Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200191 5 警告 日本電気
日立
NTP Project		 - NTP の ntpd の config_auth 機能における暗号保護メカニズムを破られる脆弱性 CWE-Other
その他 		CVE-2014-9293 2017-03-9 15:28 2014-11-3 Show GitHub Exploit DB Packet Storm
200192 7.5 重要
Network 		ISC, Inc.
日本電気		 - ISC BIND 9 にサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-2776 2017-03-9 15:27 2016-09-27 Show GitHub Exploit DB Packet Storm
200193 6.1 警告
Network 		Adcon Telemetry - Adcon Telemetry A850 Telemetry Gateway Base Station の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2274 2017-03-9 13:56 2016-12-8 Show GitHub Exploit DB Packet Storm
200194 8.8 重要
Network 		FATEK Automation Corporation - Fatek Automation PM Designer V3 および FV Designer におけるクラッシュを引き起こされる脆弱性 CWE-119
バッファエラー 		CVE-2016-5796 2017-03-9 13:50 2016-10-13 Show GitHub Exploit DB Packet Storm
200195 7.5 重要
Network 		FATEK Automation Corporation - Fatek Automation PM Designer V3 および FV Designer におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-5798 2017-03-9 13:50 2016-10-13 Show GitHub Exploit DB Packet Storm
200196 9.8 緊急
Network 		libxpm project - libXpm における整数オーバーフローの脆弱性 CWE-119
CWE-190
CWE-787
CVE-2016-10164 2017-03-9 11:29 2016-12-12 Show GitHub Exploit DB Packet Storm
200197 5.9 警告
Network 		ChatSecure
Zom		 - ChatSecure および Zom の複数の XMPP クライアントの "XEP-0280: Message Carbons" の実装における連絡先を含むユーザになりすまされる脆弱性 CWE-20
CWE-346
CVE-2017-5590 2017-03-8 19:10 2017-01-24 Show GitHub Exploit DB Packet Storm
200198 6.1 警告
Network 		Visonic - Visonic PowerLink2 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-5811 2017-03-8 19:06 2016-12-13 Show GitHub Exploit DB Packet Storm
200199 9.8 緊急
Network 		OmniMetrix, LLC - OmniMetrix OmniView Web アプリケーションにおけるアクセス権を取得される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-5801 2017-03-8 19:02 2016-12-15 Show GitHub Exploit DB Packet Storm
200200 7.5 重要
Network 		OmniMetrix, LLC - OmniMetrix OmniView Web アプリケーションにおけるアカウント認証情報が漏えいする脆弱性 CWE-200
情報漏えい 		CVE-2016-5786 2017-03-8 19:02 2016-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
601 5.3 MEDIUM
Network 		- - Hermes WebUI before version 0.51.270 contains a resource exhaustion vulnerability that allows unauthenticated remote attackers to degrade service availability by repeatedly calling the passkey option… New CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-49955 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
602 6.5 MEDIUM
Network 		- - The Apache Airflow Samba provider's `GCSToSambaOperator` joined GCS object names to the SMB destination path without a containment check, so an object named with `../` segments resolved a write path … New CWE-22
Path Traversal 		CVE-2026-49818 2026-06-10 02:17 2026-06-9 Show GitHub Exploit DB Packet Storm
603 7.8 HIGH
Local 		- - Improper access control in Microsoft PC Manager allows an authorized attacker to bypass a security feature locally. New CWE-284
Improper Access Control 		CVE-2026-49161 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
604 7.1 HIGH
Local 		- - Improper input validation in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally. New CWE-20
CWE-23
 Improper Input Validation 
 Relative Path Traversal 		CVE-2026-48569 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
605 7.8 HIGH
Local 		- - Untrusted search path in Windows Narrator Braille allows an authorized attacker to elevate privileges locally. New CWE-426
 Untrusted Search Path 		CVE-2026-48565 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
606 4.6 MEDIUM
Network 		- - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. New CWE-79
Cross-site Scripting 		CVE-2026-48562 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
607 5.4 MEDIUM
Network 		- - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. New CWE-502
 Deserialization of Untrusted Data 		CVE-2026-48560 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
608 7.5 HIGH
Network 		- - Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network. New CWE-416
 Use After Free 		CVE-2026-47654 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
609 8.8 HIGH
Network 		- - Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network. New CWE-416
 Use After Free 		CVE-2026-47653 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
610 9.8 CRITICAL
Network 		- - External control of file name or path in Azure Stack Edge allows an unauthorized attacker to execute code over a network. New CWE-73
 External Control of File Name or Path 		CVE-2026-47643 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm