Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190481 7.5 重要
Local 		インテル - 複数の Intel NUC Kit 製品のファームウェアにおける認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-5722 2017-11-10 16:13 2017-10-6 Show GitHub Exploit DB Packet Storm
190482 7.5 重要
Local 		インテル - 複数の Intel NUC Kit 製品のファームウェアにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-5721 2017-11-10 16:13 2017-10-6 Show GitHub Exploit DB Packet Storm
190483 7.1 重要
Physics 		インテル - 複数の Intel NUC Kit 製品のファームウェアにおける認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-5701 2017-11-10 16:13 2017-10-6 Show GitHub Exploit DB Packet Storm
190484 8.4 重要
Local 		インテル - 複数の Intel NUC Kit 製品のファームウェアにおける証明書・パスワードの管理に関する脆弱性 CWE-255
証明書・パスワード管理 		CVE-2017-5700 2017-11-10 16:13 2017-10-6 Show GitHub Exploit DB Packet Storm
190485 6.5 警告
Network 		GridGain Systems, Inc. - GridGain におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2017-14614 2017-11-10 16:05 2017-10-5 Show GitHub Exploit DB Packet Storm
190486 7.5 重要
Network 		Digium - Asterisk および Certified Asterisk における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2017-14603 2017-11-10 16:01 2017-09-19 Show GitHub Exploit DB Packet Storm
190487 5 警告
Local 		Mp3splt project - Libmp3splt における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-15185 2017-11-10 15:59 2017-09-26 Show GitHub Exploit DB Packet Storm
190488 7.5 重要
Network 		InFocus Corporation - InFocus Mondopad における認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2017-14972 2017-11-10 15:54 2017-09-29 Show GitHub Exploit DB Packet Storm
190489 5.5 警告
Local 		InFocus Corporation - Infocus Mondopad における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2017-14971 2017-11-10 15:54 2017-09-29 Show GitHub Exploit DB Packet Storm
190490 7.8 重要
Local 		X.Org Foundation
Debian		 - X.Org Server におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-13723 2017-11-10 15:51 2017-10-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2251 5.3 MEDIUM
Network 		google chrome Integer overflow in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from proces… CWE-190
CWE-125
CWE-787
 Integer Overflow or Wraparound
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2026-10999 2026-06-8 22:16 2026-06-5 Show GitHub Exploit DB Packet Storm
2252 9.1 CRITICAL
Network 		apache fory Deserialization of Untrusted Data in the Java replace-resolve path in Apache Fory fory-core Java SDK before 1.1.0 on Java/JVM platforms allows a remote attacker to bypass class registration, TypeChec… CWE-502
 Deserialization of Untrusted Data 		CVE-2026-50076 2026-06-8 22:00 2026-06-5 Show GitHub Exploit DB Packet Storm
2253 4.3 MEDIUM
Network 		misp misp A vulnerability in the MISP dashboard widgets allowed an authenticated user to manipulate the fields option and influence which fields were returned by the New Users and New Organisations widgets. In… CWE-200
Information Exposure 		CVE-2026-10864 2026-06-8 21:59 2026-06-5 Show GitHub Exploit DB Packet Storm
2254 4.9 MEDIUM
Network 		acer connect_m6e_5g_firmware The web administration panel binds broadly to the public IPv6 address space on port [::]:8080 without default firewall limits, making internal API endpoints reachable over the WAN. CWE-200
Information Exposure 		CVE-2026-50224 2026-06-8 21:58 2026-06-4 Show GitHub Exploit DB Packet Storm
2255 9.1 CRITICAL
Network 		acer connect_m6e_5g_firmware The registration path /v1/account/register provides no bot mitigation mechanisms, allowing malicious automated systems to flood the database. CWE-306
Missing Authentication for Critical Function 		CVE-2026-50225 2026-06-8 21:58 2026-06-4 Show GitHub Exploit DB Packet Storm
2256 5.3 MEDIUM
Network 		acer connect_m6e_5g_firmware Fixed AES-128-CBC keys inside the AcerConnect OTA application let attackers forge authorization credentials for arbitrary IMEI numbers. This allows unauthorized actors to list catalog items and extra… CWE-321
 Use of Hard-coded Cryptographic Key 		CVE-2026-50226 2026-06-8 21:57 2026-06-4 Show GitHub Exploit DB Packet Storm
2257 9.8 CRITICAL
Network 		acer connect_m6e_5g_firmware The /v1/Plan service relies entirely on a shared global API token for full administrative management, allowing arbitrary creation of zero-cost network access plans. CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2026-50214 2026-06-8 21:56 2026-06-4 Show GitHub Exploit DB Packet Storm
2258 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-56123 2026-06-8 19:16 2026-06-8 Show GitHub Exploit DB Packet Storm
2259 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-56122 2026-06-8 19:16 2026-06-8 Show GitHub Exploit DB Packet Storm
2260 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-56121 2026-06-8 19:16 2026-06-8 Show GitHub Exploit DB Packet Storm