Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206201 6.8 警告 FFmpeg - FFmpeg の libavcodec/gif.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-2330 2016-02-26 15:51 2016-01-19 Show GitHub Exploit DB Packet Storm
206202 4.3 警告 FFmpeg - FFmpeg の libavcodec/jpeg2000dec.c の jpeg2000_decode_tile 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-2213 2016-02-26 15:51 2016-01-28 Show GitHub Exploit DB Packet Storm
206203 10 危険 Google - Kubernetes の API サーバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-1906 2016-02-26 15:48 2016-01-8 Show GitHub Exploit DB Packet Storm
206204 4 警告 Google - Kubernetes の API サーバにおける追加のリソースにアクセスされる脆弱性 CWE-Other
その他 		CVE-2016-1905 2016-02-26 15:48 2016-01-12 Show GitHub Exploit DB Packet Storm
206205 6 警告 Django Software Foundation - Django におけるアクセス制限を回避される脆弱性 CWE-Other
その他 		CVE-2016-2048 2016-02-26 14:34 2016-02-1 Show GitHub Exploit DB Packet Storm
206206 5.8 警告 シマンテック - Symantec Encryption Management Server における任意の OS コマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2015-8151 2016-02-26 14:14 2015-11-13 Show GitHub Exploit DB Packet Storm
206207 6.3 警告 シマンテック - Symantec Encryption Management Server における root のアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-8150 2016-02-26 14:14 2015-11-13 Show GitHub Exploit DB Packet Storm
206208 4.3 警告 Google - Google Chrome の Chrome Instant 機能における制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-1625 2016-02-26 13:55 2016-02-9 Show GitHub Exploit DB Packet Storm
206209 6.8 警告 Google - Google Chrome の DOM の実装における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-1623 2016-02-26 13:55 2016-02-9 Show GitHub Exploit DB Packet Storm
206210 6.8 警告 Google - Google Chrome の拡張サブシステムにおける同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-1622 2016-02-26 13:55 2016-02-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1171 9.8 CRITICAL
Network 		pavel-odintsov fastnetmon FastNetMon Community Edition through 1.2.9 contains an off-by-one heap-based buffer overflow in the dynamic_binary_buffer_t class (src/dynamic_binary_buffer.hpp). Five methods (append_dynamic_buffer,… New CWE-787
CWE-122
CWE-193
 Out-of-bounds Write
Heap-based Buffer Overflow
 Off-by-one Error 		CVE-2026-48689 2026-05-27 11:16 2026-05-27 Show GitHub Exploit DB Packet Storm
1172 - - - A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an unauthenticated attacker to send crafted requests to internal services by exploiting insu… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-9312 2026-05-27 09:16 2026-05-27 Show GitHub Exploit DB Packet Storm
1173 - - - A Server-Side Request Forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an attacker to cause the server to issue HTTP requests to internal services via the security… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-8606 2026-05-27 09:16 2026-05-27 Show GitHub Exploit DB Packet Storm
1174 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. New - CVE-2026-8680 2026-05-27 08:16 2026-05-27 Show GitHub Exploit DB Packet Storm
1175 6.5 MEDIUM
Network 		- - Starlette is a lightweight ASGI framework/toolkit. Prior to version 1.0.1, the HTTP `Host` request header was not validated before being used to reconstruct `request.url`. Because the routing algorit… New CWE-444
HTTP Request Smuggling 		CVE-2026-48710 2026-05-27 07:16 2026-05-27 Show GitHub Exploit DB Packet Storm
1176 8.3 HIGH
Network 		- - Velocity.js is a JavaScript implementation of the Apache Velocity template engine. In 2.1.5 and earlier, a prototype pollution vulnerability was discovered in velocityjs. This issue occurs during the… New CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2026-44966 2026-05-27 07:16 2026-05-27 Show GitHub Exploit DB Packet Storm
1177 - - - Prometheus is an open-source monitoring system and time series database. From 2.49.0 to before 3.5.3 and 3.11.3, in the Prometheus server's legacy web UI (enabled via the command-line flag --enable-f… New CWE-79
Cross-site Scripting 		CVE-2026-44903 2026-05-27 07:16 2026-05-27 Show GitHub Exploit DB Packet Storm
1178 5.4 MEDIUM
Network 		- - Firefox for iOS displayed specially crafted right-to-left (RTL) and internationalized domain names (IDNs) incorrectly in link preview UI surfaces. A crafted RTL hostname could visually reorder portio… New CWE-451
 User Interface (UI) Misrepresentation of Critical Information 		CVE-2026-9078 2026-05-27 06:16 2026-05-26 Show GitHub Exploit DB Packet Storm
1179 8.2 HIGH
Network 		- - LangChain is a framework for building agents and LLM-powered applications. Prior to 0.3.85 and 1.3.3, LangChain contains older runtime code paths that deserialize run inputs, run outputs, or other ap… New CWE-502
 Deserialization of Untrusted Data 		CVE-2026-44843 2026-05-27 06:16 2026-05-27 Show GitHub Exploit DB Packet Storm
1180 4.9 MEDIUM
Network 		- - Exposure of Sensitive Information Through Data Queries vulnerability in Apache Syncope. An administrator with adequate entitlements for Derived Schemas can create a malicious JEXL expression which a… New CWE-202
 Exposure of Sensitive Information Through Data Queries 		CVE-2026-42797 2026-05-27 06:16 2026-05-26 Show GitHub Exploit DB Packet Storm