Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193941 7.5 重要
Network 		マイクロソフト - Microsoft Windows 10 および Windows Server 2016 の Microsoft Edge における現在のユーザのコンテキストで任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2017-8598 2017-07-18 15:59 2017-07-11 Show GitHub Exploit DB Packet Storm
193942 7.5 重要
Network 		マイクロソフト - Microsoft Windows 10 および Windows Server 2016 の Microsoft Edge における現在のユーザのコンテキストで任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2017-8596 2017-07-18 15:59 2017-07-11 Show GitHub Exploit DB Packet Storm
193943 7.5 重要
Network 		マイクロソフト - Microsoft Windows 10 および Windows Server 2016 の Microsoft Edge における現在のユーザのコンテキストで任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2017-8595 2017-07-18 15:59 2017-07-11 Show GitHub Exploit DB Packet Storm
193944 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Office 製品におけるリモートでコードを実行される脆弱性 CWE-19
データ処理 		CVE-2017-8570 2017-07-18 14:36 2017-07-11 Show GitHub Exploit DB Packet Storm
193945 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Excel 製品におけるリモートでコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2017-8502 2017-07-18 14:36 2017-07-11 Show GitHub Exploit DB Packet Storm
193946 7.8 重要
Local 		マイクロソフト - 複数の Microsoft 製品におけるリモートでコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2017-8501 2017-07-18 14:36 2017-07-11 Show GitHub Exploit DB Packet Storm
193947 9.8 緊急
Network 		OpenWebif project - E2 open デバイス用 OpenWebif プラグインにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2017-9807 2017-07-14 17:00 2017-06-24 Show GitHub Exploit DB Packet Storm
193948 8.1 重要
Network 		Cloud Foundry Foundation - 複数の Cloud Foundry Foundation 製品におけるセッションの固定化の脆弱性 CWE-384
セッションの固定化 		CVE-2017-4963 2017-07-14 16:56 2017-03-29 Show GitHub Exploit DB Packet Storm
193949 6.5 警告
Network 		Cloud Foundry Foundation - Cloud Foundry Foundation cf-release および CAPI-release における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-8219 2017-07-14 16:56 2016-12-22 Show GitHub Exploit DB Packet Storm
193950 8.8 重要
Network 		Pivotal Software, Inc. - Pivotal Cloud Foundry Elastic Runtime における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-4959 2017-07-14 16:56 2017-02-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
101 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 contains a reachable assertion in e2ap_create_pdu() triggered when ASN.1 PER decoding fails. A remote unauthenticated attacker can send any non-PER byte sequence (e.g., a single 0x00 b… New CWE-617
 Reachable Assertion 		CVE-2026-37229 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
102 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 crashes when the near-RT RIC receives a RIC_INDICATION message with a ran_func_id that does not exist in its registry. The lookup returns NULL, triggering assert() in Debug builds (SIG… New CWE-476
 NULL Pointer Dereference 		CVE-2026-37230 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
103 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 uses a uint16_t counter for xapp_id assignment but stores the value in uint32_t message fields. After 65,530+ E42_SETUP_REQUESTs, the 16-bit counter wraps around and produces duplicate… New CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-37231 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
104 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 contains an authorization bypass in the iApp's xApp isolation mechanism. The equality function eq_xapp_ric_gen_id() in src/ric/iApp/xapp_ric_id.c compares m0->xapp_id against itself (m… New CWE-617
 Reachable Assertion 		CVE-2026-37233 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
105 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 trusts the xapp_id field from E42 message payloads without binding it to the sender's SCTP association. The validation function valid_xapp_id() only checks that the value is within the… New CWE-284
Improper Access Control 		CVE-2026-37235 2026-06-4 02:15 2026-06-2 Show GitHub Exploit DB Packet Storm
106 6.5 MEDIUM
Network 		nextcloud nextcloud_server Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 31.0.0 to before 31.0.14, and 32.0.0 to before 32.0.4, if {lang} is used in the template directory config… New CWE-22
Path Traversal 		CVE-2026-45279 2026-06-4 02:15 2026-06-2 Show GitHub Exploit DB Packet Storm
107 8.1 HIGH
Network 		nextcloud nextcloud_server Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, with the knowledge of other users’ principal URL an… New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-45281 2026-06-4 02:11 2026-06-2 Show GitHub Exploit DB Packet Storm
108 8.1 HIGH
Network 		jupyter jupyter_server A path traversal vulnerability exists in jupyter-server version 2.17.0 due to an incorrect root directory boundary check in the _get_os_path() function within jupyter_server/services/contents/fileio.… New CWE-23
 Relative Path Traversal 		CVE-2026-5422 2026-06-4 02:09 2026-06-2 Show GitHub Exploit DB Packet Storm
109 6.5 MEDIUM
Network 		nextcloud nextcloud_server Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, an authenticated attacker can access attachments of… New CWE-284
NVD-CWE-noinfo
Improper Access Control 		CVE-2026-45282 2026-06-4 02:09 2026-06-2 Show GitHub Exploit DB Packet Storm
110 7.5 HIGH
Network 		prefect prefect In version 3.6.19 of prefecthq/prefect, an authentication bypass vulnerability exists due to the improper handling of URL path exemptions for health check probes. Specifically, the authentication mid… New CWE-863
 Incorrect Authorization 		CVE-2026-3514 2026-06-4 02:08 2026-06-2 Show GitHub Exploit DB Packet Storm