Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
190401	8.8	重要 Network	Jenkins プロジェクト	-	Script Security プラグインにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-1000107	2017-11-8 11:53	2017-08-7	Show	GitHub Exploit DB Packet Storm

190402	8.5	重要 Network	Jenkins プロジェクト	-	Blue Ocean プラグインにおける認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-1000106	2017-11-8 11:53	2017-08-7	Show	GitHub Exploit DB Packet Storm

190403	5.4	警告 Network	Jenkins プロジェクト	-	DRY プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-1000103	2017-11-8 11:39	2017-08-7	Show	GitHub Exploit DB Packet Storm

190404	5.4	警告 Network	Jenkins プロジェクト	-	Static Analysis Utilities プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-1000102	2017-11-8 11:39	2017-08-7	Show	GitHub Exploit DB Packet Storm

190405	7.8	重要 Local	UPX project	-	UPX における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2017-15056	2017-11-8 10:44	2017-10-3	Show	GitHub Exploit DB Packet Storm

190406	7.5	重要 Network	Haxx	-	libcurl におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-1000254	2017-11-8 10:44	2017-10-4	Show	GitHub Exploit DB Packet Storm

190407	5.5	警告 Local	Ccsv project	-	Ccsv における二重解放に関する脆弱性	CWE-415 二重解放	CVE-2017-15364	2017-11-7 18:22	2017-10-26	Show	GitHub Exploit DB Packet Storm

190408	5.4	警告 Network	Paessler AG	-	PRTG Network Monitor におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-15360	2017-11-7 18:22	2017-10-15	Show	GitHub Exploit DB Packet Storm

190409	9.8	緊急 Network	QNAP Systems	-	Music Station におけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2017-13069	2017-11-7 18:22	2017-10-5	Show	GitHub Exploit DB Packet Storm

190410	8.1	重要 Network	The Foreman	-	Foreman におけるセキュリティ機能に関する脆弱性	CWE-254 セキュリティ機能	CVE-2015-5246	2017-11-7 18:22	2015-09-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2081	3.1	LOW Network	-	-	Insufficient policy enforcement in CustomTabs in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severi…	CWE-693 Protection Mechanism Failure	CVE-2026-11247	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2082	8.8	HIGH Network	-	-	Inappropriate implementation in Google Lens in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: L…	CWE-693 Protection Mechanism Failure	CVE-2026-11248	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2083	4.7	MEDIUM Network	-	-	Use after free in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory vi…	CWE-416 Use After Free	CVE-2026-11249	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2084	-		-	-	In Arista’s EOS when in 802.1X mode, multi-auth unauthenticated hosts might be allowed access to a switch port if there exists an EAPOL capable device in the fallback VLAN.	CWE-1287 Improper Validation of Specified Type of Input	CVE-2024-6858	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2085	5.9	MEDIUM Network	-	-	On affected platforms running Arista EOS with 802.1x authentication configured on the access/trunk ports, and routing enabled on the access VLAN of the ports, a malicious supplicant may be able to by…	CWE-287 Improper Authentication	CVE-2023-5502	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2086	9.6	CRITICAL Network	-	-	Affected platforms running Arista EOS with OpenConfig configured, a gNMI Set request can be run when it should have been rejected. This can result in unexpected configuration being applied to the swi…	CWE-306 Missing Authentication for Critical Function	CVE-2024-27890	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2087	5.3	MEDIUM Network	-	-	On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports. This can cause outgo…	CWE-284 Improper Access Control	CVE-2024-27891	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2088	9.6	CRITICAL Network	-	-	Affected platforms running Arista EOS with OpenConfig configured, a gNMI Set request can be run when it should have been rejected. This can result in unexpected configuration being applied to the swi…	CWE-306 Missing Authentication for Critical Function	CVE-2024-27892	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2089	7.5	HIGH Network	-	-	On affected platforms running Arista EOS with IPsec configured, a specially crafted packet can cause the dataplane to stop processing all IPsec traffic. The control plane may detect this condition, a…	CWE-1286 Improper Validation of Syntactic Correctness of Input	CVE-2025-8873	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2090	8.1	HIGH Network	-	-	Use after free in Chromoting in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Critical)	CWE-416 Use After Free	CVE-2026-10887	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm