Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1951	7.8	重要 Local	マイクロソフト	Windows Narrator Braille	Windows ナレーターの点字機能の特権昇格の脆弱性	CWE-426 信頼性のない検索パス	CVE-2026-48565	2026-06-15 11:21	2026-06-9	Show	GitHub Exploit DB Packet Storm

1952	6.5	警告 Network	Apache Software Foundation	Airflow Providers Samba (apache-airflow-providers-samba)	Apache Software FoundationのAirflow Providers Samba (apache-airflow-providers-samba)におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-49818	2026-06-15 11:21	2026-06-9	Show	GitHub Exploit DB Packet Storm

1953	5.5	警告 Local		-	アップルのmacOSにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2025-24268	2026-06-15 11:21	2026-06-11	Show	GitHub Exploit DB Packet Storm

1954	8.8	重要 Local		-	アップルのmacOSにおける保護メカニズムの不具合に関する脆弱性	CWE-693 保護メカニズムの不具合	CVE-2025-24284	2026-06-15 11:21	2026-06-11	Show	GitHub Exploit DB Packet Storm

1955	5.5	警告 Local		-	アップルのmacOSにおける保護メカニズムの不具合に関する脆弱性	CWE-693 保護メカニズムの不具合	CVE-2025-30431	2026-06-15 11:21	2026-06-11	Show	GitHub Exploit DB Packet Storm

1956	5.5	警告 Local		-	アップルのmacOSにおける認可されていない行為者への個人情報の漏えいに関する脆弱性	CWE-359 認可されていないアクターへの個人情報の漏えい	CVE-2025-30459	2026-06-15 11:21	2026-06-11	Show	GitHub Exploit DB Packet Storm

1957	7.8	重要 Local		-	アップルのmacOSにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2025-31272	2026-06-15 11:21	2026-06-11	Show	GitHub Exploit DB Packet Storm

1958	5.5	警告 Local		-	アップルのmacOSにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2025-43339	2026-06-15 11:21	2026-06-11	Show	GitHub Exploit DB Packet Storm

1959	5.5	警告 Local		-	アップルのmacOSにおけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2025-46293	2026-06-15 11:21	2026-06-11	Show	GitHub Exploit DB Packet Storm

1960	5.3	警告 Network	アップル	iOS iPadOS	アップルのiPadOS等の複数製品におけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2025-46308	2026-06-15 11:21	2026-06-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
307001	-	xnview	xnview	Heap-based buffer overflow in XnView before 1.99 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PCT image.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-0277	2024-11-21 10:34	2012-07-18	Show	GitHub Exploit DB Packet Storm

307002	-	xnview	xnview	Multiple heap-based buffer overflows in XnView before 1.99 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a (1) SGI32LogLum compressed…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-0276	2024-11-21 10:34	2012-07-18	Show	GitHub Exploit DB Packet Storm

307003	-	andreas_gohr	dokuwiki	Cross-site scripting (XSS) vulnerability in the tpl_mediaFileList function in inc/template.php in DokuWiki before 2012-01-25b allows remote attackers to inject arbitrary web script or HTML via the ns…	CWE-79 Cross-site Scripting	CVE-2012-0283	2024-11-21 10:34	2012-07-14	Show	GitHub Exploit DB Packet Storm

307004	-	tryton	trytond	model/modelstorage.py in the Tryton application framework (trytond) before 2.4.0 for Python does not properly restrict access to the Many2Many field in the relation model, which allows remote authent…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0215	2024-11-21 10:34	2012-07-13	Show	GitHub Exploit DB Packet Storm

307005	-	microsoft	windows_server_2008 windows_xp windows_7 windows_server_2003 windows_vista windows_2003_server	The Shell in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbit…	CWE-94 Code Injection	CVE-2012-0175	2024-11-21 10:34	2012-07-11	Show	GitHub Exploit DB Packet Storm

307006	-	symantec	message_filter	Multiple cross-site request forgery (CSRF) vulnerabilities in Brightmail Control Center in Symantec Message Filter 6.3 allow remote attackers to hijack the authentication of arbitrary users for reque…	CWE-352 Origin Validation Error	CVE-2012-0303	2024-11-21 10:34	2012-07-6	Show	GitHub Exploit DB Packet Storm

307007	-	symantec	message_filter	Cross-site scripting (XSS) vulnerability in Brightmail Control Center in Symantec Message Filter 6.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2012-0302	2024-11-21 10:34	2012-07-6	Show	GitHub Exploit DB Packet Storm

307008	-	symantec	message_filter	Session fixation vulnerability in Brightmail Control Center in Symantec Message Filter 6.3 allows remote attackers to hijack web sessions via unspecified vectors.	CWE-287 Improper Authentication	CVE-2012-0301	2024-11-21 10:34	2012-07-6	Show	GitHub Exploit DB Packet Storm

307009	-	symantec	message_filter	Brightmail Control Center in Symantec Message Filter 6.3 does not properly restrict establishment of sessions to the listening port, which allows remote attackers to obtain potentially sensitive vers…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-0300	2024-11-21 10:34	2012-07-6	Show	GitHub Exploit DB Packet Storm

307010	-	novell	groupwise	Directory traversal vulnerability in WebAccess in Novell GroupWise before 8.03 allows remote attackers to read arbitrary files via the User.interface parameter.	CWE-22 Path Traversal	CVE-2012-0410	2024-11-21 10:34	2012-07-5	Show	GitHub Exploit DB Packet Storm