Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205711 5 警告 FuseISO project
Fedora Project		 - FuseISO の isofs.c の isofs_real_readdir 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-8837 2016-03-31 11:59 2015-10-1 Show GitHub Exploit DB Packet Storm
205712 5 警告 FuseISO project
Fedora Project		 - FuseISO の isofs.c の isofs_real_read_zf 関数における整数オーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-8836 2016-03-31 11:59 2015-10-1 Show GitHub Exploit DB Packet Storm
205713 7.2 危険 マイクロソフト
日立		 - 複数の Microsoft Windows 製品の USB 大容量記憶域クラスドライバにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-0133 2016-03-30 14:35 2016-03-8 Show GitHub Exploit DB Packet Storm
205714 9.3 危険 Google - Google Chrome の browser/extensions/api/page_capture/page_capture_api.cc におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2016-1650 2016-03-30 12:25 2016-03-24 Show GitHub Exploit DB Packet Storm
205715 9.3 危険 Google - Google Chrome で使用される libANGLE の Program.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-1649 2016-03-30 12:25 2016-03-24 Show GitHub Exploit DB Packet Storm
205716 9.3 危険 Google - Google Chrome の拡張機能の実装の renderer/loadtimes_extension_bindings.cc におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-1648 2016-03-30 12:25 2016-03-24 Show GitHub Exploit DB Packet Storm
205717 9.3 危険 Google - Google Chrome のナビゲーションの実装の content/browser/renderer_host/render_widget_host_impl.cc におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-1647 2016-03-30 12:25 2016-03-24 Show GitHub Exploit DB Packet Storm
205718 6 警告 Node.js Foundation - Node.js のパッケージマネージャ npm が不正なパッケージの動作を制限しない問題 - - 2016-03-30 11:55 2016-03-25 Show GitHub Exploit DB Packet Storm
205719 7.2 危険 Cogent Real-Time Systems Inc. - Cogent DataHub における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-2288 2016-03-30 11:39 2016-03-17 Show GitHub Exploit DB Packet Storm
205720 6.9 警告 IBM - Windows 上で稼動する IBM Informix Dynamic Server のクライアント実装における権限を取得される脆弱性 CWE-Other
その他 		CVE-2016-0226 2016-03-30 11:01 2016-03-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
241 9.9 CRITICAL
Network 		- - cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.44.0, when cpp-httplib's server parses an incoming request, it applies percent-decoding to every header va… New CWE-93
CWE-444
CRLF Injection
HTTP Request Smuggling 		CVE-2026-45372 2026-05-30 05:23 2026-05-30 Show GitHub Exploit DB Packet Storm
242 5.3 MEDIUM
Network 		- - cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.43.4, negative chunk-size in chunked Transfer-Encoding causes unbounded memory allocation and process cras… New CWE-20
CWE-770
CWE-1285
 Improper Input Validation 
 Allocation of Resources Without Limits or Throttling
 Improper Validation of Specified Index, Position, or Offset in Input 		CVE-2026-45352 2026-05-30 05:23 2026-05-30 Show GitHub Exploit DB Packet Storm
243 - - - cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.44.0, When the server has called Server::set_trusted_proxies() with a non-empty trusted-proxy list, an att… New CWE-476
 NULL Pointer Dereference 		CVE-2026-46527 2026-05-30 05:23 2026-05-30 Show GitHub Exploit DB Packet Storm
244 8.8 HIGH
Network 		- - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP client can trigger a heap-buffer-overflow write in FreeRDP's server-side clipboard (cliprdr) channel … New CWE-122
Heap-based Buffer Overflow 		CVE-2026-44420 2026-05-30 05:22 2026-05-30 Show GitHub Exploit DB Packet Storm
245 8.8 HIGH
Network 		- - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP server can trigger a heap-buffer-overflow write in the FreeRDP client by sending crafted RDPGFX PDUs.… New CWE-122
Heap-based Buffer Overflow 		CVE-2026-44421 2026-05-30 05:22 2026-05-30 Show GitHub Exploit DB Packet Storm
246 7.5 HIGH
Network 		- - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, FreeRDP's RDPEAR NDR parser accepts one non-null NDR pointer ref-id for multiple logical pointer fields without track… New CWE-415
CWE-416
 Double Free
 Use After Free 		CVE-2026-44422 2026-05-30 05:22 2026-05-30 Show GitHub Exploit DB Packet Storm
247 - - - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, FreeRDP's planar bitmap decoder has an out-of-bounds heap write when decoding RLE planar data. In libfreerdp/codec/pl… New CWE-787
 Out-of-bounds Write 		CVE-2026-45700 2026-05-30 05:22 2026-05-30 Show GitHub Exploit DB Packet Storm
248 - - - NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. In 0.24.8 and earlier, quic_stream_recv can dereference a null substream pointer when a substream is in reopen state. The code fi… New CWE-476
 NULL Pointer Dereference 		CVE-2026-45151 2026-05-30 05:21 2026-05-30 Show GitHub Exploit DB Packet Storm
249 5.3 MEDIUM
Network 		- - FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.219, the password reset endpoint returns visually distinct responses depending on whether the submitted… New CWE-203
CWE-204
 Information Exposure Through Discrepancy
 Response Discrepancy Information Exposure 		CVE-2026-45294 2026-05-30 05:21 2026-05-30 Show GitHub Exploit DB Packet Storm
250 3.3 LOW
Physics 		- - Rizin is a UNIX-like reverse engineering framework and command-line toolset. There is a double free in librz/core/cmd/cmd_search.c:byte_pattern_search() due wrong pointer ownership declared. This vul… New CWE-415
 Double Free 		CVE-2026-45324 2026-05-30 05:21 2026-05-30 Show GitHub Exploit DB Packet Storm