Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
207371	7.5	重要 Network	SAP	-	SAP NetWeaver JAVA AS のエンキューサーバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2016-4015	2016-04-22 18:13	2016-04-14	Show	GitHub Exploit DB Packet Storm

207372	8.6	重要 Network	SAP	-	SAP NetWeaver JAVA AS の UDDI コンポーネントにおける XML 外部エンティティの脆弱性	CWE-Other その他	CVE-2016-4014	2016-04-22 18:13	2016-04-14	Show	GitHub Exploit DB Packet Storm

207373	9.8	緊急 Network	Google	-	Android のメディアサーバの media/libmedia/IOMX.cpp におけるプロセスメモリから重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2016-2418	2016-04-22 17:40	2016-04-4	Show	GitHub Exploit DB Packet Storm

207374	6.5	警告 Local	Google	-	Android の Qualcomm Power Management カーネルドライバにおける権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2016-2411	2016-04-22 17:40	2016-04-4	Show	GitHub Exploit DB Packet Storm

207375	7.4	重要 Local	Google	-	Android の Qualcomm ビデオカーネルドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-2410	2016-04-22 17:40	2016-04-4	Show	GitHub Exploit DB Packet Storm

207376	8.4	重要 Local	Google	-	Android の Recovery Procedure の minzip/SysUtil.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2016-0849	2016-04-22 17:40	2016-04-4	Show	GitHub Exploit DB Packet Storm

207377	8.4	重要 Local	Google	-	Android の Download Manager におけるプライベートストレージのファイルアクセス制限を回避される脆弱性	CWE-362 競合状態	CVE-2016-0848	2016-04-22 17:40	2016-04-4	Show	GitHub Exploit DB Packet Storm

207378	8.4	重要 Local	Google	-	Android の IMemory Native Interface の libs/binder/IMemory.cpp における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-0846	2016-04-22 17:40	2016-04-4	Show	GitHub Exploit DB Packet Storm

207379	8.4	重要 Local	Google	-	Android の Qualcomm RF ドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-0844	2016-04-22 17:39	2016-04-4	Show	GitHub Exploit DB Packet Storm

207380	8.4	重要 Local	Google	-	Android の Qualcomm ARM プロセッサのパフォーマンスイベントマネージャにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-0843	2016-04-22 17:39	2016-04-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3571	9.8	CRITICAL Network	waterfall-security	wf-500_firmware	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console WebUI in Waterfall WF-500 TX and RX Hosts in versio…	CWE-78 OS Command	CVE-2025-41274	2026-06-2 03:56	2026-05-29	Show	GitHub Exploit DB Packet Storm

3572	9.8	CRITICAL Network	waterfall-security	wf-500_firmware	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console WebUI in Waterfall WF-500 TX and RX Hosts in versio…	CWE-78 OS Command	CVE-2025-41275	2026-06-2 03:56	2026-05-29	Show	GitHub Exploit DB Packet Storm

3573	9.8	CRITICAL Network	waterfall-security	wf-500_firmware	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console WebUI in Waterfall WF-500 TX and RX Hosts in versio…	CWE-78 OS Command	CVE-2025-41276	2026-06-2 03:56	2026-05-29	Show	GitHub Exploit DB Packet Storm

3574	9.8	CRITICAL Network	waterfall-security	wf-500_firmware	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Console WebUI in Waterfall WF-500 TX and RX Hosts in versio…	CWE-78 OS Command	CVE-2025-41277	2026-06-2 03:56	2026-05-29	Show	GitHub Exploit DB Packet Storm

3575	7.8	HIGH Local	waterfall-security	wf-500_firmware	Nozomi Networks Labs identified a CWE-125: Out-of-bounds Read in Waterfall WF-500 RX Host in version 7.10.0.0 R2601141040 that allows attackers with access to the TX Host to execute code on the RX Ho…	CWE-125 Out-of-bounds Read	CVE-2025-41278	2026-06-2 03:56	2026-05-29	Show	GitHub Exploit DB Packet Storm

3576	7.8	HIGH Local	waterfall-security	wf-500_firmware	Nozomi Networks Labs identified a CWE-23: Relative Path Traversal (Zip Slip) in Waterfall WF-500 RX Host in version 7.9.1.0 R2502171040 that allows attackers with access to the TX Host to execute cod…	CWE-23 Relative Path Traversal	CVE-2025-41280	2026-06-2 03:56	2026-05-29	Show	GitHub Exploit DB Packet Storm

3577	7.2	HIGH Network	waterfall-security	wf-500_firmware	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in the Administration WebUI in Waterfall WF-500 RX Host in version…	CWE-78 OS Command	CVE-2025-41279	2026-06-2 03:55	2026-05-29	Show	GitHub Exploit DB Packet Storm

3578	7.8	HIGH Local	waterfall-security	wf-500_firmware	Nozomi Networks Labs identified a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in Waterfall WF-500 RX Host in version 7.9.1.0 R2502171040 that al…	CWE-78 OS Command	CVE-2025-41281	2026-06-2 03:55	2026-05-29	Show	GitHub Exploit DB Packet Storm

3579	6.5	MEDIUM Network	-	-	Billy is an interface filesystem abstraction for Go. Prior to versions 5.9.0 and 6.0.0-alpha.1, multiple components may improperly handle crafted or malformed input, resulting in panics, infinite loo…	CWE-674 CWE-835 Uncontrolled Recursion Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-44740	2026-06-2 03:53	2026-06-2	Show	GitHub Exploit DB Packet Storm

3580	9.9	CRITICAL Network	-	-	OneUptime is an open-source monitoring and observability platform. Prior to 10.0.98, OneUptime uses the Node.js' vm module as an isolation primitive. This API was not designed for that and can be esc…	CWE-693 Protection Mechanism Failure	CVE-2026-45102	2026-06-2 03:50	2026-05-28	Show	GitHub Exploit DB Packet Storm