Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
208871	4	警告	IBM	-	複数の IBM Tivoli Storage Manager 製品の VMware GUI の Data Protection 拡張機能における任意の仮想マシンを復元される脆弱性	CWE-200 情報漏えい	CVE-2015-7429	2016-01-8 16:14	2015-12-11	Show	GitHub Exploit DB Packet Storm

208872	10	危険	IBM	-	複数の IBM Tivoli Storage Manager 製品の VMware GUI の Data Protection 拡張機能における任意の OS コマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2015-7426	2016-01-8 16:14	2015-11-19	Show	GitHub Exploit DB Packet Storm

208873	3.5	注意	IBM	-	IBM Security QRadar SIEM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-7409	2016-01-8 16:14	2015-12-18	Show	GitHub Exploit DB Packet Storm

208874	3.5	注意	IBM	-	IBM Curam Social Program Management におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-7402	2016-01-8 16:14	2015-12-17	Show	GitHub Exploit DB Packet Storm

208875	4	警告	IBM	-	IBM InfoSphere BigInsights の Big SQL コンポーネントにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-5020	2016-01-8 16:14	2015-12-16	Show	GitHub Exploit DB Packet Storm

208876	8.5	危険	IBM	-	IBM Security Access Manager for Web および Security Access Manager における任意の OS コマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2015-5018	2016-01-8 16:14	2015-12-1	Show	GitHub Exploit DB Packet Storm

208877	3.6	注意	IBM	-	IBM Rational ClearQuest におけるデータベースサーバになりすまされる脆弱性	CWE-200 情報漏えい	CVE-2015-4996	2016-01-8 16:14	2015-12-9	Show	GitHub Exploit DB Packet Storm

208878	1.9	注意	IBM	-	IBM Tealeaf Customer Experience のポータルにおける認証情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-4990	2016-01-8 16:14	2015-12-17	Show	GitHub Exploit DB Packet Storm

208879	5	警告	IBM	-	IBM Tealeaf Customer Experience のポータルにおける任意のチャートを読まれる脆弱性	CWE-200 情報漏えい	CVE-2015-4989	2016-01-8 16:14	2015-12-17	Show	GitHub Exploit DB Packet Storm

208880	4.3	警告	Mozilla Foundation	-	Bugzilla の Template.pm における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-8509	2016-01-8 10:29	2015-12-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3631	7.5	HIGH Network	-	-	FlexRIC v2.0.0 crashes when an SCTP association is closed before an E2_SETUP_REQUEST is sent. The near-RT RIC assumes a mapping between SCTP association and E2 node always exists in the cleanup path …	CWE-617 Reachable Assertion	CVE-2026-37220	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

3632	7.5	HIGH Network	-	-	FlexRIC v2.0.0 crashes when receiving a RIC_SUBSCRIPTION_RESPONSE with an unknown ric_id that has no corresponding pending event. The near-RT RIC uses assert() to enforce the existence of a pending e…	CWE-617 Reachable Assertion	CVE-2026-37221	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

3633	-		-	-	FlexRIC v2.0.0 uses hardcoded assertions to validate Information Element (IE) counts in decoded E2AP messages. A remote unauthenticated attacker can send a valid E2AP PDU containing an unexpected num…	-	CVE-2026-37222	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

3634	-		-	-	FlexRIC v2.0.0 contains a reachable assertion in the iApp message dispatcher. The dispatcher validates incoming E2AP messages against a 9-entry whitelist using assert(). A remote unauthenticated atta…	-	CVE-2026-37223	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

3635	-		-	-	FlexRIC v2.0.0 crashes when receiving a duplicate E2_SETUP_REQUEST from the same or spoofed E2 Node. The iApp registry enforces node ID uniqueness via assert() rather than graceful rejection. A remot…	-	CVE-2026-37224	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

3636	-		-	-	FlexRIC v2.0.0 crashes when the iApp receives an E42_RIC_SUBSCRIPTION_REQUEST with an empty ricEventTriggerDefinition field. The E42 layer decoder accepts this as valid, but the E2AP encoder asserts …	-	CVE-2026-37225	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

3637	-		-	-	FlexRIC v2.0.0 contains reachable assert(0) calls in stub message handlers for whitelisted but unimplemented E2AP message types in the near-RT RIC. A remote unauthenticated attacker can send a decoda…	-	CVE-2026-37227	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

3638	-		-	-	An issue in ESA AnomalyMatch before 1.3.1 allow attackers to execute arbitrary code via crafted model checkpoint files. The affected components load model files from session directories using torch.l…	-	CVE-2026-38950	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

3639	5.5	MEDIUM Network	portainer	portainer	Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …	CWE-22 Path Traversal	CVE-2026-44885	2026-06-2 03:08	2026-05-29	Show	GitHub Exploit DB Packet Storm

3640	6.5	MEDIUM Network	portainer	portainer	Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …	CWE-862 Missing Authorization	CVE-2026-44884	2026-06-2 03:07	2026-05-29	Show	GitHub Exploit DB Packet Storm