Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197611 5.5 警告
Local 		LibGD project - GD Graphics Library の gd_gd2.c の gdImageCreateFromGd2Ctx 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-10167 2017-04-6 20:04 2016-08-17 Show GitHub Exploit DB Packet Storm
197612 9.8 緊急
Network 		LibGD project - GD Graphics Library の gd_interpolation.c の _gdContributionsAlloc 関数における整数アンダーフローの脆弱性 CWE-191
整数アンダーフロー 		CVE-2016-10166 2017-04-6 20:04 2016-08-6 Show GitHub Exploit DB Packet Storm
197613 5.5 警告
Local 		LibGD project - GD Graphics Library の gd_tga.c の read_image_tga 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-6906 2017-04-6 20:04 2016-08-16 Show GitHub Exploit DB Packet Storm
197614 7.8 重要
Local 		JasPer Project - JasPer の jpc_t2dec.c の jpc_dec_decodepkt 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2017-6852 2017-04-6 20:02 2017-01-25 Show GitHub Exploit DB Packet Storm
197615 5.5 警告
Local 		JasPer Project - JasPer の jas_seq.c の jas_matrix_bindsub 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2017-6851 2017-04-6 20:02 2017-01-22 Show GitHub Exploit DB Packet Storm
197616 5.5 警告
Local 		JasPer Project - JasPer の jp2_cod.c の jp2_cdef_destroy 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-6850 2017-04-6 20:02 2017-03-5 Show GitHub Exploit DB Packet Storm
197617 7.8 重要
Local 		JasPer Project - JasPer の jpc_t2cod.c の jpc_pi_nextcprl 関数における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-10251 2017-04-6 20:02 2016-11-4 Show GitHub Exploit DB Packet Storm
197618 7.5 重要
Network 		JasPer Project - JasPer の jp2_cod.c の jp2_colr_destroy 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2016-10250 2017-04-6 20:02 2016-10-23 Show GitHub Exploit DB Packet Storm
197619 7.8 重要
Local 		JasPer Project - JasPer の jpc_dec.c の jpc_dec_tiledecode 関数における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-10249 2017-04-6 20:02 2016-10-23 Show GitHub Exploit DB Packet Storm
197620 7.5 重要
Network 		JasPer Project - JasPer の jpc_tsfb.c の jpc_tsfb_synthesize 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2016-10248 2017-04-6 20:02 2016-10-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2221 8.5 HIGH
Network 		- - A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution charac… CWE-78
OS Command  		CVE-2026-4480 2026-05-27 00:16 2026-05-27 Show GitHub Exploit DB Packet Storm
2222 5.6 MEDIUM
Network 		- - When the DLP is active, the UserCheck Web Portal contains an input-handling issue in the UserChoice flow. Under specific conditions, an attacker who can access the UserCheck Ask page could attempt to… CWE-89
SQL Injection 		CVE-2026-48134 2026-05-27 00:16 2026-05-26 Show GitHub Exploit DB Packet Storm
2223 8.1 HIGH
Network 		- - The Security Gateway does not correctly validate a length value in certain IKE packets when NAT-T is used (4500/UDP). As a result, a specially crafted or malformed packet can cause the VPN processing… CWE-125
Out-of-bounds Read 		CVE-2026-48132 2026-05-27 00:16 2026-05-26 Show GitHub Exploit DB Packet Storm
2224 8.8 HIGH
Network 		- - luci-app-https-dns-proxy through 2025.12.29-5 — an optional LuCI web UI add-on for the https-dns-proxy package, distributed through the OpenWrt community packages feed and not installed by default — … CWE-77
Command Injection 		CVE-2026-46368 2026-05-27 00:16 2026-05-27 Show GitHub Exploit DB Packet Storm
2225 9.8 CRITICAL
Network 		- - Mirasvit Full Page Cache Warmer for Magento 2 before version 1.11.12 contains a PHP object injection vulnerability that allows unauthenticated attackers to achieve remote code execution by supplying … CWE-502
 Deserialization of Untrusted Data 		CVE-2026-45247 2026-05-27 00:16 2026-05-27 Show GitHub Exploit DB Packet Storm
2226 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-43918. Reason: This candidate is a duplicate of CVE-2026-43918. Notes: All CVE users should reference CVE-2026-439… - CVE-2026-43919 2026-05-27 00:16 2026-05-27 Show GitHub Exploit DB Packet Storm
2227 7.2 HIGH
Network 		- - OpenKM 6.3.12 contains a remote code execution vulnerability that allows authenticated administrators to execute arbitrary Java/BeanShell code through the /admin/Scripting endpoint. Attackers can sub… CWE-94
Code Injection 		CVE-2026-42785 2026-05-27 00:16 2026-05-27 Show GitHub Exploit DB Packet Storm
2228 7.2 HIGH
Network 		- - OpenKM 6.3.12 contains an unrestricted SQL execution vulnerability that allows authenticated administrative users to execute arbitrary SQL statements against the application database via the Database… CWE-89
SQL Injection 		CVE-2026-42425 2026-05-27 00:16 2026-05-27 Show GitHub Exploit DB Packet Storm
2229 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-28496. Reason: This candidate is a duplicate of CVE-2026-28496. Notes: All CVE users should reference CVE-2026-284… - CVE-2026-42347 2026-05-27 00:16 2026-05-27 Show GitHub Exploit DB Packet Storm
2230 4.9 MEDIUM
Network 		- - OpenKM 6.3.12 contains a local file inclusion vulnerability in the administrative scripting interface at /admin/Scripting that allows authenticated administrators to read arbitrary files by supplying… CWE-22
Path Traversal 		CVE-2026-41917 2026-05-27 00:16 2026-05-27 Show GitHub Exploit DB Packet Storm