Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
204921 7.8 重要
Local 		Google - Android のメディアサーバの mm-video-v4l2 venc コンポーネントにおける権限を取得される脆弱性 CWE-Other
その他 		CVE-2016-3747 2016-08-25 16:19 2016-07-6 Show GitHub Exploit DB Packet Storm
204922 7.8 重要
Local 		フレクセラ・ソフトウェア合同会社 - Flexera InstallAnywhere における権限を取得される脆弱性 CWE-Other
その他 		CVE-2016-4560 2016-08-25 16:18 2016-01-21 Show GitHub Exploit DB Packet Storm
204923 7.8 重要
Local 		アップル - Apple iOS にメモリ破損の脆弱性 CWE-119
CWE-264
CVE-2016-4654 2016-08-25 16:08 2016-08-4 Show GitHub Exploit DB Packet Storm
204924 3.3
Local 		Moxa Inc. - 複数の Moxa OnCell デバイスにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-5812 2016-08-25 15:30 2016-07-29 Show GitHub Exploit DB Packet Storm
204925 9.8 緊急
Network 		Moxa Inc. - 複数の Moxa OnCell デバイスにおけるアクセス権を取得される脆弱性 CWE-Other
その他 		CVE-2016-5799 2016-08-25 15:30 2016-07-29 Show GitHub Exploit DB Packet Storm
204926 6.8 警告
Network 		ISC, Inc.
日本電気		 - ISC BIND の named の resolver.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-2088 2016-08-25 13:46 2016-03-9 Show GitHub Exploit DB Packet Storm
204927 5.9 警告
Network 		日本電気
Samba Project		 - Samba の MS-SAMR および MS-LSAD プロトコルの実装におけるプロトコルダウングレード攻撃を実行される脆弱性 CWE-Other
CWE-Other
CVE-2016-2118 2016-08-25 13:43 2016-04-12 Show GitHub Exploit DB Packet Storm
204928 5.9 警告
Network 		マイクロソフト
日本電気
日立		 - 複数の Microsoft Windows 製品の SAM および LSAD プロトコルの実装におけるプロトコルダウングレード攻撃を実行される脆弱性 CWE-Other
CWE-Other
CVE-2016-0128 2016-08-25 13:43 2016-04-12 Show GitHub Exploit DB Packet Storm
204929 7.5 重要
Network 		Zmodo - Zmodo ZP-NE14-S および ZP-IBH13-W デバイスにおける任意のアクセスポイントとの接続を回避される脆弱性 CWE-Other
CWE-Other
CVE-2016-5650 2016-08-25 11:22 2016-08-12 Show GitHub Exploit DB Packet Storm
204930 9.8 緊急
Network 		Zmodo - Zmodo ZP-NE14-S および ZP-IBH13-W デバイスにおけるアクセス権を取得される脆弱性 CWE-Other
その他 		CVE-2016-5081 2016-08-25 11:22 2016-08-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
921 4.9 MEDIUM
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, get_ldap_email (app/modules/roxywi/user.py:120-157) builds the LDAP search filter… New CWE-90
LDAP Injection 		CVE-2026-45559 2026-06-11 01:17 2026-06-11 Show GitHub Exploit DB Packet Storm
922 9.9 CRITICAL
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, the HAProxy section-save endpoints (POST /api/service/haproxy/<server_id>/section… New CWE-20
CWE-77
CWE-78
CWE-94
 Improper Input Validation 
Command Injection
OS Command 
Code Injection 		CVE-2026-45558 2026-06-11 01:17 2026-06-11 Show GitHub Exploit DB Packet Storm
923 9.9 CRITICAL
Network 		- - Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, POST /waf/<service>/<server_ip>/rule/<rule_id>/save accepts a config_file_name fo… New CWE-20
CWE-22
CWE-73
CWE-78
 Improper Input Validation 
Path Traversal
 External Control of File Name or Path
OS Command  		CVE-2026-45556 2026-06-11 01:17 2026-06-11 Show GitHub Exploit DB Packet Storm
924 7.5 HIGH
Network 		- - Issue summary: Remote peer may exhaust heap memory of the QUIC server or client by flooding it with packets containing PATH_CHALLENGE frames. Impact summary: A malicious remote peer can cause an unb… Update CWE-1325
 Improperly Controlled Sequential Memory Allocation 		CVE-2026-34183 2026-06-11 01:17 2026-06-10 Show GitHub Exploit DB Packet Storm
925 7.5 HIGH
Network 		- - UXSS in Focus for iOS / Klar Webkit navigation. This vulnerability was fixed in Focus for iOS 151.3.1 and Klar for iOS 151.3.1. New CWE-79
Cross-site Scripting 		CVE-2026-11799 2026-06-11 01:16 2026-06-10 Show GitHub Exploit DB Packet Storm
926 - - - Insufficient input validation vulnerability in the listed NETGEAR devices allows authenticated administrators connected to the local network to tamper with the router's integrity. Update CWE-20
 Improper Input Validation  		CVE-2026-0417 2026-06-11 01:16 2026-06-10 Show GitHub Exploit DB Packet Storm
927 - - - Insufficient input validation vulnerability in NETGEAR JR6150 (AC750 WiFi Router 802.11ac Dual Band Gigabit released in 2014) allows administrators connected to the local network to make unauthorized… Update CWE-20
 Improper Input Validation  		CVE-2026-0412 2026-06-11 01:16 2026-06-10 Show GitHub Exploit DB Packet Storm
928 - - - Authenticated administrators connected to the local network can gain elevated access to the router and make unauthorized changes to router software and functionality. Update CWE-20
 Improper Input Validation  		CVE-2026-0410 2026-06-11 01:16 2026-06-10 Show GitHub Exploit DB Packet Storm
929 5.3 MEDIUM
Network 		google chrome Out of bounds read in Media in Google Chrome on ChromeOS prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from pr… Update CWE-472
 External Control of Assumed-Immutable Web Parameter 		CVE-2026-11669 2026-06-11 01:16 2026-06-9 Show GitHub Exploit DB Packet Storm
930 8.3 HIGH
Network 		google chrome Heap buffer overflow in GPU in Google Chrome on Android prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafte… Update CWE-787
 Out-of-bounds Write 		CVE-2026-11672 2026-06-11 01:15 2026-06-9 Show GitHub Exploit DB Packet Storm