Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1541 7.5 重要
Network 		Mosaic5G Flexric Mosaic5GのFlexricにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-37235 2026-06-5 10:51 2026-06-1 Show GitHub Exploit DB Packet Storm
1542 4.9 警告
Network 		MacGregor Interschalt VDR G4e Firmware MacGregorのInterschalt VDR G4e Firmwareにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2026-40425 2026-06-5 10:51 2026-05-29 Show GitHub Exploit DB Packet Storm
1543 7.5 重要
Network 		bitwiseshiftleft Stanford Javascript Crypto Library bitwiseshiftleftのStanford Javascript Crypto Libraryにおける複数の脆弱性 CWE-325
CWE-347
CVE-2026-4258 2026-06-5 10:51 2026-03-17 Show GitHub Exploit DB Packet Storm
1544 9.9 緊急
Network 		Linux Foundation CloudNativePG Linux FoundationのCloudNativePGにおける複数の脆弱性 CWE-250
CWE-271
CWE-426
CVE-2026-44477 2026-06-5 10:51 2026-05-28 Show GitHub Exploit DB Packet Storm
1545 9.6 緊急
Network 		John Pettitt (jpettitt) MeshCore Card John Pettitt (jpettitt)のMeshCore Cardにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-45323 2026-06-5 10:51 2026-05-28 Show GitHub Exploit DB Packet Storm
1546 6.5 警告
Network 		Spring AI Community MCP Security Spring AI CommunityのMCP Securityにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-45609 2026-06-5 10:51 2026-05-29 Show GitHub Exploit DB Packet Storm
1547 5.5 警告
Local 		opentelemetry eBPF Instrumentation opentelemetryのeBPF Instrumentationにおける複数の脆弱性 CWE-20
CWE-248
CVE-2026-45676 2026-06-5 10:51 2026-06-2 Show GitHub Exploit DB Packet Storm
1548 7.5 重要
Network 		opentelemetry eBPF Instrumentation opentelemetryのeBPF Instrumentationにおける複数の脆弱性 CWE-20
CWE-754
CVE-2026-45678 2026-06-5 10:51 2026-06-2 Show GitHub Exploit DB Packet Storm
1549 6.5 警告
Network 		opentelemetry eBPF Instrumentation opentelemetryのeBPF Instrumentationにおける複数の脆弱性 CWE-117
CWE-532
CVE-2026-45679 2026-06-5 10:51 2026-06-2 Show GitHub Exploit DB Packet Storm
1550 7.5 重要
Network 		opentelemetry eBPF Instrumentation opentelemetryのeBPF Instrumentationにおける複数の脆弱性 CWE-400
CWE-834
CVE-2026-45680 2026-06-5 10:50 2026-06-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344551 - linux linux_kernel Linux kernel 2.2.x allows local users to cause a denial of service (crash) by using the mmap() function with a PROT_READ parameter to access non-readable memory pages through the /proc/pid/mem interf… NVD-CWE-Other
CVE-2002-1380 2018-05-3 10:29 2002-12-23 Show GitHub Exploit DB Packet Storm
344552 - easy_software_products
xpdf 		cups
xpdf 		Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as … NVD-CWE-Other
CVE-2002-1384 2018-05-3 10:29 2003-01-2 Show GitHub Exploit DB Packet Storm
344553 - php php Heap-based buffer overflow in the wordwrap function in PHP after 4.1.2 and before 4.3.0 may allow attackers to cause a denial of service or execute arbitrary code. NVD-CWE-Other
CVE-2002-1396 2018-05-3 10:29 2003-01-17 Show GitHub Exploit DB Packet Storm
344554 - nulllogic null_httpd Cross-site scripting (XSS) vulnerability in Null HTTP Server 0.5.0 and earlier allows remote attackers to insert arbitrary HTML into a "404 Not Found" response. NVD-CWE-Other
CVE-2002-1497 2018-05-3 10:29 2003-04-2 Show GitHub Exploit DB Packet Storm
344555 - microsoft remote_desktop_connection
windows_terminal_services_using_rdp 		Microsoft Terminal Server using Remote Desktop Protocol (RDP) 5.2 stores an RSA private key in mstlsapi.dll and uses it to sign a certificate, which allows remote attackers to spoof public keys of le… NVD-CWE-Other
CVE-2005-1794 2018-03-28 10:29 2005-06-1 Show GitHub Exploit DB Packet Storm
344556 - easy_software_products cups The Internet Printing Protocol (IPP) implementation in CUPS before 1.1.21 allows remote attackers to cause a denial of service (service hang) via a certain UDP packet to the IPP port. NVD-CWE-Other
CVE-2004-0558 2018-03-13 10:29 2004-09-28 Show GitHub Exploit DB Packet Storm
344557 - wikyblog wikyblog Cross-site scripting (XSS) vulnerability in index.php/Special/Main/Templates in WikyBlog 1.7.2 and 1.7.3 rc2 allows remote attackers to inject arbitrary web script or HTML via the which parameter in … CWE-79
Cross-site Scripting 		CVE-2010-0754 2018-01-13 11:29 2010-02-27 Show GitHub Exploit DB Packet Storm
344558 - microsoft internet_information_server Microsoft IIS for Far East editions 4.0 and 5.0 allows remote attackers to read source code for parsed pages via a malformed URL that uses the lead-byte of a double-byte character. NVD-CWE-Other
CVE-2000-1090 2018-01-12 01:57 2001-02-12 Show GitHub Exploit DB Packet Storm
344559 - mysql mysql The mysql_uninstall_plugin function in sql/sql_plugin.cc in MySQL 5.1 before 5.1.46 does not check privileges before uninstalling a plugin, which allows remote attackers to uninstall arbitrary plugin… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-1621 2018-01-5 11:29 2010-05-15 Show GitHub Exploit DB Packet Storm
344560 - realnetworks helix_universal_server Multiple buffer overflows in RealNetworks Helix Universal Server 9.0 (9.0.2.768) allow remote attackers to execute arbitrary code via (1) a long Transport field in a SETUP RTSP request, (2) a DESCRIB… NVD-CWE-Other
CVE-2002-1643 2017-12-23 11:29 2002-12-19 Show GitHub Exploit DB Packet Storm