Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
199361	6.5	警告 Network	アップル	-	Apple iOS および Safari の Safari コンポーネントにおけるユーザインターフェースで FaceTime プロンプトを偽装される脆弱性	CWE-254 セキュリティ機能	CVE-2017-2453	2017-04-13 17:33	2017-03-27	Show	GitHub Exploit DB Packet Storm

199362	6.5	警告 Network	アップル	-	Apple iOS および Safari などで使用される WebKit JavaScript Bindings コンポーネントにおける同一生成元ポリシーを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2017-2442	2017-04-13 17:33	2017-03-27	Show	GitHub Exploit DB Packet Storm

199363	8.8	重要 Network	アップル	-	Apple iOS および Safari などで使用される WebKit における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2017-2378	2017-04-13 17:33	2017-03-27	Show	GitHub Exploit DB Packet Storm

199364	8.8	重要 Network	Deluge	-	Deluge の Web UI におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2017-7178	2017-04-13 17:32	2017-03-6	Show	GitHub Exploit DB Packet Storm

199365	5.9	警告 Network	アップル	-	Apple iOS の iTunes Store コンポーネントにおける Apple ID を取得される脆弱性	CWE-254 セキュリティ機能	CVE-2017-2412	2017-04-13 17:28	2017-03-27	Show	GitHub Exploit DB Packet Storm

199366	2.4	低 Physics	アップル	-	Apple iOS のアカウントコンポーネントにおける Apple ID を取得される脆弱性	CWE-200 情報漏えい	CVE-2017-2397	2017-04-13 17:28	2017-03-27	Show	GitHub Exploit DB Packet Storm

199367	9.8	緊急 Network	アップル	-	Apple macOS の libxslt コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2017-2477	2017-04-13 17:25	2017-03-27	Show	GitHub Exploit DB Packet Storm

199368	9.8	緊急 Network	アップル	-	Apple macOS の MCX クライアントコンポーネントにおけるアクセス制限を回避される脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-2402	2017-04-13 17:25	2017-03-27	Show	GitHub Exploit DB Packet Storm

199369	6.8	警告 Physics	アップル	-	Apple macOS の EFI コンポーネントにおける FileVault 2 の暗号化パスワードを取得される脆弱性	CWE-310 暗号の問題	CVE-2016-7585	2017-04-13 17:24	2017-03-27	Show	GitHub Exploit DB Packet Storm

199370	6.1	警告 Network	Sitecore	-	Sitecore Experience Platform の "/sitecore/client/Applications/List Manager/Taskpages/Contact list" におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-8855	2017-04-13 17:20	2016-12-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3751	-		-	-	FlexRIC v2.0.0 crashes when the iApp receives an E42_RIC_SUBSCRIPTION_REQUEST with an empty ricEventTriggerDefinition field. The E42 layer decoder accepts this as valid, but the E2AP encoder asserts …	-	CVE-2026-37225	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

3752	-		-	-	FlexRIC v2.0.0 contains reachable assert(0) calls in stub message handlers for whitelisted but unimplemented E2AP message types in the near-RT RIC. A remote unauthenticated attacker can send a decoda…	-	CVE-2026-37227	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

3753	-		-	-	An issue in ESA AnomalyMatch before 1.3.1 allow attackers to execute arbitrary code via crafted model checkpoint files. The affected components load model files from session directories using torch.l…	-	CVE-2026-38950	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

3754	5.5	MEDIUM Network	portainer	portainer	Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …	CWE-22 Path Traversal	CVE-2026-44885	2026-06-2 03:08	2026-05-29	Show	GitHub Exploit DB Packet Storm

3755	6.5	MEDIUM Network	portainer	portainer	Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …	CWE-862 Missing Authorization	CVE-2026-44884	2026-06-2 03:07	2026-05-29	Show	GitHub Exploit DB Packet Storm

3756	4.0	MEDIUM Network	-	-	A misconfigured Content Security Policy (CSP) in HCL BigFix Remote Control Server WebUI (versions 10.1.0.0442 and earlier) fails to define directives without fallbacks, allowing attackers to bypass i…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2026-21785	2026-06-2 03:04	2026-05-28	Show	GitHub Exploit DB Packet Storm

3757	7.5	HIGH Network	-	-	The Rocket.Chat DDP method autoTranslate.translateMessage in versions <8.5.0, <8.4.2, <8.3.4, <8.2.4, <8.1.5, <8.0.5, <7.13.8, and <7.10.12 accepts a client-supplied IMessage object and passes it dir…	CWE-284 Improper Access Control	CVE-2026-32995	2026-06-2 03:04	2026-05-28	Show	GitHub Exploit DB Packet Storm

3758	8.1	HIGH Network	portainer	portainer	Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …	CWE-863 Incorrect Authorization	CVE-2026-44882	2026-06-2 03:03	2026-05-29	Show	GitHub Exploit DB Packet Storm

3759	6.3	MEDIUM Network	-	-	A race condition in the shared Extreme Platform ONE IAM Gateway API-key authentication path could, under specific high-concurrency traffic conditions, intermittently allow requests authenticated with…	CWE-362 CWE-488 Race Condition Exposure of Data Element to Wrong Session	CVE-2026-9831	2026-06-2 03:02	2026-05-30	Show	GitHub Exploit DB Packet Storm

3760	6.3	MEDIUM Network	-	-	Missing authentication and clear‑text transmission of data from the heat pumps to the control server, combined with the absence of input validation on aggregated data, can lead to stored XSS that ena…	CWE-79 CWE-306 CWE-319 Cross-site Scripting Missing Authentication for Critical Function Cleartext Transmission of Sensitive Information	CVE-2026-25599	2026-06-2 03:02	2026-06-1	Show	GitHub Exploit DB Packet Storm