Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
191941 9.6 緊急
Network
アバイア - Avaya IP Office におけるバッファエラーの脆弱性 CWE-119
バッファエラー
CVE-2017-11309 2017-12-7 13:39 2017-11-3 Show GitHub Exploit DB Packet Storm
191942 5.3 警告
Network
Bolt - Bolt におけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御
CVE-2017-16754 2017-12-7 13:38 2017-09-29 Show GitHub Exploit DB Packet Storm
191943 9.8 緊急
Network
レッドハット
オラクル
- 複数の Red Hat 製品における信頼性のないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション
CVE-2015-7501 2017-12-7 12:28 2016-04-19 Show GitHub Exploit DB Packet Storm
191944 5.4 警告
Network
CA Technologies - CA Identity Governance におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2017-9394 2017-12-7 11:58 2017-11-14 Show GitHub Exploit DB Packet Storm
191945 5.9 警告
Network
BlackBerry - BlackBerry QNX Software Development Platform における PRNG の不十分なエントロピーに関する脆弱性 CWE-332
PRNG における不十分なエントロピー
CVE-2017-9371 2017-12-7 11:58 2017-11-14 Show GitHub Exploit DB Packet Storm
191946 4.9 警告
Network
BlackBerry - BlackBerry QNX Software Development Platform における情報漏えいに関する脆弱性 CWE-200
情報漏えい
CVE-2017-9369 2017-12-7 11:58 2017-11-14 Show GitHub Exploit DB Packet Storm
191947 7.5 重要
Network
BlackBerry - BlackBerry QNX Software Development Platform におけるバッファエラーの脆弱性 CWE-119
バッファエラー
CVE-2017-3893 2017-12-7 11:58 2017-11-14 Show GitHub Exploit DB Packet Storm
191948 7.5 重要
Network
BlackBerry - BlackBerry QNX Software Development Platform における情報漏えいに関する脆弱性 CWE-200
情報漏えい
CVE-2017-3892 2017-12-7 11:58 2017-11-14 Show GitHub Exploit DB Packet Storm
191949 8.1 重要
Network
BlackBerry - BlackBerry QNX Software Development Platform における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2017-3891 2017-12-7 11:58 2017-11-14 Show GitHub Exploit DB Packet Storm
191950 9.8 緊急
Network
collectd - collectd における二重解放に関する脆弱性 CWE-415
二重解放
CVE-2017-16820 2017-12-7 11:58 2017-10-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3971 8.1 HIGH
Network
microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w…
Use after free in Universal Plug and Play (upnp.dll) allows an unauthorized attacker to execute code over a network. CWE-843
CWE-416
Type Confusion
 Use After Free
CVE-2026-45635 2026-06-12 03:36 2026-06-10 Show GitHub Exploit DB Packet Storm
3972 7.8 HIGH
Local
microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w…
Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally. CWE-20
CWE-122
 Improper Input Validation 
Heap-based Buffer Overflow
CVE-2026-45636 2026-06-12 03:33 2026-06-10 Show GitHub Exploit DB Packet Storm
3973 6.5 MEDIUM
Adjacent
lldpd_project lldpd lldpd is an implementation of IEEE 802.1ab (LLDP). Prior to version 1.0.22, lldpd_decode() in src/daemon/lldpd.c strips 802.1Q VLAN tags from received Ethernet frames by calling memmove() to shift th… CWE-125
Out-of-bounds Read
CVE-2026-46433 2026-06-12 03:29 2026-06-10 Show GitHub Exploit DB Packet Storm
3974 7.8 HIGH
Local
microsoft windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2019
windows_server_2022
windows_server_2025
Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. CWE-416
 Use After Free
CVE-2026-45637 2026-06-12 03:24 2026-06-10 Show GitHub Exploit DB Packet Storm
3975 7.8 HIGH
Local
microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w…
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. CWE-122
Heap-based Buffer Overflow
CVE-2026-45638 2026-06-12 03:23 2026-06-10 Show GitHub Exploit DB Packet Storm
3976 8.7 HIGH
Network
open-emr openemr OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0.1, a stored cross-site scripting vulnerability in the prescription CSS/… CWE-79
CWE-862
Cross-site Scripting
 Missing Authorization
CVE-2026-46518 2026-06-12 03:23 2026-06-10 Show GitHub Exploit DB Packet Storm
3977 7.0 HIGH
Local
microsoft windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2022
windows_server_2025
Use after free in Windows Bluetooth Port Driver allows an authorized attacker to elevate privileges locally. CWE-416
 Use After Free
CVE-2026-45640 2026-06-12 03:22 2026-06-10 Show GitHub Exploit DB Packet Storm
3978 6.5 MEDIUM
Adjacent
espressif esp-idf ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.2.7, 5.3.5, 5.4.4, 5.5.4, and 6.0.1, an out-of-bounds read flaw exists in the DHCP server option parser (parse_o… CWE-125
Out-of-bounds Read
CVE-2026-45160 2026-06-12 03:22 2026-06-10 Show GitHub Exploit DB Packet Storm
3979 10.0 CRITICAL
Network
- - MariaDB server is a community developed fork of MySQL server. Versions 10.6.1 through 10.6.26, 10.11.1 through 10.11.17, 11.4.1 through 11.4.11, 11.8.1 through 11.8.7, and 12.3.1 with `wsrep_notify_… CWE-78
OS Command 
CVE-2026-49261 2026-06-12 03:16 2026-06-12 Show GitHub Exploit DB Packet Storm
3980 7.3 HIGH
Network
- - KanaDojo before 0.1.18 contains a sandbox escape vulnerability that allows an attacker to execute arbitrary code by exploiting the explicit passing of the global require function into a Node.js vm.ru… CWE-693
 Protection Mechanism Failure
CVE-2026-48546 2026-06-12 03:16 2026-06-12 Show GitHub Exploit DB Packet Storm