Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1881	9.8	緊急 Network	NVIDIA	TensorRT LLM	NVIDIAのTensorRT LLMにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-24163	2026-05-22 10:59	2026-05-20	Show	GitHub Exploit DB Packet Storm

1882	10	緊急 Network	Open Vehicles Limited	Open Vehicle Monitoring System	Open Vehicles LimitedのOpen Vehicle Monitoring Systemにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-37541	2026-05-22 10:58	2026-05-1	Show	GitHub Exploit DB Packet Storm

1883	8.8	重要 Network	Open Vehicles Limited	Open Vehicle Monitoring System	Open Vehicles LimitedのOpen Vehicle Monitoring Systemにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-42468	2026-05-22 10:58	2026-05-1	Show	GitHub Exploit DB Packet Storm

1884	8.6	重要 Network	Open Vehicles Limited	Open Vehicle Monitoring System	Open Vehicles LimitedのOpen Vehicle Monitoring Systemにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-42469	2026-05-22 10:58	2026-05-1	Show	GitHub Exploit DB Packet Storm

1885	8.6	重要 Network	Tenable, Inc.	Terrascan	Tenable, Inc.のTerrascanにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-47356	2026-05-22 10:58	2026-05-19	Show	GitHub Exploit DB Packet Storm

1886	8.6	重要 Network	Tenable, Inc.	Terrascan	Tenable, Inc.のTerrascanにおける複数の脆弱性	CWE-610 CWE-73 CWE-918 CWE-918	CVE-2026-47357	2026-05-22 10:58	2026-05-19	Show	GitHub Exploit DB Packet Storm

1887	8.6	重要 Network	Tenable, Inc.	Terrascan	Tenable, Inc.のTerrascanにおける複数の脆弱性	CWE-610 CWE-73 CWE-918 CWE-918	CVE-2026-47358	2026-05-22 10:58	2026-05-19	Show	GitHub Exploit DB Packet Storm

1888	9.8	緊急 Network	HCL Technologies Limited	HCL BigFix Service Management (SM)	HCL Technologies LimitedのHCL BigFix Service Management (SM)における不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-31973	2026-05-22 10:58	2026-05-20	Show	GitHub Exploit DB Packet Storm

1889	6.5	警告 Network	HCL Technologies Limited	HCL BigFix Service Management (SM)	HCL Technologies LimitedのHCL BigFix Service Management (SM)における情報漏えいに関する脆弱性	CWE-200 CWE-noinfo	CVE-2025-31985	2026-05-22 10:58	2026-05-20	Show	GitHub Exploit DB Packet Storm

1890	4.6	警告 Network	Nozomi Networks Inc.	Guardian cmc	Nozomi Networks Inc.のCMC等の複数製品におけるテンプレートエンジンで使用される特殊な要素の不適切な無効化に関する脆弱性	CWE-1336 テンプレートエンジンで使用される特殊な要素の不適切な無効化	CVE-2025-40900	2026-05-22 10:58	2026-05-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
171	-		-	-	Crawlee is a web scraping and browser automation library. From version 1.0.0 to before version 1.7.0, Crawlee is vulnerable to SSRF via sitemap-derived URLs. This issue has been patched in version 1.… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-46497	2026-06-11 01:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

172	8.1	HIGH Network	-	-	Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, ommit d4d10006 ("Expand validation to block .. in config_file_name and configver … New	CWE-22 CWE-697 Path Traversal Incorrect Comparison	CVE-2026-45569	2026-06-11 01:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

173	8.1	HIGH Network	-	-	Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, EscapedString (app/modules/roxywi/class_models.py:16-30) is the centralised Pydan… New	CWE-20 CWE-22 CWE-117 Improper Input Validation Path Traversal Improper Output Neutralization for Logs	CVE-2026-45565	2026-06-11 01:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

174	8.8	HIGH Network	-	-	Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, POST /config/versions/<service>/<server_ip>/<configver>/save interpolates the URL… New	CWE-78 OS Command	CVE-2026-45564	2026-06-11 01:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

175	4.3	MEDIUM Network	-	-	Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, GET /history/<service>/<server_ip> re-uses the server_ip path parameter as a user… New	CWE-639 CWE-863 Authorization Bypass Through User-Controlled Key Incorrect Authorization	CVE-2026-45563	2026-06-11 01:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

176	4.9	MEDIUM Network	-	-	Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, get_ldap_email (app/modules/roxywi/user.py:120-157) builds the LDAP search filter… New	CWE-90 LDAP Injection	CVE-2026-45559	2026-06-11 01:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

177	9.9	CRITICAL Network	-	-	Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, the HAProxy section-save endpoints (POST /api/service/haproxy/<server_id>/section… New	CWE-20 CWE-77 CWE-78 CWE-94 Improper Input Validation Command Injection OS Command Code Injection	CVE-2026-45558	2026-06-11 01:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

178	9.9	CRITICAL Network	-	-	Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, POST /waf/<service>/<server_ip>/rule/<rule_id>/save accepts a config_file_name fo… New	CWE-20 CWE-22 CWE-73 CWE-78 Improper Input Validation Path Traversal External Control of File Name or Path OS Command	CVE-2026-45556	2026-06-11 01:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

179	7.5	HIGH Network	-	-	Issue summary: Remote peer may exhaust heap memory of the QUIC server or client by flooding it with packets containing PATH_CHALLENGE frames. Impact summary: A malicious remote peer can cause an unb… New	CWE-1325 Improperly Controlled Sequential Memory Allocation	CVE-2026-34183	2026-06-11 01:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

180	7.5	HIGH Network	-	-	UXSS in Focus for iOS / Klar Webkit navigation. This vulnerability was fixed in Focus for iOS 151.3.1 and Klar for iOS 151.3.1. New	CWE-79 Cross-site Scripting	CVE-2026-11799	2026-06-11 01:16	2026-06-10	Show	GitHub Exploit DB Packet Storm