Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1811 4.3 警告
Network 		HCL Technologies Limited HCL iControl HCL Technologies LimitedのHCL iControlにおけるエラーメッセージによる情報漏えいに関する脆弱性 CWE-209
エラーメッセージによる情報漏えい 		CVE-2025-52611 2026-06-8 11:49 2026-06-4 Show GitHub Exploit DB Packet Storm
1812 8.8 重要
Network 		HCL Technologies Limited HCL iControl HCL Technologies LimitedのHCL iControlにおけるCSV ファイル内の数式要素の中和に関する脆弱性 CWE-1236
CSV ファイル内の数式要素の不適切な中和 		CVE-2025-52612 2026-06-8 11:49 2026-06-4 Show GitHub Exploit DB Packet Storm
1813 7.5 重要
Network 		Open JS Foundation Node Version Manager (NVM) Open JS FoundationのNode Version Manager (NVM)におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-10796 2026-06-8 11:49 2026-06-4 Show GitHub Exploit DB Packet Storm
1814 7.8 重要
Local 		NVIDIA transformers4rec NVIDIAのtransformers4recにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-24162 2026-06-8 11:49 2026-05-26 Show GitHub Exploit DB Packet Storm
1815 7.8 重要
Local 		NVIDIA NVTabular NVIDIAのNVTabularにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-24221 2026-06-8 11:49 2026-06-2 Show GitHub Exploit DB Packet Storm
1816 7.8 重要
Local 		NVIDIA NVTabular NVIDIAのNVTabularにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-24237 2026-06-8 11:49 2026-06-2 Show GitHub Exploit DB Packet Storm
1817 6.8 警告
Network 		SWUpdate SWUpdate SWUpdateにおける複数の脆弱性 CWE-125
CWE-191
CVE-2026-28525 2026-06-8 11:49 2026-04-23 Show GitHub Exploit DB Packet Storm
1818 7.5 重要
Network 		turbo-stream
Shopify		 React Router
Turbo Stream 		Shopify等の複数ベンダの製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-34077 2026-06-8 11:49 2026-06-2 Show GitHub Exploit DB Packet Storm
1819 6.5 警告
Network 		Apnotic Password Pusher ApnoticのPassword Pusherにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性 CWE-288
CWE-noinfo
CVE-2026-41308 2026-06-8 11:48 2026-05-8 Show GitHub Exploit DB Packet Storm
1820 7.5 重要
Network 		Shopify remix-run/server-runtime
React Router 		ShopifyのReact Router等の複数製品におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-42342 2026-06-8 11:48 2026-06-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344391 - microsoft windows_95
windows_98
windows_98se
windows_me 		File and Print Sharing service in Windows 95, Windows 98, and Windows Me does not properly check the password for a file share, which allows remote attackers to bypass share access controls by sendin… NVD-CWE-Other
CVE-2000-0979 2018-10-13 06:29 2000-12-19 Show GitHub Exploit DB Packet Storm
344392 - microsoft windows_95
windows_98
windows_98se
windows_me 		NMPI (Name Management Protocol on IPX) listener in Microsoft NWLink does not properly filter packets from a broadcast address, which allows remote attackers to cause a broadcast storm and flood the n… NVD-CWE-Other
CVE-2000-0980 2018-10-13 06:29 2000-12-19 Show GitHub Exploit DB Packet Storm
344393 - hilgraeve hyperterminal Buffer overflow in Hilgraeve, Inc. HyperTerminal client on Windows 98, ME, and 2000 allows remote attackers to execute arbitrary commands via a long telnet URL, aka the "HyperTerminal Buffer Overflow… NVD-CWE-Other
CVE-2000-0991 2018-10-13 06:29 2000-12-19 Show GitHub Exploit DB Packet Storm
344394 - microsoft windows_2000 Buffer overflow in the System Monitor ActiveX control in Windows 2000 allows remote attackers to execute arbitrary commands via a long LogFileName parameter in HTML source code, aka the "ActiveX Para… NVD-CWE-Other
CVE-2000-1034 2018-10-13 06:29 2000-12-11 Show GitHub Exploit DB Packet Storm
344395 - microsoft windows_95
windows_98
windows_98se
windows_me
windows_nt 		Various TCP/IP stacks and network applications allow remote attackers to cause a denial of service by flooding a target host with TCP connection attempts and completing the TCP/IP handshake without m… NVD-CWE-Other
CVE-2000-1039 2018-10-13 06:29 2001-01-9 Show GitHub Exploit DB Packet Storm
344396 - microsoft ie Microsoft Virtual Machine (VM) in Internet Explorer 4.x and 5.x allows an unsigned applet to create and use ActiveX controls, which allows a remote attacker to bypass Internet Explorer's security set… NVD-CWE-Other
CVE-2000-1061 2018-10-13 06:29 2000-12-11 Show GitHub Exploit DB Packet Storm
344397 - microsoft data_engine
sql_server 		The xp_displayparamstmt function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Se… NVD-CWE-Other
CVE-2000-1081 2018-10-13 06:29 2001-01-9 Show GitHub Exploit DB Packet Storm
344398 - microsoft data_engine
sql_server 		The xp_enumresultset function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Serve… NVD-CWE-Other
CVE-2000-1082 2018-10-13 06:29 2001-01-9 Show GitHub Exploit DB Packet Storm
344399 - microsoft data_engine
sql_server 		The xp_showcolv function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API… NVD-CWE-Other
CVE-2000-1083 2018-10-13 06:29 2001-01-9 Show GitHub Exploit DB Packet Storm
344400 - microsoft data_engine
sql_server 		The xp_updatecolvbm function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server… NVD-CWE-Other
CVE-2000-1084 2018-10-13 06:29 2001-01-9 Show GitHub Exploit DB Packet Storm