Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190101 5.5 警告
Local 		Exiv2 project - Exiv2 におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-14858 2017-10-17 17:52 2017-09-22 Show GitHub Exploit DB Packet Storm
190102 5.5 警告
Local 		Exiv2 project - Exiv2 における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2017-14857 2017-10-17 17:52 2017-09-24 Show GitHub Exploit DB Packet Storm
190103 8.8 重要
Network 		Xiph.Org - Xiph.Org libvorbis におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-14160 2017-10-17 17:49 2017-09-21 Show GitHub Exploit DB Packet Storm
190104 9.8 緊急
Network 		WpDevArt - WordPress 用 Responsive Image Gallery プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-14125 2017-10-17 17:46 2017-09-22 Show GitHub Exploit DB Packet Storm
190105 8.8 重要
Network 		Axiomatic Systems LLC - Bento4 における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2017-14647 2017-10-17 17:45 2017-09-14 Show GitHub Exploit DB Packet Storm
190106 9.8 緊急
Network 		BladeEnc - BladeEnc における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2017-14648 2017-10-17 17:37 2017-09-19 Show GitHub Exploit DB Packet Storm
190107 5.5 警告
Local 		GNU Project - GNU Binutils における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-14940 2017-10-17 17:27 2017-09-24 Show GitHub Exploit DB Packet Storm
190108 5.5 警告
Local 		GNU Project - GNU Binutils におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-14939 2017-10-17 17:27 2017-09-24 Show GitHub Exploit DB Packet Storm
190109 5.5 警告
Local 		GNU Project - GNU Binutils におけるリソース管理に関する脆弱性 CWE-399
リソース管理の問題 		CVE-2017-14938 2017-10-17 17:27 2017-09-24 Show GitHub Exploit DB Packet Storm
190110 5.5 警告
Local 		GNU Project - GNU Binutils における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-14933 2017-10-17 17:27 2017-09-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251 7.5 HIGH
Network 		- - FlexRIC v2.0.0 contains a reachable assertion in e2ap_recv_sctp_msg() (src/lib/ep/e2ap_ep.c). The function allocates a fixed 32KB receive buffer and enforces assert(rc < len) on the sctp_recvmsg() re… New CWE-617
 Reachable Assertion 		CVE-2026-37228 2026-06-2 23:35 2026-06-2 Show GitHub Exploit DB Packet Storm
252 7.5 HIGH
Network 		- - FlexRIC v2.0.0 contains a reachable assertion in e2ap_create_pdu() triggered when ASN.1 PER decoding fails. A remote unauthenticated attacker can send any non-PER byte sequence (e.g., a single 0x00 b… New CWE-617
 Reachable Assertion 		CVE-2026-37229 2026-06-2 23:35 2026-06-2 Show GitHub Exploit DB Packet Storm
253 7.5 HIGH
Network 		- - FlexRIC v2.0.0 uses a uint16_t counter for xapp_id assignment but stores the value in uint32_t message fields. After 65,530+ E42_SETUP_REQUESTs, the 16-bit counter wraps around and produces duplicate… New CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-37231 2026-06-2 23:35 2026-06-2 Show GitHub Exploit DB Packet Storm
254 8.2 HIGH
Network 		- - FlexRIC v2.0.0 allows a single SCTP connection to bind multiple xapp_ids by sending multiple E42_SETUP_REQUESTs. On disconnect, only the first registered xapp_id's resources are cleaned up; subsequen… New CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-37234 2026-06-2 23:35 2026-06-2 Show GitHub Exploit DB Packet Storm
255 6.5 MEDIUM
Network 		- - MLflow 3.9.0 with basic-auth (`--app-name basic-auth`) fails to enforce authorization checks for multiple Gateway API 'list' endpoints. Specifically, the `BEFORE_REQUEST_HANDLERS` dictionary in `mlfl… New CWE-284
Improper Access Control 		CVE-2026-3198 2026-06-2 23:35 2026-06-2 Show GitHub Exploit DB Packet Storm
256 7.5 HIGH
Network 		- - In version 3.6.19 of prefecthq/prefect, an authentication bypass vulnerability exists due to the improper handling of URL path exemptions for health check probes. Specifically, the authentication mid… New CWE-863
 Incorrect Authorization 		CVE-2026-3514 2026-06-2 23:35 2026-06-2 Show GitHub Exploit DB Packet Storm
257 6.8 MEDIUM
Network 		- - A path traversal vulnerability exists in jupyter-server version 2.17.0 due to an incorrect root directory boundary check in the _get_os_path() function within jupyter_server/services/contents/fileio.… New CWE-23
 Relative Path Traversal 		CVE-2026-5422 2026-06-2 23:35 2026-06-2 Show GitHub Exploit DB Packet Storm
258 4.9 MEDIUM
Network 		mattermost legal_hold Mattermost Plugins versions <=1.1.5 fail to sanitize filenames received from federated peers before using them to construct export destination paths, which allows an administrator of a remote federat… Update CWE-22
Path Traversal 		CVE-2026-6957 2026-06-2 23:29 2026-05-28 Show GitHub Exploit DB Packet Storm
259 8.1 HIGH
Network 		erlang erlang\/otp Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_cert and public_key modules) allows a DNS nameConstraints bypass via subject CommonName fallback in TLS hostname verific… Update CWE-295
CWE-297
Improper Certificate Validation 
 Improper Validation of Certificate with Host Mismatch 		CVE-2026-42790 2026-06-2 23:24 2026-05-28 Show GitHub Exploit DB Packet Storm
260 8.1 HIGH
Network 		openstack keystone An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone federated token rescoping mechanism does not propagate the original token's expiry to the newly issued token. When a federate… Update CWE-863
 Incorrect Authorization 		CVE-2026-44394 2026-06-2 23:21 2026-05-29 Show GitHub Exploit DB Packet Storm