Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199931 7.8 重要
Local 		Debian
GraphicsMagick		 - GraphicsMagick の MagickCore/memory.c の AcquireMagickMemory 関数における脆弱性 CWE-119
バッファエラー 		CVE-2016-8862 2017-03-9 16:51 2016-09-14 Show GitHub Exploit DB Packet Storm
199932 5.5 警告
Local 		ImageMagick - ImageMagick の MagickCore/pixel-accessor.h の IsPixelMonochrome 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-8678 2017-03-9 16:51 2016-09-14 Show GitHub Exploit DB Packet Storm
199933 7.8 重要
Local 		openSUSE project
Debian
ImageMagick		 - ImageMagick の MagickCore/quantum.c の AcquireQuantumPixels 関数における脆弱性 CWE-119
バッファエラー 		CVE-2016-8677 2017-03-9 16:51 2016-09-16 Show GitHub Exploit DB Packet Storm
199934 9.8 緊急
Network 		Aerospike, Inc. - Aerospike Database Server の RW ファブリックメッセージのパーティクルタイプにおける境界外インデックスに関する脆弱性 CWE-129
配列インデックスの不適切な検証 		CVE-2016-9053 2017-03-9 16:49 2016-10-26 Show GitHub Exploit DB Packet Storm
199935 9.8 緊急
Network 		Aerospike, Inc. - Aerospike Database Server のバッチ処理フィールドの構文解析機能における境界外書き込みの脆弱性 CWE-787
境界外書き込み 		CVE-2016-9051 2017-03-9 16:49 2016-10-26 Show GitHub Exploit DB Packet Storm
199936 7.5 重要
Network 		Aerospike, Inc. - Aerospike Database Server の Fabric_Worker コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2016-9049 2017-03-9 16:49 2016-10-26 Show GitHub Exploit DB Packet Storm
199937 7.8 重要
Local 		JasPer Project
openSUSE project
Fedora Project		 - JasPer の jas_stream.c の mem_close 関数におけるメモリ二重解放の脆弱性 CWE-415
二重解放 		CVE-2016-8693 2017-03-9 16:03 2016-10-20 Show GitHub Exploit DB Packet Storm
199938 5.5 警告
Local 		Debian
JasPer Project
Fedora Project		 - JasPer の libjasper/jpc/jpc_dec.c の jpc_dec_process_siz 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-369
ゼロ除算 		CVE-2016-8692 2017-03-9 16:03 2016-10-16 Show GitHub Exploit DB Packet Storm
199939 5.5 警告
Local 		Debian
JasPer Project
Fedora Project		 - JasPer の libjasper/jpc/jpc_dec.c の jpc_dec_process_siz 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-369
ゼロ除算 		CVE-2016-8691 2017-03-9 16:03 2016-10-16 Show GitHub Exploit DB Packet Storm
199940 5 警告 アップル
日本電気		 - 複数の Apple 製品の Secure Transport における EXPORT_RSA 暗号に対して暗号スイートのダウングレード攻撃を実行される脆弱性 CWE-310
暗号の問題 		CVE-2015-1067 2017-03-9 15:34 2015-03-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3561 9.8 CRITICAL
Network 		ibm engineering_lifecycle_management IBM Engineering Lifecycle Management 7.0.3, 7.1.0, and 7.2.0 could allow an unauthenticated remote attacker to update server property files that would allow them to gain unauthorized access to the ap… CWE-863
 Incorrect Authorization 		CVE-2026-3660 2026-05-30 04:31 2026-05-27 Show GitHub Exploit DB Packet Storm
3562 9.6 CRITICAL
Network 		amirraminfar dozzle Dozzle is a realtime log viewer for docker containers. Prior to 10.5.2, he WebSocket upgrader for the /exec and /attach endpoints uses CheckOrigin: func(r *http.Request) bool { return true }, accepti… CWE-346
 Origin Validation Error 		CVE-2026-44985 2026-05-30 04:30 2026-05-27 Show GitHub Exploit DB Packet Storm
3563 7.1 HIGH
Adjacent 		free5gc free5gc free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the AMF in Free5GC does not verify the UE Security Capabilities received in NGAP PathSwitchRequest messages against it… CWE-358
 Improperly Implemented Security Check for Standard 		CVE-2026-42081 2026-05-30 04:24 2026-05-28 Show GitHub Exploit DB Packet Storm
3564 8.6 HIGH
Network 		amirraminfar dozzle Dozzle is a realtime log viewer for docker containers. Prior to 10.5.2, in a default dozzle deploy (the documented quickstart, no DOZZLE_AUTH_PROVIDER set), POST /api/notifications/test-webhook is re… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-45298 2026-05-30 04:23 2026-05-27 Show GitHub Exploit DB Packet Storm
3565 7.5 HIGH
Network 		tanium server Tanium addressed a denial of service vulnerability in Tanium Server. CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2026-9156 2026-05-30 04:16 2026-05-27 Show GitHub Exploit DB Packet Storm
3566 7.8 HIGH
Local 		synology beedrive Uncontrolled search path element vulnerability in OpenSSL DLL component in Synology BeeDrive for desktop before 1.3.2-13814 allows local users to execute arbitrary code via unspecified vectors. CWE-427
 Uncontrolled Search Path Element 		CVE-2023-52945 2026-05-30 04:13 2026-05-27 Show GitHub Exploit DB Packet Storm
3567 8.8 HIGH
Local 		docker docker_desktop The Docker CLI --use-api-socket flag bypasses Enhanced Container Isolation (ECI) restrictions in Docker Desktop. When ECI is enabled, Docker socket mounts from containers are denied unless explicitly… CWE-863
 Incorrect Authorization 		CVE-2026-6406 2026-05-30 04:02 2026-05-23 Show GitHub Exploit DB Packet Storm
3568 6.1 MEDIUM
Network 		heartcombo devise Devise is an authentication solution for Rails based on Warden. In versions 5.0.3 and below, when the Timeoutable module is enabled in Devise, the FailureApp#redirect_url method returns request.refer… CWE-601
Open Redirect 		CVE-2026-40295 2026-05-30 03:55 2026-05-23 Show GitHub Exploit DB Packet Storm
3569 5.5 MEDIUM
Local 		bentoml bentoml BentoML is a Python library for building online serving systems optimized for AI apps and model inference. In versions 1.4.38 and prior, the build packaging workflow follows attacker-controlled symli… CWE-59
Link Following 		CVE-2026-40610 2026-05-30 03:53 2026-05-23 Show GitHub Exploit DB Packet Storm
3570 8.8 HIGH
Network 		google chrome Out of bounds write in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical) CWE-787
 Out-of-bounds Write 		CVE-2026-9879 2026-05-30 03:46 2026-05-29 Show GitHub Exploit DB Packet Storm