Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202351 6.5 警告
Network 		LibGD project
Debian
openSUSE project		 - GD Graphics Library の gd_interpolation.c の _gdContributionsAlloc 関数における整数オーバーフローの脆弱性 CWE-119
CWE-Other
CVE-2016-6207 2016-11-21 11:00 2016-07-22 Show GitHub Exploit DB Packet Storm
202352 6.5 警告
Network 		LibGD project
Debian
openSUSE project		 - GD Graphics Library の gd_gif_out.c の output 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-6161 2016-11-21 11:00 2016-05-14 Show GitHub Exploit DB Packet Storm
202353 6.5 警告
Network 		LibGD project
Debian
openSUSE project		 - GD Graphics Library の gdImageCreateFromTgaCtx 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-6132 2016-11-21 11:00 2016-07-22 Show GitHub Exploit DB Packet Storm
202354 7.5 重要
Network 		The PHP Group
LibGD project
Debian
openSUSE project		 - PHP で使用される GD Graphics Library の gd_crop.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6128 2016-11-21 11:00 2016-07-22 Show GitHub Exploit DB Packet Storm
202355 8.8 重要
Network 		Mozilla Foundation
openSUSE project
Canonical
Debian
SUSE
レッドハット		 - Mozilla Firefox のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-2818 2016-11-21 10:57 2016-06-7 Show GitHub Exploit DB Packet Storm
202356 9.1 緊急
Network 		The PHP Group
LibGD project
Debian
openSUSE project		 - 特定の カスタム PHP の設定で使用される GD Graphics Library の gd_xbm.c におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2016-5116 2016-11-21 10:37 2016-05-13 Show GitHub Exploit DB Packet Storm
202357 9.8 緊急
Network 		openSUSE project
ImageMagick
Canonical
GraphicsMagick
Debian
オラクル
SUSE		 - GraphicsMagick および ImageMagick の blob.c の OpenBlob 関数における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2016-5118 2016-11-21 10:35 2016-05-30 Show GitHub Exploit DB Packet Storm
202358 5.5 警告
Local 		ImageMagick
Canonical
レッドハット		 - ImageMagick の EPHEMERAL コーダにおける任意のファイルを削除される脆弱性 CWE-Other
その他 		CVE-2016-3715 2016-11-18 17:01 2016-05-3 Show GitHub Exploit DB Packet Storm
202359 8.8 重要
Network 		Google
openSUSE project
Fedora Project		 - Google Chrome の PDFium で使用される OpenJPEG におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-5157 2016-11-18 17:00 2016-08-31 Show GitHub Exploit DB Packet Storm
202360 8.4 重要
Local 		ImageMagick
Canonical		 - ImageMagick に入力値検証不備の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3714 2016-11-18 16:58 2016-05-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2731 7.8 HIGH
Local 		mediatek mt6739_firmware
mt6761_firmware
mt6765_firmware
mt6768_firmware
mt6781_firmware
mt6789_firmware
mt6835_firmware
mt6853_firmware
mt6855_firmware
mt6877_firmware
mt6878_fi… 		In geniezone, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. U… CWE-787
 Out-of-bounds Write 		CVE-2026-20455 2026-06-2 02:56 2026-06-1 Show GitHub Exploit DB Packet Storm
2732 5.5 MEDIUM
Local 		mediatek mt7902_firmware
mt7920_firmware
mt7921_firmware
mt7922_firmware
mt7925_firmware
mt7927_firmware 		In wlan STA driver, there is a possible system crash due to a missing bounds check. This could lead to local denial of service with User execution privileges needed. User interaction is not needed fo… CWE-787
 Out-of-bounds Write 		CVE-2026-20456 2026-06-2 02:54 2026-06-1 Show GitHub Exploit DB Packet Storm
2733 9.8 CRITICAL
Network 		redhat
samba 		openshift_container_platform
samba
enterprise_linux 		A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution charac… CWE-78
OS Command  		CVE-2026-4480 2026-06-2 02:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2734 5.3 MEDIUM
Network 		rust-lang cargo Cargo incorrectly handled symlinks inside of crate tarballs downloaded from third-party registries, allowing a malicious crate to override the source code of another crate from the same registry. The… CWE-61
 UNIX Symbolic Link (Symlink) Following 		CVE-2026-5223 2026-06-2 02:52 2026-05-25 Show GitHub Exploit DB Packet Storm
2735 7.4 HIGH
Network 		pyjwt_project pyjwt PyJWT is a JSON Web Token implementation in Python. Prior to 2.13.0, when the verifier is decoding JSON Web Tokens, while supporting both asymmetric and HMAC algorithms, the library does not validate… CWE-287
CWE-347
Improper Authentication
 Improper Verification of Cryptographic Signature 		CVE-2026-48526 2026-06-2 02:45 2026-05-29 Show GitHub Exploit DB Packet Storm
2736 5.3 MEDIUM
Network 		pyjwt_project pyjwt PyJWT is a JSON Web Token implementation in Python. From 2.8.0 to 2.12.1, when verifying detached JWS tokens using the unencoded-payload option ("b64": false, RFC 7797), PyJWT performs Base64URL deco… CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-48525 2026-06-2 02:45 2026-05-29 Show GitHub Exploit DB Packet Storm
2737 3.7 LOW
Network 		pyjwt_project pyjwt PyJWT is a JSON Web Token implementation in Python. Prior to 2.13.0, PyJWKClient.get_signing_key() forces a fresh HTTP request to the JWKS endpoint for every JWT with an unknown kid value, with no ra… CWE-460
CWE-755
 Improper Cleanup on Thrown Exception
 Improper Handling of Exceptional Conditions 		CVE-2026-48524 2026-06-2 02:44 2026-05-29 Show GitHub Exploit DB Packet Storm
2738 5.4 MEDIUM
Network 		pyjwt_project pyjwt PyJWT is a JSON Web Token implementation in Python. From 2.9.0 to 2.12.1, there is a verifier-side algorithm allow-list bypass when jwt.decode() or jwt.decode_complete() are called with a PyJWK key. … CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2026-48523 2026-06-2 02:44 2026-05-29 Show GitHub Exploit DB Packet Storm
2739 8.8 HIGH
Network 		freerdp freerdp FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP server can trigger a heap-buffer-overflow write in the FreeRDP client by sending crafted RDPGFX PDUs.… CWE-122
Heap-based Buffer Overflow 		CVE-2026-44421 2026-06-2 02:35 2026-05-30 Show GitHub Exploit DB Packet Storm
2740 5.4 MEDIUM
Network 		ibm webmethods_integration_server IBM webMethods Integration (on prem) -Integration Server 10.15 through IS_10.15_Core_Fix2611.1 to IS_11.1_Core_Fix10 IBM webMethods Integration is vulnerable to server-side request forgery (SSRF). Th… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2025-14290 2026-06-2 02:33 2026-05-27 Show GitHub Exploit DB Packet Storm