Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1651	7.1	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-46020	2026-06-17 15:41	2026-05-27	Show	GitHub Exploit DB Packet Storm

1652	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-46021	2026-06-17 15:41	2026-05-27	Show	GitHub Exploit DB Packet Storm

1653	7.1	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-46022	2026-06-17 15:41	2026-05-27	Show	GitHub Exploit DB Packet Storm

1654	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-46023	2026-06-17 15:41	2026-05-27	Show	GitHub Exploit DB Packet Storm

1655	7.5	重要 Network	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-46024	2026-06-17 15:41	2026-05-27	Show	GitHub Exploit DB Packet Storm

1656	4.7	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-46025	2026-06-17 15:41	2026-05-27	Show	GitHub Exploit DB Packet Storm

1657	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-46026	2026-06-17 15:41	2026-05-27	Show	GitHub Exploit DB Packet Storm

1658	7.5	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-46027	2026-06-17 15:41	2026-05-27	Show	GitHub Exploit DB Packet Storm

1659	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-46028	2026-06-17 15:41	2026-05-27	Show	GitHub Exploit DB Packet Storm

1660	7	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-46029	2026-06-17 15:41	2026-05-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
921	7.5	HIGH Network	-	-	The Setracker2 Android Companion App (com.tgelec.setracker) versions 3.1.5 and earlier uses MD5 to generate a request signature for authenticating communications between the mobile client and the bac…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2026-9221	2026-06-26 22:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

922	-		-	-	An access control deficiency vulnerability exists in ExpressUpdate Agent for Windows. If a malicious user gains access to the product, arbitrary code could be executed with SYSTEM privileges.	CWE-782 Exposed IOCTL with Insufficient Access Control	CVE-2026-8797	2026-06-26 22:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

923	4.8	MEDIUM Network	-	-	Server-Side Cross-Site Scripting and Server-Side Request Forgery vulnerability in the markdown_to_pdf action of Rapid7 InsightConnect Markdown Plugin version 3.1.4 and earlier on Linux allows remote …	CWE-79 CWE-918 Cross-site Scripting Server-Side Request Forgery (SSRF)	CVE-2026-8661	2026-06-26 22:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

924	7.1	HIGH Network	-	-	libnfs through 6.0.2 before 935b8db has an xid integer underflow in READ_IOVEC in rpc_read_from_socket in lib/socket.c during a connection to a crafted NFS server, when the expected pdu size exceeds …	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2026-57918	2026-06-26 22:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

925	-		-	-	A Code Injection vulnerability existed in Trellix Network Security CM and NX. A locally authenticated admin user can execute arbitrary code using the web interface and Alert artifact details.	CWE-94 Code Injection	CVE-2025-7958	2026-06-26 22:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

926	9.8	CRITICAL Network	jetbrains	hub	In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 account takeover via predictable restore codes was possible	CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2026-56141	2026-06-26 22:10	2026-06-19	Show	GitHub Exploit DB Packet Storm

927	8.8	HIGH Network	jetbrains	hub	In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 privilege escalation by attaching authentication details to accounts was possible	CWE-915 Improperly Controlled Modification of Dynamically-Determined Object Attributes	CVE-2026-56142	2026-06-26 22:06	2026-06-19	Show	GitHub Exploit DB Packet Storm

928	7.8	HIGH Local	anydesk	anydesk	AnyDesk 2.5.0 contains an unquoted service path vulnerability that allows local users to execute arbitrary code with SYSTEM privileges by exploiting the service installation. Attackers can insert mal…	CWE-428 Unquoted Search Path or Element	CVE-2016-20094	2026-06-26 22:02	2026-06-20	Show	GitHub Exploit DB Packet Storm

929	7.8	HIGH Local	malwarebytes	malwarebytes	Malwarebytes 4.5 contains an unquoted service path vulnerability in the MBAMService executable that allows local attackers to escalate privileges by injecting malicious code into the system root path…	CWE-428 Unquoted Search Path or Element	CVE-2022-50971	2026-06-26 21:59	2026-06-20	Show	GitHub Exploit DB Packet Storm

930	6.5	MEDIUM Network	struktur	libheif	libheif is a HEIF and AVIF file format decoder and encoder. Prior to version 1.22.1, the uncompressed HEIF decoder validates explicit icef compressed-unit offsets using unit_offset + unit_size. Becau…	CWE-125 Out-of-bounds Read	CVE-2026-49271	2026-06-26 21:33	2026-06-20	Show	GitHub Exploit DB Packet Storm