Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201301	4.4	警告 Local	Fabrice Bellard	-	QEMU の hw/net/net_tx_pkt.c の net_tx_pkt_do_sw_fragmentation 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-6834	2016-12-13 16:00	2016-08-9	Show	GitHub Exploit DB Packet Storm

201302	4.4	警告 Local	Fabrice Bellard	-	QEMU の hw/net/vmxnet3.c の vmxnet3_io_bar0_write 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-416 解放済みメモリの使用	CVE-2016-6833	2016-12-13 16:00	2016-08-9	Show	GitHub Exploit DB Packet Storm

201303	4.4	警告 Local	Fabrice Bellard	-	QEMU の hw/virtio/virtio.c の virtqueue_map_desc 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 CWE-284	CVE-2016-6490	2016-12-13 16:00	2016-07-27	Show	GitHub Exploit DB Packet Storm

201304	6	警告 Local	Fabrice Bellard	-	QEMU の hw/scsi/mptsas.c の mptsas_fetch_requests 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 CWE-399	CVE-2016-4964	2016-12-13 16:00	2016-05-24	Show	GitHub Exploit DB Packet Storm

201305	7.5	重要 Network	OpenBSD	-	OpenSSH の kex.c の kex_input_kexinit 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-8858	2016-12-12 17:21	2016-10-10	Show	GitHub Exploit DB Packet Storm

201306	7.5	重要 Network	Linux	-	Linux Kernel の net/ipv6/icmp.c の icmp6_send 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-9919	2016-12-12 16:46	2016-11-28	Show	GitHub Exploit DB Packet Storm

201307	7.8	重要 Local	Google Linux	-	Linux Kernel の drivers/staging/android/ion/ion.c の ion_ioctl 関数における権限を取得される脆弱性	CWE-264 CWE-416	CVE-2016-9120	2016-12-12 16:46	2016-02-24	Show	GitHub Exploit DB Packet Storm

201308	7.8	重要 Local	Google Linux	-	Linux Kernel の arch/arm64/kernel/sys.c における "厳密なページ許可" による保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-8967	2016-12-12 16:46	2015-01-8	Show	GitHub Exploit DB Packet Storm

201309	7.8	重要 Local	Linux	-	Linux Kernel の arch/arm/kernel/sys_oabi-compat.c における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-8966	2016-12-12 16:46	2015-12-29	Show	GitHub Exploit DB Packet Storm

201310	7.5	重要 Network	Roundcube.net	-	Roundcube の steps/mail/sendmail.inc における任意のコードを実行される脆弱性	CWE-284 不適切なアクセス制御	CVE-2016-9920	2016-12-12 15:20	2016-11-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2651	8.2	HIGH Network	free5gc	free5gc	free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's SMF mounts the UPI management route group without inbound OAuth2 middleware. On top of that, the DELETE /upi…	CWE-306 CWE-476 CWE-862 Missing Authentication for Critical Function NULL Pointer Dereference Missing Authorization	CVE-2026-44328	2026-05-29 01:24	2026-05-28	Show	GitHub Exploit DB Packet Storm

2652	10.0	CRITICAL Network	free5gc	free5gc	free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's SMF mounts the UPI management route group without OAuth2/bearer-token authorization middleware. A network at…	CWE-306 CWE-862 Missing Authentication for Critical Function Missing Authorization	CVE-2026-44329	2026-05-29 01:23	2026-05-28	Show	GitHub Exploit DB Packet Storm

2653	8.8	HIGH Network	-	-	A weakness has been identified in UTT HiPER 1200GW up to 2.5.3-170306. Affected is an unknown function of the file /goform/formPptpClientConfig of the component Web Management Interface. This manipul…	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-9628	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2654	6.3	MEDIUM Network	-	-	A vulnerability was found in itsourcecode Courier Management System 1.0. The affected element is an unknown function of the file /parcel_list.php. Performing a manipulation of the argument s results …	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-9607	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2655	4.3	MEDIUM Network	-	-	A weakness has been identified in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This impacts an unknown function of the file /index.php of the component SQL Handler. E…	CWE-200 CWE-209 Information Exposure Information Exposure Through an Error Message	CVE-2026-9583	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2656	7.3	HIGH Network	-	-	A vulnerability has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM up to 56ba287f2e9031523ccb4244cb6e3fe530e4e5d5. The affected element is an unknown function of the component Dashboard. Such mani…	CWE-266 CWE-284 Incorrect Privilege Assignment Improper Access Control	CVE-2026-9562	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2657	6.3	MEDIUM Network	-	-	A vulnerability was identified in Totolink CA750-PoE 6.2c.510. This affects the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Such manipulation of the argu…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-9511	2026-05-29 01:16	2026-05-26	Show	GitHub Exploit DB Packet Storm

2658	4.8	MEDIUM Network	-	-	Crypt::ScryptKDF versions through 0.010 for Perl uses insecure random number source when no CSPRNG module is available. The random_bytes function fell back to using the built-in rand() function when…	CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2026-8647	2026-05-29 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2659	7.5	HIGH Network	-	-	Budibase is an open-source low-code platform. Prior to 3.39.0, the webhook schema-building endpoint is registered under builderRoutes, but the generic authorization middleware skips authorization for…	CWE-862 Missing Authorization	CVE-2026-48151	2026-05-29 01:16	2026-05-28	Show	GitHub Exploit DB Packet Storm

2660	8.1	HIGH Network	-	-	Budibase is an open-source low-code platform. Prior to 3.39.0, the Budibase Text component renders markdown by assigning marked.parse(markdown) straight to innerHTML with no sanitizer (packages/bbui/…	CWE-79 Cross-site Scripting	CVE-2026-48149	2026-05-29 01:16	2026-05-28	Show	GitHub Exploit DB Packet Storm