Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
189491	5.4	警告 Network	Huawei	-	Huawei スマートフォンのソフトウェアにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-8178	2017-12-25 17:00	2017-09-8	Show	GitHub Exploit DB Packet Storm

189492	7.5	重要 Network	Huawei	-	Huawei USG6300 および USG6600 のソフトウェアにおける暗号強度に関する脆弱性	CWE-326 不適切な暗号強度	CVE-2017-8174	2017-12-25 17:00	2017-08-2	Show	GitHub Exploit DB Packet Storm

189493	4.6	警告 Physics	Huawei	-	Huawei スマートフォンのソフトウェアにおける認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-8173	2017-12-25 17:00	2017-07-15	Show	GitHub Exploit DB Packet Storm

189494	5.5	警告 Local	Huawei	-	Huawei P10 Plus および P10 スマートフォンにおける配列インデックスの検証に関する脆弱性	CWE-129 配列インデックスの不適切な検証	CVE-2017-8172	2017-12-25 17:00	2017-06-28	Show	GitHub Exploit DB Packet Storm

189495	7.5	重要 Network	Huawei	-	Huawei ファイアウォール製品 USG9500 における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2017-8167	2017-12-25 17:00	2017-10-25	Show	GitHub Exploit DB Packet Storm

189496	7.8	重要 Local	Huawei	-	複数の Huawei スマートフォンにおけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-2697	2017-12-25 16:59	2017-02-8	Show	GitHub Exploit DB Packet Storm

189497	7.8	重要 Local	Huawei	-	Huawei スマートフォンにおけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-2696	2017-12-25 16:59	2017-02-8	Show	GitHub Exploit DB Packet Storm

189498	5.5	警告 Local	Huawei	-	HiGame および SkyTone における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2017-2709	2017-12-25 16:59	2017-09-13	Show	GitHub Exploit DB Packet Storm

189499	5.5	警告 Local	Huawei	-	Huawei スマートフォンにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2017-2695	2017-12-25 16:59	2017-04-26	Show	GitHub Exploit DB Packet Storm

189500	4.6	警告 Physics	Huawei	-	Nice スマートフォンのソフトウェアにおける認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-2708	2017-12-25 16:59	2017-01-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1981	6.5	MEDIUM Network	google	chrome	Uninitialized Use in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)	CWE-457 Use of Uninitialized Variable	CVE-2026-11268	2026-06-10 03:38	2026-06-5	Show	GitHub Exploit DB Packet Storm

1982	8.8	HIGH Network	google	chrome	Insufficient validation of untrusted input in Reading List in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform p…	CWE-20 Improper Input Validation	CVE-2026-11272	2026-06-10 03:34	2026-06-5	Show	GitHub Exploit DB Packet Storm

1983	4.3	MEDIUM Network	google	chrome	Inappropriate implementation in DOM Distiller in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security se…	CWE-284 Improper Access Control	CVE-2026-11274	2026-06-10 03:32	2026-06-5	Show	GitHub Exploit DB Packet Storm

1984	9.3	CRITICAL Network	checkpoint	gaia_os gaia_embedded	A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish …	CWE-287 Improper Authentication	CVE-2026-50751	2026-06-10 03:30	2026-06-8	Show	GitHub Exploit DB Packet Storm

1985	4.3	MEDIUM Network	google	chrome	Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium se…	CWE-284 Improper Access Control	CVE-2026-11277	2026-06-10 03:26	2026-06-5	Show	GitHub Exploit DB Packet Storm

1986	5.8	MEDIUM Network	-	-	On affected platforms running Arista EOS where a tunnel decapsulation configuration—such as VXLAN (Virtual Extensible LAN), decap-groups, or a GRE (Generic Routing Encapsulation) tunnel interface—is …	CWE-1023 Incomplete Comparison with Missing Factors	CVE-2026-7473	2026-06-10 03:17	2026-06-6	Show	GitHub Exploit DB Packet Storm

1987	8.8	HIGH Network	-	-	The RemoteControl API methods invite_participants and remind_participants pass a caller-supplied token-ID array into TokenDynamic::findUninvited(), which concatenates the values directly into a tid I…	CWE-89 SQL Injection	CVE-2026-50636	2026-06-10 03:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

1988	8.8	HIGH Network	-	-	LimeSurvey constructs account password-reset links from the client-supplied HTTP Host header without validating it. The optional allowedHosts allowlist that would constrain this is undefined in the d…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2026-50635	2026-06-10 03:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

1989	6.5	MEDIUM Network	-	-	Hermes WebUI before version 0.51.269 contains a profile isolation bypass vulnerability that allows authenticated users to access data belonging to other profiles by querying the session search endpoi…	CWE-862 Missing Authorization	CVE-2026-49956	2026-06-10 03:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

1990	6.3	MEDIUM Local	-	-	Dell/Alienware Purchased Apps, versions prior to 1.1.32.0, contain an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could p…	CWE-59 Link Following	CVE-2026-44275	2026-06-10 03:16	2026-06-10	Show	GitHub Exploit DB Packet Storm