Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199161 7.5 重要
Network 		Cloudera, Inc. - CDH の Impala における Setry 認証を回避される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-6605 2017-05-15 14:09 2016-07-26 Show GitHub Exploit DB Packet Storm
199162 8.8 重要
Network 		Sierra Wireless - Sierra Wireless GX 440 デバイスの ALEOS ファームウェアにおける認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-5071 2017-05-15 13:59 2016-06-9 Show GitHub Exploit DB Packet Storm
199163 9.8 緊急
Network 		Sierra Wireless - Sierra Wireless GX 440 デバイスの ALEOS ファームウェアにおける証明書・パスワードの管理に関する脆弱性 CWE-255
証明書・パスワード管理 		CVE-2016-5070 2017-05-15 13:59 2016-06-9 Show GitHub Exploit DB Packet Storm
199164 9.8 緊急
Network 		Sierra Wireless - Sierra Wireless GX 440 デバイスの ALEOS ファームウェアにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2016-5069 2017-05-15 13:59 2016-06-9 Show GitHub Exploit DB Packet Storm
199165 9.8 緊急
Network 		Sierra Wireless - Sierra Wireless GX 440 デバイスの ALEOS ファームウェアにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2016-5068 2017-05-15 13:59 2016-06-9 Show GitHub Exploit DB Packet Storm
199166 8.8 重要
Network 		Sierra Wireless - Sierra Wireless GX 440 デバイスの ALEOS ファームウェアにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2016-5067 2017-05-15 13:59 2016-06-9 Show GitHub Exploit DB Packet Storm
199167 9.8 緊急
Network 		Sierra Wireless - Sierra Wireless GX 440 デバイスの ALEOS ファームウェアにおける証明書・パスワードの管理に関する脆弱性 CWE-255
証明書・パスワード管理 		CVE-2016-5066 2017-05-15 13:59 2016-06-9 Show GitHub Exploit DB Packet Storm
199168 9.8 緊急
Network 		Sierra Wireless - Sierra Wireless GX 440 デバイスの ALEOS ファームウェアにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2016-5065 2017-05-15 13:59 2016-06-9 Show GitHub Exploit DB Packet Storm
199169 7.5 重要
Network 		Linux - Linux Kernel の crypto/ahash.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2017-7618 2017-05-15 13:33 2017-04-10 Show GitHub Exploit DB Packet Storm
199170 5.5 警告
Local 		Linux - Linux Kernel の mm/mempolicy.c の set_mempolicy および mbind compat システムコールにおける重要な情報を取得される脆弱性 CWE-388
エラー処理 		CVE-2017-7616 2017-05-15 13:33 2017-04-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4361 - - - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb() Add the same NULL guard already present in l2cap_sock_resume… - CVE-2026-45834 2026-06-2 02:17 2026-05-27 Show GitHub Exploit DB Packet Storm
4362 10.0 CRITICAL
Network 		- - Dokploy is a free, self-hostable Platform as a Service (PaaS). From 0.27.0 to before 0.29.3, a hardcoded BETTER_AUTH_SECRET fallback ("better-auth-secret-123456789") lets an unauthenticated attacker … CWE-798
 Use of Hard-coded Credentials 		CVE-2026-45631 2026-06-2 02:17 2026-05-30 Show GitHub Exploit DB Packet Storm
4363 8.1 HIGH
Network 		apache apache-airflow-providers-google Apache Airflow providers-google's `ComputeEngineSSHHook` disables SSH host-key verification by default, exposing SSH traffic between an Airflow worker and a Compute Engine VM to in-path network attac… CWE-322
 Key Exchange without Entity Authentication 		CVE-2026-45361 2026-06-2 02:17 2026-05-25 Show GitHub Exploit DB Packet Storm
4364 7.7 HIGH
Network 		- - FastGPT is an AI Agent building platform. Prior to 4.15.0-beta1, a Server-Side Request Forgery (SSRF) vulnerability allows an authenticated attacker to bypass the global isInternalAddress network pro… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-44285 2026-06-2 02:17 2026-05-30 Show GitHub Exploit DB Packet Storm
4365 6.1 MEDIUM
Network 		- - SourceCodester Doctor Appointment System 1.0 is vulnerable to Cross Site Scripting (XSS) due to improper handling of user supplied input in the user registration functionality in register.php. CWE-79
Cross-site Scripting 		CVE-2026-36324 2026-06-2 02:16 2026-05-30 Show GitHub Exploit DB Packet Storm
4366 6.5 MEDIUM
Network 		- - A vulnerability was found in Tenda W12 3.0.0.7(4763). This issue affects the function cgiSysWebTimeoutSet of the file /bin/httpd of the component Web Management Interface. The manipulation of the arg… CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-10190 2026-06-2 02:16 2026-06-1 Show GitHub Exploit DB Packet Storm
4367 4.3 MEDIUM
Network 		- - A vulnerability has been found in Dolibarr ERP CRM 23.0.0/23.0.1/23.0.2. The affected element is an unknown function of the file htdocs/user/messaging.php. Such manipulation of the argument ID leads … CWE-285
CWE-639
Improper Authorization
 Authorization Bypass Through User-Controlled Key 		CVE-2026-10154 2026-06-2 02:16 2026-05-31 Show GitHub Exploit DB Packet Storm
4368 3.8 LOW
Network 		tfa_basic_plugins_project tfa_basic_plugins An access bypass vulnerability in Drupal TFA Basic Plugins allows users with the administer users permission to view or generate recovery codes for other users. This issue affects TFA Basic Plugins… CWE-267
 Privilege Defined With Unsafe Actions 		CVE-2026-6816 2026-06-2 02:15 2026-05-29 Show GitHub Exploit DB Packet Storm
4369 8.8 HIGH
Network 		apache activemq Incorrect Default Permissions vulnerability in Apache ActiveMQ. This issue affects Apache ActiveMQ: before 5.19.7, from 6.0.0 before 6.2.6. The default Jolokia authorization settings granted non-ad… CWE-276
Incorrect Default Permissions  		CVE-2026-49157 2026-06-2 02:09 2026-06-1 Show GitHub Exploit DB Packet Storm
4370 5.9 MEDIUM
Network 		apache activemq
activemq_broker 		Exposure of Sensitive Information Through Metadata vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All. Brokers that are configured with a network connector with syncDurabl… CWE-1230
 Exposure of Sensitive Information Through Metadata 		CVE-2026-49270 2026-06-2 02:09 2026-06-1 Show GitHub Exploit DB Packet Storm