-2002-1362	2017-10-10 10:30	2002-12-23	Show	GitHub Exploit DB Packet Storm

345024	-	greg_roelofs	libpng	Portable Network Graphics (PNG) library libpng 1.2.5 and earlier does not correctly calculate offsets, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrar…	NVD-CWE-Other	CVE-2002-1363	2017-10-10 10:30	2002-12-26	Show	GitHub Exploit DB Packet Storm

345025	-	ehud_gavron	tracesroute	Buffer overflow in the get_origin function in traceroute-nanog allows attackers to execute arbitrary code via long WHOIS responses.	NVD-CWE-Other	CVE-2002-1364	2017-10-10 10:30	2002-12-23	Show	GitHub Exploit DB Packet Storm

345026	-	easy_software_products apple	cups mac_os_x	Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows local users with lp privileges to create or overwrite arbitrary files via file race conditions, as demonstrated by ice-cream.	NVD-CWE-Other	CVE-2002-1366	2017-10-10 10:30	2002-12-26	Show	GitHub Exploit DB Packet Storm

345027	-	easy_software_products apple	cups mac_os_x	Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP packet, which can then be used to perform unauthorized activi…	NVD-CWE-Other	CVE-2002-1367	2017-10-10 10:30	2002-12-26	Show	GitHub Exploit DB Packet Storm

345028	-	easy_software_products apple	cups mac_os_x	jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing the options string, which allows remote attackers to execute arbitra…	NVD-CWE-Other	CVE-2002-1369	2017-10-10 10:30	2002-12-26	Show	GitHub Exploit DB Packet Storm

345029	-	easy_software_products apple	cups mac_os_x	filters/image-gif.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modifie…	NVD-CWE-Other	CVE-2002-1371	2017-10-10 10:30	2002-12-26	Show	GitHub Exploit DB Packet Storm

345030	-	vim_development_group	vim	vim 6.0 and 6.1, and possibly other versions, allows attackers to execute arbitrary commands using the libcall feature in modelines, which are not sandboxed but may be executed when vim is used to ed…	NVD-CWE-Other	CVE-2002-1377	2017-10-10 10:30	2002-12-23	Show	GitHub Exploit DB Packet Storm