Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
204931 7.3 重要
Network 		Rockwell Automation - 複数の Rockwell Automation MicroLogix 1400 PLC デバイスにおける任意のファームウェアアップデートをロードされる脆弱性 CWE-Other
その他 		CVE-2016-5645 2016-08-25 10:58 2016-08-11 Show GitHub Exploit DB Packet Storm
204932 9.8 緊急
Network 		フォーティネット - Fortinet FortiOS および FortiSwitch の Cookie パーサにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-6909 2016-08-25 10:46 2016-08-17 Show GitHub Exploit DB Packet Storm
204933 6.1 警告
Network 		シスコシステムズ - Cisco Firepower Management Center におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-6365 2016-08-24 16:12 2016-08-17 Show GitHub Exploit DB Packet Storm
204934 7.5 重要
Network 		シスコシステムズ - Cisco Unified Communications Manager の UDS API の実装におけるアクセス制限を回避される脆弱性 CWE-200
情報漏えい 		CVE-2016-6364 2016-08-24 16:12 2016-08-17 Show GitHub Exploit DB Packet Storm
204935 7.5 重要
Network 		シスコシステムズ - Cisco ASR 9001 デバイス上で稼動する Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-6355 2016-08-24 16:12 2016-08-10 Show GitHub Exploit DB Packet Storm
204936 7.5 重要
Network 		シスコシステムズ - Cisco WebEx Meetings Server におけるアクセス制限を回避される脆弱性 CWE-20
CWE-200
CVE-2016-1484 2016-08-24 16:12 2016-08-17 Show GitHub Exploit DB Packet Storm
204937 6.5 警告
Network 		シスコシステムズ - Cisco Connected Streaming Analytics における通知サービスのパスワードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-1477 2016-08-24 16:12 2016-08-10 Show GitHub Exploit DB Packet Storm
204938 9.1 緊急
Network 		Debian
collectd		 - collectd の network.c の parse_packet 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-6254 2016-08-24 16:10 2016-07-26 Show GitHub Exploit DB Packet Storm
204939 6.5 警告
Network 		ブロケード コミュニケーションズ システムズ株式会社
ヒューレット・パッカード・エンタープライズ		 - HPE StoreFabric Bシリーズ ストレージスイッチ上で稼動する FOS における重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2016-4376 2016-08-24 15:40 2016-08-12 Show GitHub Exploit DB Packet Storm
204940 9.8 緊急
Network 		シトリックス・システムズ - Citrix XenApp および XenDesktop における不特定のセキュリティ緩和策を弱められる脆弱性 CWE-Other
その他 		CVE-2016-6493 2016-08-24 14:26 2016-08-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1611 6.0 MEDIUM
Local 		- - Dell iDRAC Tools, versions prior to 11.4.1.0, contains an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could potentially e… CWE-59
Link Following 		CVE-2026-28262 2026-06-9 22:53 2026-06-9 Show GitHub Exploit DB Packet Storm
1612 4.8 MEDIUM
Network 		- - QloApps through 1.7.0 contains a stored cross-site scripting vulnerability in the admin file manager that allows authenticated administrators to inject malicious JavaScript by uploading crafted SVG f… CWE-79
Cross-site Scripting 		CVE-2026-25558 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
1613 9.8 CRITICAL
Network 		- - OpenBullet2 through version 0.3.2 contains an authentication bypass vulnerability in the API key authentication middleware that allows unauthenticated attackers to gain admin access by supplying an e… CWE-305
 Authentication Bypass by Primary Weakness 		CVE-2026-25555 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
1614 8.8 HIGH
Network 		- - OpenBullet2 through version 0.3.2 contains a path traversal vulnerability in the wordlist endpoint that allows authenticated attackers to perform arbitrary file read, write, and delete operations by … CWE-22
Path Traversal 		CVE-2026-25559 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
1615 8.8 HIGH
Network 		- - OpenBullet2 through version 0.3.2 contains a remote code execution vulnerability that allows authenticated users to execute arbitrary commands by uploading script files (.bat.ps1.sh) through the File… CWE-78
OS Command  		CVE-2026-25855 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
1616 8.8 HIGH
Network 		- - OpenBullet2 through version 0.3.2 contains an authenticated remote code execution vulnerability that allows authenticated users to execute arbitrary C# code on the server host by creating or modifyin… CWE-94
Code Injection 		CVE-2026-25856 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
1617 6.5 MEDIUM
Network 		- - OpenBullet2 through version 0.3.2 on Windows contains a credential disclosure vulnerability that allows remote attackers to capture the NTLMv2 hash of the process user by configuring a job proxy sour… CWE-522
 Insufficiently Protected Credentials 		CVE-2026-39908 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
1618 9.8 CRITICAL
Network 		- - STACKIT IaaS API contains a missing authorization check vulnerability that allows authenticated, low-privileged attackers to escalate privileges to full organization compromise by attaching arbitrary… CWE-862
 Missing Authorization 		CVE-2026-39910 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
1619 9.4 CRITICAL
Network 		- - AdGuard Home, when started with the --glinet flag, contains an authentication bypass vulnerability that allows unauthenticated attackers to gain full admin access by supplying a path traversal sequen… CWE-22
Path Traversal 		CVE-2026-41448 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm
1620 - - - A command Injection vulnerability exists in the WireGuard client configuration of Archer MR600 v5 due to improper neutralization of user-controlled input within the web management interface. An authe… CWE-78
OS Command  		CVE-2026-8913 2026-06-9 22:51 2026-06-9 Show GitHub Exploit DB Packet Storm