Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203791 7.8 重要
Local 		Google - Nexus 5X および 6P デバイス上で稼動する Android の SPI ドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3807 2016-07-19 16:42 2016-07-6 Show GitHub Exploit DB Packet Storm
203792 7.8 重要
Local 		Google - Nexus 5X および 6P デバイス上で稼動する Android のカーネルのファイルシステムの実装における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3803 2016-07-19 16:09 2016-07-6 Show GitHub Exploit DB Packet Storm
203793 7.8 重要
Local 		Google - Nexus 9 デバイス上で稼動する Android のカーネルのファイルシステムの実装における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3802 2016-07-19 16:09 2016-07-6 Show GitHub Exploit DB Packet Storm
203794 7.8 重要
Local 		Google - Nexus 5X デバイス上で稼動する Android の Qualcomm Wi-Fi ドライバにおける権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2016-3797 2016-07-19 16:09 2016-07-6 Show GitHub Exploit DB Packet Storm
203795 7.8 重要
Local 		Google - Nexus 9 デバイス上で稼動する Android の NVIDIA カメラドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3793 2016-07-19 15:51 2016-07-6 Show GitHub Exploit DB Packet Storm
203796 7.8 重要
Local 		Google - Nexus 7 (2013) デバイス上で稼動する Android の Qualcomm Wi-Fi ドライバの CORE/HDD/src/wlan_hdd_hostapd.c における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3792 2016-07-19 15:51 2016-07-6 Show GitHub Exploit DB Packet Storm
203797 7.8 重要
Local 		Google - 複数の Nexus および Pixel C デバイス上で稼動する Android のカーネルのファイルシステムの実装における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3775 2016-07-19 15:39 2016-07-6 Show GitHub Exploit DB Packet Storm
203798 7.5 重要
Network 		Google - Android のメディアサーバの libstagefright の MPEG4Extractor.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3766 2016-07-19 15:11 2016-07-6 Show GitHub Exploit DB Packet Storm
203799 7.7 重要
Local 		Google - Android のメディアサーバの decoder/impeg2d_bitstream.c におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-200
CWE-399
CVE-2016-3765 2016-07-19 15:11 2016-07-6 Show GitHub Exploit DB Packet Storm
203800 4 警告
Local 		Google - Android のメディアサーバの media/libmediaplayerservice/MetadataRetrieverClient.cpp における重要なポインタ情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3764 2016-07-19 15:11 2016-07-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1991 6.5 MEDIUM
Network 		- - An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getWidgetTags function due to improper neutralization of special elements in a SQL SELECT command. … CWE-89
SQL Injection 		CVE-2026-40842 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
1992 6.5 MEDIUM
Network 		- - An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the alarming view due to improper neutralization of special elements in a SQL SELECT command. This can … CWE-89
SQL Injection 		CVE-2026-40843 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
1993 6.5 MEDIUM
Network 		- - An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the dashboard view due to improper neutralization of special elements in a SQL SELECT command. This can… CWE-89
SQL Injection 		CVE-2026-40844 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
1994 6.5 MEDIUM
Network 		- - An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the devices_configuration view due to improper neutralization of special elements in a SQL SELECT comma… CWE-89
SQL Injection 		CVE-2026-40845 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
1995 6.5 MEDIUM
Network 		- - An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the system view due to improper neutralization of special elements in a SQL SELECT command. This can re… CWE-89
SQL Injection 		CVE-2026-40846 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
1996 6.5 MEDIUM
Network 		- - An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the system_tag view due to improper neutralization of special elements in a SQL SELECT command. This ca… CWE-89
SQL Injection 		CVE-2026-40847 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
1997 6.5 MEDIUM
Network 		- - An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the tag view due to improper neutralization of special elements in a SQL SELECT command. This can resul… CWE-89
SQL Injection 		CVE-2026-40848 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
1998 6.5 MEDIUM
Network 		- - An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the user_alarmprofile view due to improper neutralization of special elements in a SQL SELECT command. … CWE-89
SQL Injection 		CVE-2026-40849 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
1999 7.5 HIGH
Network 		- - An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getAccountData function due to improper neutralization of special elements in a SQL SELECT command… CWE-89
SQL Injection 		CVE-2026-40850 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2000 8.4 HIGH
Local 		- - A local attacker can perform a confusion attack on the cfgparser via a specially crafted file on an USB stick leading to code execution. This can result in a total loss of confidentiality, integrity … CWE-1287
 Improper Validation of Specified Type of Input 		CVE-2026-40851 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm