Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203641 5 警告 アップル
OpenSSL Project
ヒューレット・パッカード
オラクル		 - OpenSSL の s3_clnt.c 内の ssl3_get_key_exchange 関数における ECDHE-to-ECDH ダウングレード攻撃を実行される脆弱性 CWE-310
暗号の問題 		CVE-2014-3572 2016-08-9 18:14 2014-10-24 Show GitHub Exploit DB Packet Storm
203642 5 警告 日本電気
アップル
ヒューレット・パッカード
OpenSSL Project
オラクル
日立		 - OpenSSL の BN_sqr の実装における暗号保護メカニズムを破られる脆弱性 CWE-310
暗号の問題 		CVE-2014-3570 2016-08-9 18:14 2014-05-14 Show GitHub Exploit DB Packet Storm
203643 7.3 重要
Local 		Google - 複数の Nexus デバイス上で稼働する Android の Qualcomm ブートローダの app/aboot/aboot.c における整数オーバーフローの脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3850 2016-08-9 16:55 2016-08-1 Show GitHub Exploit DB Packet Storm
203644 7.8 重要
Local 		Google - Pixel C デバイス上で稼働する Android の ION ドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3849 2016-08-9 16:55 2016-08-1 Show GitHub Exploit DB Packet Storm
203645 7.8 重要
Local 		Google - Nexus 9 デバイス上で稼働する Android の NVIDIA メディアドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3847 2016-08-9 16:55 2016-08-1 Show GitHub Exploit DB Packet Storm
203646 7.8 重要
Local 		Google - Nexus 5 デバイス上で稼働する Android のカーネルのビデオドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3845 2016-08-9 16:55 2016-08-1 Show GitHub Exploit DB Packet Storm
203647 5.5 警告
Local 		Google - Android のメディアサーバの mm-video-v4l2 venc コンポーネントのセキュアセッション機能における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-3835 2016-08-9 16:55 2016-08-1 Show GitHub Exploit DB Packet Storm
203648 7.8 重要
Local 		Google - Android のメディアサーバの services/audioflinger/Effects.cpp における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3826 2016-08-9 16:55 2016-08-1 Show GitHub Exploit DB Packet Storm
203649 7.8 重要
Local 		Google - Android のメディアサーバの mm-video-v4l2 venc コンポーネントのセキュアセッション機能における権限を取得される脆弱性 CWE-119
バッファエラー 		CVE-2016-3823 2016-08-9 16:55 2016-08-1 Show GitHub Exploit DB Packet Storm
203650 9.8 緊急
Network 		Google - Android のメディアサーバの libmedia における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2016-3821 2016-08-9 16:55 2016-08-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2171 7.5 HIGH
Network 		- - An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getAlarmProfiles function due to improper neutralization of special elements in a SQL SELECT comma… CWE-89
SQL Injection 		CVE-2026-40817 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2172 7.5 HIGH
Network 		- - An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the _mb24confi_getDevice function due to improper neutralization of special elements in a SQL SELECT c… CWE-89
SQL Injection 		CVE-2026-40818 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2173 7.5 HIGH
Network 		- - An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the sync_data24 task due to improper neutralization of special elements in a SQL SELECT command. This … CWE-89
SQL Injection 		CVE-2026-40819 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2174 4.9 MEDIUM
Network 		- - A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getAccountByID function due to improper neutralization of special elements in a SQL SELECT command.… CWE-89
SQL Injection 		CVE-2026-40821 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2175 4.9 MEDIUM
Network 		- - A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the DevSerialReset function due to improper neutralization of special elements in a SQL SELECT command.… CWE-89
SQL Injection 		CVE-2026-40822 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2176 5.5 MEDIUM
Network 		- - A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the DevSerialReset function due to improper neutralization of special elements in a SQL UPDATE command … CWE-89
SQL Injection 		CVE-2026-40823 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2177 5.5 MEDIUM
Network 		- - A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the accountstatus view userid parameter due to improper neutralization of special elements in a SQL UPD… CWE-89
SQL Injection 		CVE-2026-40824 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2178 5.5 MEDIUM
Network 		- - A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the accountstatus view devices parameter due to improper neutralization of special elements in a SQL UP… CWE-89
SQL Injection 		CVE-2026-40825 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2179 4.9 MEDIUM
Network 		- - A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dsgvo_contracts view due to improper neutralization of special elements in a SQL SELECT command. Th… CWE-89
SQL Injection 		CVE-2026-40826 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2180 5.5 MEDIUM
Network 		- - A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the _RemoveRequest function due to improper neutralization of special elements in a SQL DELETE command … CWE-89
SQL Injection 		CVE-2026-40827 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm