Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206001 9.8 緊急
Network 		Puppet - Puppet Enterprise および Puppet Agent の pxp-agent コンポーネントにおけるブローカを偽造される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-2786 2016-06-16 10:10 2016-03-14 Show GitHub Exploit DB Packet Storm
206002 9.8 緊急
Network 		Puppet - Puppet Server および Puppet ならびに Puppet Agent の Ruby puppetmaster における auth.conf へのアクセス制限を回避される脆弱性 CWE-Other
その他 		CVE-2016-2785 2016-06-16 10:10 2016-04-26 Show GitHub Exploit DB Packet Storm
206003 5.3 警告
Network 		KMC Controls - KMC Controls BAC-5051E デバイスのファームウェアにおけるアクセス制限を回避される脆弱性 CWE-310
CWE-Other
CVE-2016-4495 2016-06-15 17:28 2016-06-7 Show GitHub Exploit DB Packet Storm
206004 8.8 重要
Network 		Mozilla Foundation - Windows 上で稼動する Mozilla Firefox で使用される ANGLE の TSymbolTableLevel クラスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-2824 2016-06-15 17:11 2016-06-7 Show GitHub Exploit DB Packet Storm
206005 6.5 警告
Network 		Apache Software Foundation - Apache CloudStack における認証を回避される脆弱性 CWE-287
CWE-Other
CVE-2016-3085 2016-06-15 17:04 2016-06-9 Show GitHub Exploit DB Packet Storm
206006 7.2 重要
Network 		Apache Software Foundation - Apache Ranger のポリシー管理ツールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-2174 2016-06-15 17:04 2016-06-1 Show GitHub Exploit DB Packet Storm
206007 5.5 警告
Local 		Canonical - LXD におけるコンテナディレクトリ内の任意の誰でも読み取り可能なパスにアクセスされる脆弱性 CWE-200
情報漏えい 		CVE-2016-1582 2016-06-15 14:51 2016-05-30 Show GitHub Exploit DB Packet Storm
206008 5.5 警告
Local 		Canonical - LXD における任意のコンテナからデータをコピーされる脆弱性 CWE-Other
その他 		CVE-2016-1581 2016-06-15 14:51 2016-05-30 Show GitHub Exploit DB Packet Storm
206009 5.5 警告
Local 		Google - Android の ActivityManager における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-2500 2016-06-15 13:36 2016-06-6 Show GitHub Exploit DB Packet Storm
206010 5.5 警告
Local 		Google - Android のメディアサーバの libstagefright の AudioSource.cpp における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-2499 2016-06-15 13:36 2016-06-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2001 3.1 LOW
Network 		djangoproject django An issue was discovered in Django 6.0 before 6.0.6 and 5.2 before 5.2.15. `django.core.mail.backends.smtp.EmailBackend` in Django fails to prevent reuse of a partially-initialized connection after a … CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2026-7666 2026-06-5 21:46 2026-06-3 Show GitHub Exploit DB Packet Storm
2002 5.3 MEDIUM
Network 		djangoproject django An issue was discovered in Django 5.2 before 5.2.15 and 6.0 before 6.0.6. `django.middleware.cache.UpdateCacheMiddleware` in Django does not match `Cache-Control` response directives case-insensitive… CWE-178
 Improper Handling of Case Sensitivity 		CVE-2026-8404 2026-06-5 21:38 2026-06-3 Show GitHub Exploit DB Packet Storm
2003 5.3 MEDIUM
Network 		exim exim Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client. CWE-839
 Numeric Range Comparison Without Minimum Check 		CVE-2026-48840 2026-06-5 20:16 2026-05-30 Show GitHub Exploit DB Packet Storm
2004 7.8 HIGH
Local 		- - In the Linux kernel, the following vulnerability has been resolved: smb: client: reject userspace cifs.spnego descriptions cifs.spnego key descriptions contain authority-bearing fields such as pid,… CWE-20
 Improper Input Validation  		CVE-2026-46243 2026-06-5 16:16 2026-06-2 Show GitHub Exploit DB Packet Storm
2005 7.8 HIGH
Local 		- - In the Linux kernel, the following vulnerability has been resolved: eventpoll: fix ep_remove struct eventpoll / struct file UAF ep_remove() (via ep_remove_file()) cleared file->f_ep under file->f_l… - CVE-2026-46242 2026-06-5 16:16 2026-05-30 Show GitHub Exploit DB Packet Storm
2006 3.3 LOW
Local 		- - HCL BigFix Cloud Lifecycle Management is affected by lack of input validation.  This low-level flaw allows unauthorized access and may lead to information exposure. - CVE-2025-62338 2026-06-5 14:16 2026-06-4 Show GitHub Exploit DB Packet Storm
2007 4.1 MEDIUM
Network 		- - Cross Site Scripting vulnerability in MaxSite CMS v.109.2 allows a remote attacker to obtain sensitive information via the Backend page file upload endpoint used by admin_page CWE-79
Cross-site Scripting 		CVE-2026-37700 2026-06-5 11:17 2026-06-4 Show GitHub Exploit DB Packet Storm
2008 8.1 HIGH
Adjacent 		- - Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 exposes 15 of 18 UPnP IGD actions without authentication on port 1900, including AddPortMapping and GetExternalIPAddress. UPnP is enabl… CWE-306
Missing Authentication for Critical Function 		CVE-2026-36603 2026-06-5 11:17 2026-06-4 Show GitHub Exploit DB Packet Storm
2009 4.3 MEDIUM
Adjacent 		- - Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 discloses kernel memory layout via the UPnP GetStatusInfo action. An unauthenticated attacker on the adjacent network can obtain a raw … CWE-200
Information Exposure 		CVE-2026-36602 2026-06-5 11:17 2026-06-4 Show GitHub Exploit DB Packet Storm
2010 7.5 HIGH
Network 		google chrome Type Confusion in V8 in Google Chrome prior to 148.0.7778.216 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code inside a sandbox via a crafted Chrome… CWE-843
Type Confusion 		CVE-2026-10022 2026-06-5 11:16 2026-05-29 Show GitHub Exploit DB Packet Storm