Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200431 7.5 危険 日本電気
OpenSSL Project		 - OpenSSL の ssl/d1_lib.c の dtls1_clear_queues 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2014-8176 2017-03-9 15:31 2014-06-3 Show GitHub Exploit DB Packet Storm
200432 1.8 注意 アップル
日本電気
NTP Project		 - NTP の ntpd の ntp_proto.c 内の receive の symmetric-key 機能におけるパケットを偽装される脆弱性 CWE-Other
その他 		CVE-2015-1798 2017-03-9 15:30 2015-04-7 Show GitHub Exploit DB Packet Storm
200433 8.6 重要
Network 		日本電気
openSUSE project
SUSE
オラクル
NTP Project		 - NTP の ntpd におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-4957 2017-03-9 15:29 2016-06-2 Show GitHub Exploit DB Packet Storm
200434 7.5 危険 日本電気
日立
NTP Project		 - NTP の ntpd におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-9295 2017-03-9 15:28 2014-11-3 Show GitHub Exploit DB Packet Storm
200435 5 警告 日本電気
日立
NTP Project		 - NTP の ntpd の config_auth 機能における暗号保護メカニズムを破られる脆弱性 CWE-Other
その他 		CVE-2014-9293 2017-03-9 15:28 2014-11-3 Show GitHub Exploit DB Packet Storm
200436 7.5 重要
Network 		ISC, Inc.
日本電気		 - ISC BIND 9 にサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-2776 2017-03-9 15:27 2016-09-27 Show GitHub Exploit DB Packet Storm
200437 6.1 警告
Network 		Adcon Telemetry - Adcon Telemetry A850 Telemetry Gateway Base Station の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-2274 2017-03-9 13:56 2016-12-8 Show GitHub Exploit DB Packet Storm
200438 8.8 重要
Network 		FATEK Automation Corporation - Fatek Automation PM Designer V3 および FV Designer におけるクラッシュを引き起こされる脆弱性 CWE-119
バッファエラー 		CVE-2016-5796 2017-03-9 13:50 2016-10-13 Show GitHub Exploit DB Packet Storm
200439 7.5 重要
Network 		FATEK Automation Corporation - Fatek Automation PM Designer V3 および FV Designer におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-5798 2017-03-9 13:50 2016-10-13 Show GitHub Exploit DB Packet Storm
200440 9.8 緊急
Network 		libxpm project - libXpm における整数オーバーフローの脆弱性 CWE-119
CWE-190
CWE-787
CVE-2016-10164 2017-03-9 11:29 2016-12-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
671 5.4 MEDIUM
Network 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
Cross-site Scripting 		CVE-2026-48301 2026-06-10 23:46 2026-06-10 Show GitHub Exploit DB Packet Storm
672 5.4 MEDIUM
Network 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
Cross-site Scripting 		CVE-2026-48304 2026-06-10 23:45 2026-06-10 Show GitHub Exploit DB Packet Storm
673 5.4 MEDIUM
Network 		adobe experience_manager Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma… New CWE-79
Cross-site Scripting 		CVE-2026-47974 2026-06-10 23:33 2026-06-10 Show GitHub Exploit DB Packet Storm
674 7.3 HIGH
Network 		- - Improper comparison with the certificates trusted list in S2OPC allows an attacker well-formed untrusted certificate to be considered trusted New CWE-295
Improper Certificate Validation  		CVE-2026-9758 2026-06-10 23:16 2026-06-10 Show GitHub Exploit DB Packet Storm
675 - - - Jenkins 2.483 through 2.567 (both inclusive), LTS 2.492.1 through 2.555.2 (both inclusive) does not escape the user-provided description of a generic offline cause that could be set through the `POST… New - CVE-2026-53441 2026-06-10 23:16 2026-06-10 Show GitHub Exploit DB Packet Storm
676 8.8 HIGH
Network 		- - Ghidra before 12.1 contains an authentication bypass vulnerability in PKIAuthenticationModule.authenticate() that allows any user with a valid CA-signed certificate to impersonate other users by pres… New CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2026-52754 2026-06-10 23:16 2026-06-10 Show GitHub Exploit DB Packet Storm
677 8.8 HIGH
Network 		- - Ghidra before 12.1 contains an unsafe deserialization vulnerability in client-side Shared-Project RMI connection code that allows unauthenticated remote code execution. Attackers can craft a maliciou… New CWE-502
 Deserialization of Untrusted Data 		CVE-2026-52751 2026-06-10 23:16 2026-06-10 Show GitHub Exploit DB Packet Storm
678 7.8 HIGH
Local 		- - Ghidra before 12.1 contains a command injection vulnerability in URL annotation handling on Windows where cmd.exe metacharacters are not properly escaped. Attackers can execute arbitrary commands und… New CWE-88
Argument Injection 		CVE-2026-52750 2026-06-10 23:16 2026-06-10 Show GitHub Exploit DB Packet Storm
679 7.7 HIGH
Network 		- - Hermes WebUI before version 0.51.296 contains a workspace boundary bypass vulnerability that allows authenticated attackers to circumvent blocked-root path checks by exploiting an early return in the… New CWE-22
Path Traversal 		CVE-2026-49957 2026-06-10 23:16 2026-06-10 Show GitHub Exploit DB Packet Storm
680 8.8 HIGH
Network 		- - Ghidra 11.0 before 12.1 contains a SQL injection vulnerability in the changePassword() method of PostgresFunctionDatabase that fails to escape double quotes in usernames interpolated into ALTER ROLE … New CWE-89
SQL Injection 		CVE-2026-49498 2026-06-10 23:16 2026-06-10 Show GitHub Exploit DB Packet Storm