Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
205271	3.3	低 Local	アップル	-	Apple OS X の AMD サブシステムにおける重要なカーネルのメモリレイアウト情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-1791	2016-05-23 16:12	2016-05-16	Show	GitHub Exploit DB Packet Storm

205272	7.8	重要 Local	アップル	-	Apple iOS および OS X のカーネルにおける特権付きコンテキスト内で任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-1831	2016-05-23 14:46	2016-05-16	Show	GitHub Exploit DB Packet Storm

205273	3.3	低 Local	アップル	-	Apple iOS の Accessibility コンポーネントにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-1790	2016-05-23 14:46	2016-05-16	Show	GitHub Exploit DB Packet Storm

205274	7.8	重要 Local	アップル	-	Apple iTunes のインストーラにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-1742	2016-05-23 14:10	2016-05-16	Show	GitHub Exploit DB Packet Storm

205275	7.5	重要 Network	Petri Lehtinen	-	Jansson におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-4425	2016-05-23 13:58	2016-05-3	Show	GitHub Exploit DB Packet Storm

205276	9.8	緊急 Network	VMware	-	Windows 上で稼動する VMware Workstation および Player におけるホスト OS の権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-2077	2016-05-23 13:43	2016-05-17	Show	GitHub Exploit DB Packet Storm

205277	6.8	警告	Lantronix, Inc.	-	Lantronix xPrintServer におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-9003	2016-05-23 12:16	2014-11-11	Show	GitHub Exploit DB Packet Storm

205278	10	危険	Lantronix, Inc.	-	Lantronix xPrintServer における任意のコマンドを実行される脆弱性	CWE-264 CWE-Other	CVE-2014-9002	2016-05-23 12:15	2014-11-11	Show	GitHub Exploit DB Packet Storm

205279	9.8	緊急 Network	Lantronix, Inc.	-	Lantronix xPrintServer デバイスのファームウェアにおける root アクセス権を取得される脆弱性	CWE-255 CWE-Other	CVE-2016-4325	2016-05-23 12:13	2016-05-13	Show	GitHub Exploit DB Packet Storm

205280	7.5	重要 Network	Xstream Debian	-	XStream の複数のドライバにおける XML 外部エンティティの脆弱性	CWE-200 情報漏えい	CVE-2016-3674	2016-05-23 12:13	2016-03-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
541	8.8	HIGH Network	-	-	Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: Low) New	CWE-416 Use After Free	CVE-2026-11306	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

542	8.8	HIGH Network	-	-	Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: Low) New	CWE-416 Use After Free	CVE-2026-11307	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

543	-		-	-	A heap-based buffer overflow vulnerability in the dot11ah.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.13 allows an unauthenticated attacker within radio ra… New	-	CVE-2026-7762	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

544	-		-	-	A heap-based buffer overflow vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.13 allows an unauthenticated attacker within radio rang… New	-	CVE-2026-7763	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

545	6.5	MEDIUM Network	-	-	Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to disclose information over a network. New	CWE-77 Command Injection	CVE-2026-42824	2026-06-5 23:59	2026-06-5	Show	GitHub Exploit DB Packet Storm

546	7.7	HIGH Network	-	-	Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an authorized attacker to execute code over a network. New	CWE-77 Command Injection	CVE-2026-45497	2026-06-5 23:59	2026-06-5	Show	GitHub Exploit DB Packet Storm

547	6.5	MEDIUM Network	-	-	Improper neutralization of special elements in output used by a downstream component ('injection') in Copilot Chat (Microsoft Edge) allows an unauthorized attacker to disclose information over a netw… New	CWE-74 Injection	CVE-2026-47644	2026-06-5 23:59	2026-06-5	Show	GitHub Exploit DB Packet Storm

548	6.5	MEDIUM Network	-	-	Exposure of sensitive information to an unauthorized actor in Microsoft Graph allows an authorized attacker to disclose information over a network. New	CWE-200 Information Exposure	CVE-2026-47655	2026-06-5 23:59	2026-06-5	Show	GitHub Exploit DB Packet Storm

549	6.4	MEDIUM Network	-	-	All versions of the package decompress are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) when extracting a ZIP archive containing two entries with the same path - the first bei… New	CWE-29 Path Traversal: '\..\filename'	CVE-2026-10732	2026-06-5 23:59	2026-06-5	Show	GitHub Exploit DB Packet Storm

550	-		-	-	Improper handling of insufficient privileges in SecTelephonyProvider prior to SMR Jun-2026 Release 1 allows local attackers to access privileged files. New	-	CVE-2026-21017	2026-06-5 23:59	2026-06-5	Show	GitHub Exploit DB Packet Storm