Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
204891 9.8 緊急
Network 		Puppet - Puppet Server および Puppet ならびに Puppet Agent の Ruby puppetmaster における auth.conf へのアクセス制限を回避される脆弱性 CWE-Other
その他 		CVE-2016-2785 2016-06-16 10:10 2016-04-26 Show GitHub Exploit DB Packet Storm
204892 5.3 警告
Network 		KMC Controls - KMC Controls BAC-5051E デバイスのファームウェアにおけるアクセス制限を回避される脆弱性 CWE-310
CWE-Other
CVE-2016-4495 2016-06-15 17:28 2016-06-7 Show GitHub Exploit DB Packet Storm
204893 8.8 重要
Network 		Mozilla Foundation - Windows 上で稼動する Mozilla Firefox で使用される ANGLE の TSymbolTableLevel クラスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-2824 2016-06-15 17:11 2016-06-7 Show GitHub Exploit DB Packet Storm
204894 6.5 警告
Network 		Apache Software Foundation - Apache CloudStack における認証を回避される脆弱性 CWE-287
CWE-Other
CVE-2016-3085 2016-06-15 17:04 2016-06-9 Show GitHub Exploit DB Packet Storm
204895 7.2 重要
Network 		Apache Software Foundation - Apache Ranger のポリシー管理ツールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-2174 2016-06-15 17:04 2016-06-1 Show GitHub Exploit DB Packet Storm
204896 5.5 警告
Local 		Canonical - LXD におけるコンテナディレクトリ内の任意の誰でも読み取り可能なパスにアクセスされる脆弱性 CWE-200
情報漏えい 		CVE-2016-1582 2016-06-15 14:51 2016-05-30 Show GitHub Exploit DB Packet Storm
204897 5.5 警告
Local 		Canonical - LXD における任意のコンテナからデータをコピーされる脆弱性 CWE-Other
その他 		CVE-2016-1581 2016-06-15 14:51 2016-05-30 Show GitHub Exploit DB Packet Storm
204898 5.5 警告
Local 		Google - Android の ActivityManager における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-2500 2016-06-15 13:36 2016-06-6 Show GitHub Exploit DB Packet Storm
204899 5.5 警告
Local 		Google - Android のメディアサーバの libstagefright の AudioSource.cpp における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-2499 2016-06-15 13:36 2016-06-6 Show GitHub Exploit DB Packet Storm
204900 5.5 警告
Local 		Google - Nexus 7 (2013) デバイス上で稼動する Android の Qualcomm Wi-Fi ドライバにおけるデータアクセス制限を回避される脆弱性 CWE-200
情報漏えい 		CVE-2016-2498 2016-06-15 13:36 2016-06-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
431 9.9 CRITICAL
Network 		linuxfoundation cloudnativepg CloudNativePG is a platform designed to manage PostgreSQL databases within Kubernetes environments. Prior to 1.29.1 and 1.28.3, the CloudNativePG metrics exporter opens its PostgreSQL connection as t… Update CWE-250
CWE-271
CWE-426
 Execution with Unnecessary Privileges
 Privilege Dropping / Lowering Errors
 Untrusted Search Path 		CVE-2026-44477 2026-06-4 03:56 2026-05-29 Show GitHub Exploit DB Packet Storm
432 8.0 HIGH
Network 		microsoft sharepoint_server Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. New CWE-78
OS Command  		CVE-2026-47294 2026-06-4 03:42 2026-06-2 Show GitHub Exploit DB Packet Storm
433 6.3 MEDIUM
Network 		vivotek fd8136_firmware A stack-based buffer overflow in the export_language.cgi binary in VIVOTEK FD8136 firmware FD8136-VVTK-0300a allows authenticated remote attackers to execute arbitrary code as root via a crafted POST… New CWE-121
Stack-based Buffer Overflow 		CVE-2026-35717 2026-06-4 03:42 2026-06-2 Show GitHub Exploit DB Packet Storm
434 7.3 HIGH
Network 		vivotek fd8136_firmware Buffer Overflow vulnerability in VIVOTEK INC FD8136-VVTK-0300a allows a remote attacker to execute arbitrary code via the set_getparam.cgi component New CWE-121
Stack-based Buffer Overflow 		CVE-2026-30649 2026-06-4 03:41 2026-06-3 Show GitHub Exploit DB Packet Storm
435 8.8 HIGH
Network 		vivotek fd8136_firmware A post-authentication remote buffer overflow vulnerability exists in the /cgi-bin/admin/eventtask.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-03… New CWE-120
Classic Buffer Overflow 		CVE-2026-30650 2026-06-4 03:41 2026-06-3 Show GitHub Exploit DB Packet Storm
436 8.8 HIGH
Network 		vivotek fd8136_firmware A remote buffer overflow vulnerability exists in the /cgi-bin/dido/setdo.cgi endpoint of the admin interface of Vivotek FD8136 cameras running firmware version FD8136-VVTK-0300a. This flaw allows an … New CWE-120
Classic Buffer Overflow 		CVE-2026-30652 2026-06-4 03:40 2026-06-3 Show GitHub Exploit DB Packet Storm
437 6.3 MEDIUM
Network 		vivotek fd8136_firmware A stack-based buffer overflow in the motion_privacy.cgi binary in VIVOTEK FD8136 firmware FD8136-VVTK-0300a allows authenticated remote attackers to execute arbitrary code as root via an oversized n1… New CWE-121
Stack-based Buffer Overflow 		CVE-2026-35716 2026-06-4 03:40 2026-06-3 Show GitHub Exploit DB Packet Storm
438 6.5 MEDIUM
Network 		vivotek fd8136_firmware A path traversal vulnerability in the /admin/downloadMedias.cgi endpoint of VIVOTEK INC FD8136-VVTK firmware 0300a allows authenticated attackers to read any file on the device via sending a crafted … New CWE-22
Path Traversal 		CVE-2026-35718 2026-06-4 03:39 2026-06-3 Show GitHub Exploit DB Packet Storm
439 9.9 CRITICAL
Network 		oracle rest_data_services Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows low privileged attacker with network acc… Update CWE-400
CWE-284
 Uncontrolled Resource Consumption
Improper Access Control 		CVE-2026-46775 2026-06-4 03:35 2026-05-29 Show GitHub Exploit DB Packet Storm
440 9.6 CRITICAL
Network 		jpettitt meshcore_card MeshCore Card provides MeshCore Lovelace card for Home Assistant. Prior to 0.3.3, Meshcore node names are rendered without HTML escaping in meshcore-card, allowing any node within direct or indirect … Update CWE-79
Cross-site Scripting 		CVE-2026-45323 2026-06-4 03:34 2026-05-29 Show GitHub Exploit DB Packet Storm