Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194441 7.8 重要
Local 		Google - Linux 用 MediaTek ドライバの camera_fdvt.c の MT6573FDVT_SetRegHW 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-6492 2017-01-27 17:00 2016-12-5 Show GitHub Exploit DB Packet Storm
194442 5.5 警告
Local 		Google - Audioserver における情報を公開される脆弱性 CWE-200
情報漏えい 		CVE-2017-0398 2017-01-27 16:58 2017-01-3 Show GitHub Exploit DB Packet Storm
194443 7 重要
Local 		Google - Broadcom Wi-Fi ドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-9910 2017-01-27 16:50 2016-12-5 Show GitHub Exploit DB Packet Storm
194444 7 重要
Local 		Google - Broadcom Wi-Fi ドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-9909 2017-01-27 16:50 2016-12-5 Show GitHub Exploit DB Packet Storm
194445 7.5 重要
Network 		GStreamer - GStreamer の mpegts デコーダの gst_mpegts_section_new 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-9812 2017-01-27 15:48 2016-11-29 Show GitHub Exploit DB Packet Storm
194446 4.7 警告
Local 		GStreamer - GStreamer の gst-plugins-base の windows_icon_typefind 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-9811 2017-01-27 15:48 2016-11-29 Show GitHub Exploit DB Packet Storm
194447 8.1 重要
Network 		b2evolution - b2evolution の inc/files/files.ctrl.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2017-5480 2017-01-27 15:40 2017-01-14 Show GitHub Exploit DB Packet Storm
194448 7.1 重要
Local 		Linux - Linux Kernel の arch/x86/kvm/emulate.c におけるカーネルメモリから重要な情報を取得される脆弱性 CWE-200
CWE-416
CVE-2017-2584 2017-01-27 15:05 2017-01-12 Show GitHub Exploit DB Packet Storm
194449 9.8 緊急
Network 		Barco - Barco ClickShare CSC-1 デバイスのファームウェアのにおける root パスワードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-3152 2017-01-27 14:57 2016-11-14 Show GitHub Exploit DB Packet Storm
194450 7.5 重要
Network 		Barco - 複数の Barco ClickShare デバイス製品のファームウェアの壁紙構文解析機能におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-3151 2017-01-27 14:57 2016-11-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191 6.5 MEDIUM
Adjacent 		juniper junos A Missing Release of Memory after Effective Lifetime vulnerability in the DHCP daemon (jdhcpd) of Juniper Networks Junos OS on MX Series, allows an adjacent, unauthenticated attacker to cause a memor… Update CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2026-33782 2026-04-18 02:39 2026-04-10 Show GitHub Exploit DB Packet Storm
192 6.5 MEDIUM
Network 		praison praisonai PraisonAI is a multi-agent teams system. Prior to 4.5.128, the _safe_extractall() function in PraisonAI's recipe registry validates archive members against path traversal attacks but performs no chec… Update CWE-409
 Improper Handling of Highly Compressed Data (Data Amplification) 		CVE-2026-40148 2026-04-18 02:38 2026-04-10 Show GitHub Exploit DB Packet Storm
193 8.8 HIGH
Local 		juniper junos A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on MX Series allows a local, authenticated user with low privileges to execute specific commands which will lead to a com… Update CWE-862
 Missing Authorization 		CVE-2026-33785 2026-04-18 02:38 2026-04-10 Show GitHub Exploit DB Packet Storm
194 3.1 LOW
Network 		beszel beszel Beszel is a server monitoring platform. Prior to 0.18.7, some API endpoints in the Beszel hub accept a user-supplied system ID and proceed without further checks that the user should have access to t… Update CWE-184
 Incomplete Blacklist 		CVE-2026-40077 2026-04-18 02:37 2026-04-10 Show GitHub Exploit DB Packet Storm
195 8.1 HIGH
Network 		apollographql apollo_mcp_server Apollo MCP Server is a Model Context Protocol server that exposes GraphQL operations as MCP tools. Prior to version 1.7.0, the Apollo MCP Server did not validate the Host header on incoming HTTP requ… Update CWE-346
 Origin Validation Error 		CVE-2026-35577 2026-04-18 02:31 2026-04-10 Show GitHub Exploit DB Packet Storm
196 8.8 HIGH
Network 		google chrome Use after free in Video in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) Update CWE-416
 Use After Free 		CVE-2026-6302 2026-04-18 02:27 2026-04-16 Show GitHub Exploit DB Packet Storm
197 8.8 HIGH
Network 		google chrome Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) Update CWE-416
 Use After Free 		CVE-2026-6303 2026-04-18 02:27 2026-04-16 Show GitHub Exploit DB Packet Storm
198 8.3 HIGH
Network 		google chrome Use after free in Graphite in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.… Update CWE-416
 Use After Free 		CVE-2026-6304 2026-04-18 02:27 2026-04-16 Show GitHub Exploit DB Packet Storm
199 8.8 HIGH
Network 		google chrome Heap buffer overflow in PDFium in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: High) Update CWE-122
CWE-787
Heap-based Buffer Overflow
 Out-of-bounds Write 		CVE-2026-6305 2026-04-18 02:27 2026-04-16 Show GitHub Exploit DB Packet Storm
200 8.8 HIGH
Network 		google chrome Type Confusion in Turbofan in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) Update CWE-843
Type Confusion 		CVE-2026-6307 2026-04-18 02:27 2026-04-16 Show GitHub Exploit DB Packet Storm