Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190051 8.8 重要
Network 		ヒューレット・パッカード・エンタープライズ - HPE BSM Platform Application Performance Management System Health 製品におけるパストラバーサルの脆弱性 CWE-22
CWE-434
CVE-2017-13982 2017-10-19 16:17 2017-09-7 Show GitHub Exploit DB Packet Storm
190052 6.5 警告
Adjacent 		シスコシステムズ - Cisco IOS XE における入力確認に関する脆弱性 CWE-20
CWE-399
CVE-2017-12222 2017-10-19 16:11 2017-09-27 Show GitHub Exploit DB Packet Storm
190053 5.5 警告
Local 		GNU Project - GNU Binutils における数値処理に関する脆弱性 CWE-189
数値処理の問題 		CVE-2017-14934 2017-10-19 11:16 2017-09-27 Show GitHub Exploit DB Packet Storm
190054 6.1 警告
Network 		EGroupware - eGroupware におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-14920 2017-10-19 11:16 2017-09-6 Show GitHub Exploit DB Packet Storm
190055 7.5 重要
Network 		freedesktop.org - Poppler における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-14977 2017-10-19 10:18 2017-09-30 Show GitHub Exploit DB Packet Storm
190056 7.5 重要
Network 		freedesktop.org - Poppler におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-14976 2017-10-19 10:18 2017-09-14 Show GitHub Exploit DB Packet Storm
190057 7.5 重要
Network 		freedesktop.org - Poppler における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-14975 2017-10-19 10:18 2017-09-11 Show GitHub Exploit DB Packet Storm
190058 5.5 警告
Local 		GNU Project - GNU Binutils における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-14974 2017-10-19 10:11 2017-09-22 Show GitHub Exploit DB Packet Storm
190059 5.3 警告
Network 		Good Technology - Android 用 Good for Enterprise におけるデータの信頼性についての不十分な検証に関する脆弱性 CWE-345
データの信頼性についての不十分な検証 		CVE-2015-9232 2017-10-18 19:05 2015-09-25 Show GitHub Exploit DB Packet Storm
190060 7.5 重要
Network 		ウォッチガード・テクノロジー - WatchGuard Fireware におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2017-14616 2017-10-18 18:55 2017-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
341 7.5 HIGH
Network 		synology c2_identity_edge_server An Exposed Dangerous Method or Function vulnerability in Synology C2 Identity Edge Server package in DSM before 1.76.0-0307 allows remote attackers to obtain user credentials from the edge server. Update CWE-749
 Exposed Dangerous Method or Function 		CVE-2025-14713 2026-06-3 05:41 2026-05-27 Show GitHub Exploit DB Packet Storm
342 8.6 HIGH
Network 		synology active_backup_for_business A vulnerability in Active Backup for Business allows unauthorized remote attackers to read arbitrary files. Update CWE-89
SQL Injection 		CVE-2025-30028 2026-06-3 05:41 2026-05-27 Show GitHub Exploit DB Packet Storm
343 5.9 MEDIUM
Network 		synology safe_access Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in Safe Access in Synology Safe Access before 1.3.1-0329 allows remote authenticated users with admi… Update CWE-79
Cross-site Scripting 		CVE-2025-10466 2026-06-3 05:30 2026-05-27 Show GitHub Exploit DB Packet Storm
344 8.6 HIGH
Local 		zed zed Zed is a code editor. Prior to 0.227.1, Zed IDE executes arbitrary commands when opening a folder with a malicious .git/config file that abuses the core.fsmonitor Git configuration option. This allow… Update CWE-78
OS Command  		CVE-2026-44465 2026-06-3 05:17 2026-05-29 Show GitHub Exploit DB Packet Storm
345 7.1 HIGH
Local 		- - Improper input validation in NI-PAL may allow a local authenticated user to access arbitrary system memory, potentially leading to privilege escalation. This vulnerability affects NI-PAL 26.3.0 and p… New CWE-1285
 Improper Validation of Specified Index, Position, or Offset in Input 		CVE-2026-8036 2026-06-3 05:16 2026-06-3 Show GitHub Exploit DB Packet Storm
346 7.1 HIGH
Local 		- - Improper input validation in the NI-PAL kernel driver may allow a local authenticated user to cause a denial of service by triggering a crash due to a NULL pointer dereference. This vulnerability aff… New CWE-476
 NULL Pointer Dereference 		CVE-2026-8035 2026-06-3 05:16 2026-06-3 Show GitHub Exploit DB Packet Storm
347 - - - In OpenStack Neutron before 28.0.1, the tagging controller enforces plural policy action names on single-tag write operations while the defined policy rules use singular names. The mismatched names e… Update CWE-863
 Incorrect Authorization 		CVE-2026-49299 2026-06-3 05:16 2026-05-29 Show GitHub Exploit DB Packet Storm
348 8.5 HIGH
Network 		- - Medplum before 5.1.14 contains a server-side request forgery vulnerability in the subscription worker that allows authenticated users to perform unauthorized internal network requests by creating FHI… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-49120 2026-06-3 05:16 2026-06-3 Show GitHub Exploit DB Packet Storm
349 - - - In OpenStack Swift before 2.36.2 and 2.37.2, s3api middleware enters an infinite loop when processing a truncated aws-chunked PUT request body. The StreamingInput class repeatedly appends an empty bu… Update CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2026-49017 2026-06-3 05:16 2026-05-27 Show GitHub Exploit DB Packet Storm
350 8.1 HIGH
Network 		- - pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.1, when a PAM service is configured with deny_remote=false in pam_usb (commonly done for display manage… Update CWE-863
 Incorrect Authorization 		CVE-2026-48064 2026-06-3 05:16 2026-05-28 Show GitHub Exploit DB Packet Storm