Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205701 8.4 重要
Local 		Google - Android のメディアサーバの不特定のメディアコーデックにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-0834 2016-04-22 17:39 2016-04-4 Show GitHub Exploit DB Packet Storm
205702 7.5 重要
Network 		ジュニパーネットワークス - Juniper QFX シリーズスイッチ上で稼動する Junos OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-1274 2016-04-22 16:59 2016-04-13 Show GitHub Exploit DB Packet Storm
205703 5.9 警告
Network 		ジュニパーネットワークス - Juniper QFX5100 および QFX10002 スイッチ上で稼動する Junos OS における暗号および認証保護メカニズムを破られる脆弱性 CWE-310
暗号の問題 		CVE-2016-1273 2016-04-22 16:59 2016-04-13 Show GitHub Exploit DB Packet Storm
205704 7.8 重要
Local 		ジュニパーネットワークス - Juniper Junos OS における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-1271 2016-04-22 16:59 2016-04-13 Show GitHub Exploit DB Packet Storm
205705 7.5 重要
Network 		ジュニパーネットワークス - Juniper Junos OS の rpd デーモンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-1270 2016-04-22 16:59 2016-04-13 Show GitHub Exploit DB Packet Storm
205706 7.5 重要
Network 		ジュニパーネットワークス - Juniper Junos OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-1269 2016-04-22 16:59 2016-04-13 Show GitHub Exploit DB Packet Storm
205707 6.7 警告
Local 		ジュニパーネットワークス - Juniper Junos OS の RPC 機能における任意のファイルを読まれる脆弱性 CWE-362
競合状態 		CVE-2016-1267 2016-04-22 16:59 2016-04-13 Show GitHub Exploit DB Packet Storm
205708 8.8 重要
Network 		ジュニパーネットワークス - Juniper Junos OS の Op コマンドにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-1264 2016-04-22 16:59 2016-04-13 Show GitHub Exploit DB Packet Storm
205709 8.8 重要
Network 		TIBCO Software - TIBCO Enterprise Message Service および EMS Appliance のサーバの tibemsd におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-3628 2016-04-22 16:58 2016-04-19 Show GitHub Exploit DB Packet Storm
205710 5.4 警告
Network 		Ipswitch, Inc. - Ipswitch MOVEit File Transfer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-7676 2016-04-22 16:56 2015-10-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
861 6.1 MEDIUM
Network 		apache activemq
activemq_web 		Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache ActiveMQ, Apache ActiveMQ Web. The MessageServlet in the ActiveMQ web console API copies … New CWE-79
Cross-site Scripting 		CVE-2026-42253 2026-06-2 02:06 2026-06-1 Show GitHub Exploit DB Packet Storm
862 6.5 MEDIUM
Network 		apache airflow A bug in Apache Airflow's rendered-template field handling caused nested sensitive-key masking (e.g. nested `password` / `token` / `secret` / `api_key` keys inside a JSON template structure) to be by… New CWE-200
Information Exposure 		CVE-2026-42360 2026-06-2 02:06 2026-06-1 Show GitHub Exploit DB Packet Storm
863 8.1 HIGH
Network 		apache activemq
activemq_broker 		Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ. Apache ActiveMQ Classic exposes th… New CWE-20
CWE-94
 Improper Input Validation 
Code Injection 		CVE-2026-42588 2026-06-2 02:06 2026-06-1 Show GitHub Exploit DB Packet Storm
864 5.8 MEDIUM
Network 		- - A flaw was found in Clair. The fetcher component makes outbound HTTP requests to attacker-supplied URIs from manifest layer descriptors without IP or scheme filtering. When PSK authentication is not … New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-10517 2026-06-2 01:57 2026-06-1 Show GitHub Exploit DB Packet Storm
865 5.0 MEDIUM
Network 		- - A flaw was found in OpenShift Container Platform. Completed pods with restartPolicy: Never do not count toward ResourceQuota pod limits, and Kubernetes events are not quota-scoped. A non-privileged u… New CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-10533 2026-06-2 01:57 2026-06-2 Show GitHub Exploit DB Packet Storm
866 9.8 CRITICAL
Network 		- - SDMC NE6037 cable modem routers running firmware 7.1.6.0.25 and 7.1.6.1.9_B9 contain a hardcoded password vulnerability in the web management interface recovery endpoints (mgmt.php, npcmd.php) that a… Update CWE-798
 Use of Hard-coded Credentials 		CVE-2026-24444 2026-06-2 01:55 2026-05-29 Show GitHub Exploit DB Packet Storm
867 7.5 HIGH
Network 		- - Usagi-org ai-goofish-monitor contains an unauthenticated arbitrary file read vulnerability in the GET /api/prompts/{filename} endpoint on Windows deployments that allows unauthenticated remote attack… Update CWE-36
 Absolute Path Traversal 		CVE-2026-10044 2026-06-2 01:55 2026-05-29 Show GitHub Exploit DB Packet Storm
868 7.5 HIGH
Network 		- - Heatmiser Wifi Thermostat 1.7 contains a credential disclosure vulnerability that allows unauthenticated attackers to retrieve administrative credentials by accessing the networkSetup.htm page. Attac… Update CWE-256
Plaintext Storage of a Password  		CVE-2018-25396 2026-06-2 01:55 2026-05-30 Show GitHub Exploit DB Packet Storm
869 6.5 MEDIUM
Network 		- - Open STA Manager 2.3 contains a path traversal vulnerability that allows authenticated users to download arbitrary files by manipulating the file parameter. Attackers can send GET requests to modules… Update CWE-22
Path Traversal 		CVE-2018-25421 2026-06-2 01:55 2026-05-31 Show GitHub Exploit DB Packet Storm
870 8.2 HIGH
Network 		- - MOGG web simulator Script contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL commands by injecting malicious code through the id parameter. Attacke… Update CWE-89
SQL Injection 		CVE-2018-25422 2026-06-2 01:55 2026-05-31 Show GitHub Exploit DB Packet Storm