Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206151 7.6 危険 Google - Android の MediaTek 接続カーネルドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-0822 2016-03-22 15:57 2016-03-7 Show GitHub Exploit DB Packet Storm
206152 5 警告 Google
Linux		 - Android で使用される Linux Kernel の include/linux/poison.h におけるポイズンポインタ保護メカニズムを回避される脆弱性 CWE-Other
その他 		CVE-2016-0821 2016-03-22 15:57 2016-03-7 Show GitHub Exploit DB Packet Storm
206153 9.3 危険 Google - Android の MediaTek Wi-Fi カーネルドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-0820 2016-03-22 15:57 2016-03-7 Show GitHub Exploit DB Packet Storm
206154 9.3 危険 Google - Android の Qualcomm パフォーマンスコンポーネントにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-0819 2016-03-22 15:57 2016-03-7 Show GitHub Exploit DB Packet Storm
206155 4.3 警告 Google - Android の Conscrypt の TrustManagerImpl.java の TrustManagerImpl クラスにおけるサーバになりすまされる脆弱性 CWE-Other
その他 		CVE-2016-0818 2016-03-22 15:57 2016-03-7 Show GitHub Exploit DB Packet Storm
206156 10 危険 Google - Android のメディアサーバにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-0816 2016-03-22 15:57 2016-03-7 Show GitHub Exploit DB Packet Storm
206157 10 危険 Google - Android のメディアサーバの libstagefright の MPEG4Extractor.cpp における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-0815 2016-03-22 15:57 2016-03-7 Show GitHub Exploit DB Packet Storm
206158 5 警告 Ruby on Rails project - Ruby on Rails の Action Pack の actionpack/lib/action_dispatch/http/mime_type.rb におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-0751 2016-03-22 15:33 2016-01-25 Show GitHub Exploit DB Packet Storm
206159 3.5 注意 VMware - Linux 上で稼動する VMware vRealize Automation におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-2344 2016-03-22 13:48 2015-03-18 Show GitHub Exploit DB Packet Storm
206160 9.3 危険 Google - Google Chrome の PDFium で使用される OpenJPEG の j2k.c の opj_j2k_update_image_data 関数における整数符号エラーの脆弱性 CWE-119
バッファエラー 		CVE-2016-1645 2016-03-22 12:30 2016-03-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1471 6.5 MEDIUM
Network 		- - Shopper is a Headless e-commerce Admin Panel. Prior to 2.8.0, the admin tables for PaymentMethods, Currencies and Carriers exposed inline toggles and per-record actions (enable, disable, edit, delete… CWE-862
 Missing Authorization 		CVE-2026-47745 2026-05-30 05:17 2026-05-30 Show GitHub Exploit DB Packet Storm
1472 5.3 MEDIUM
Network 		- - Casdoor versions 2.362.0 and earlier contain a logic flaw in the social‑login binding flow that allows users to bypass configured MFA requirements. The binding‑rule code path in controllers/auth.go c… - CVE-2026-9091 2026-05-30 05:16 2026-05-29 Show GitHub Exploit DB Packet Storm
1473 9.1 CRITICAL
Network 		- - Casdoor versions 2.362.0 and earlier contain a vulnerability that allows an attacker to bypass authentication by supplying an arbitrary signing certificate. The buildSpCertificateStore function extra… - CVE-2026-9090 2026-05-30 05:16 2026-05-29 Show GitHub Exploit DB Packet Storm
1474 7.5 HIGH
Network 		microsoft planetary_computer Deserialization of untrusted data in Microsoft Planetary Computer Pro allows an unauthorized attacker to disclose information over a network. CWE-502
 Deserialization of Untrusted Data 		CVE-2026-41104 2026-05-30 04:46 2026-05-23 Show GitHub Exploit DB Packet Storm
1475 5.5 MEDIUM
Local 		pypdf_project pypdf pypdf is a free and open-source pure-python PDF library. Prior to 6.12.1, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing large XMP me… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-48735 2026-05-30 04:38 2026-05-29 Show GitHub Exploit DB Packet Storm
1476 3.3 LOW
Local 		pypdf_project pypdf pypdf is a free and open-source pure-python PDF library. Prior to 6.12.0, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires cross-reference streams w… CWE-834
 Excessive Iteration 		CVE-2026-48156 2026-05-30 04:38 2026-05-29 Show GitHub Exploit DB Packet Storm
1477 5.5 MEDIUM
Local 		pypdf_project pypdf pypdf is a free and open-source pure-python PDF library. Prior to 6.12.0, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires extracting text in l… CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-48155 2026-05-30 04:38 2026-05-29 Show GitHub Exploit DB Packet Storm
1478 9.8 CRITICAL
Network 		ibm engineering_lifecycle_management IBM Engineering Lifecycle Management 7.0.3, 7.1.0, and 7.2.0 could allow an unauthenticated remote attacker to update server property files that would allow them to gain unauthorized access to the ap… CWE-863
 Incorrect Authorization 		CVE-2026-3660 2026-05-30 04:31 2026-05-27 Show GitHub Exploit DB Packet Storm
1479 9.6 CRITICAL
Network 		amirraminfar dozzle Dozzle is a realtime log viewer for docker containers. Prior to 10.5.2, he WebSocket upgrader for the /exec and /attach endpoints uses CheckOrigin: func(r *http.Request) bool { return true }, accepti… CWE-346
 Origin Validation Error 		CVE-2026-44985 2026-05-30 04:30 2026-05-27 Show GitHub Exploit DB Packet Storm
1480 7.1 HIGH
Adjacent 		free5gc free5gc free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the AMF in Free5GC does not verify the UE Security Capabilities received in NGAP PathSwitchRequest messages against it… CWE-358
 Improperly Implemented Security Check for Standard 		CVE-2026-42081 2026-05-30 04:24 2026-05-28 Show GitHub Exploit DB Packet Storm