Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
210301	4.9	警告	Fedora Project	-	PCS の pcsd における権限を取得される脆弱性	CWE-362 競合状態	CVE-2015-5189	2015-09-7 15:16	2015-09-1	Show	GitHub Exploit DB Packet Storm

210302	3.5	注意	LevelTen Interactive	-	Drupal 用 Spotlight モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-6808	2015-09-7 15:11	2015-09-1	Show	GitHub Exploit DB Packet Storm

210303	2.1	注意	Mass Contact project	-	Drupal 用 Mass Contact モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-6807	2015-09-7 15:11	2015-09-2	Show	GitHub Exploit DB Packet Storm

210304	4.3	警告	BEdita	-	BEdita におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-6809	2015-09-7 15:03	2015-03-12	Show	GitHub Exploit DB Packet Storm

210305	7.2	危険	フォーティネット	-	Fortinet FortiClient の複数のドライバにおける PID に対する特権付きハンドルを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-5737	2015-09-7 14:44	2015-09-1	Show	GitHub Exploit DB Packet Storm

210306	7.2	危険	フォーティネット	-	Fortinet FortiClient の Fortishield.sys ドライバにおける任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-5736	2015-09-7 14:43	2015-09-1	Show	GitHub Exploit DB Packet Storm

210307	7.2	危険	フォーティネット	-	Fortinet FortiClient の複数のドライバにおける任意のメモリ領域に書き込まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-5735	2015-09-7 14:43	2015-09-1	Show	GitHub Exploit DB Packet Storm

210308	2.1	注意	フォーティネット	-	Fortinet FortiClient の複数のドライバにおける任意のカーネルメモリを読まれる脆弱性	CWE-200 情報漏えい	CVE-2015-4077	2015-09-7 14:42	2015-09-1	Show	GitHub Exploit DB Packet Storm

210309	3.5	注意	Polycom	-	Polycom RealPresence CloudAXIS スイートにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-1516	2015-09-7 14:39	2015-06-18	Show	GitHub Exploit DB Packet Storm

210310	6.8	警告	Webgroup Media LLC	-	Cerb の ajax.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-6545	2015-09-7 14:18	2015-08-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2671	5.5	MEDIUM Local	-	-	Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly validate the size of an internal structure, leading to an out-of-bounds read in notification handling code. The bug can…	CWE-125 Out-of-bounds Read	CVE-2026-47332	2026-05-29 11:45	2026-05-29	Show	GitHub Exploit DB Packet Storm

2672	7.8	HIGH Local	-	-	Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which can potentially incorrectly compute the size of an internal buffer, leading to a heap memory out-of-bounds read in notification han…	CWE-125 Out-of-bounds Read	CVE-2026-47333	2026-05-29 11:45	2026-05-29	Show	GitHub Exploit DB Packet Storm

2673	5.5	MEDIUM Local	-	-	Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly sleep while holding a spinlock in notification handling code. The bug can be triggered by an unprivileged local user an…	CWE-833 Deadlock	CVE-2026-47334	2026-05-29 11:45	2026-05-29	Show	GitHub Exploit DB Packet Storm

2674	5.5	MEDIUM Local	-	-	Ubuntu Linux 6.8 contains SAUCE patches with a possible NULL pointer dereference in the handling of AppArmor notifications. The bug can be triggered by an unprivileged local user. This can lead to a …	CWE-476 NULL Pointer Dereference	CVE-2026-47335	2026-05-29 11:45	2026-05-29	Show	GitHub Exploit DB Packet Storm

2675	3.3	LOW Local	-	-	Ubuntu Linux 6.8 contains SAUCE patches with a possible use of an uninitialized variable in AppArmor AF_INET/AF_INET6 socket mediation code. The bug can be triggered by an unprivileged local user and…	CWE-457 Use of Uninitialized Variable	CVE-2026-47336	2026-05-29 11:45	2026-05-29	Show	GitHub Exploit DB Packet Storm

2676	3.3	LOW Local	-	-	Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a possible NULL pointer dereference in the handling of AF_INET/AF_INET6 socket mediation. The bug can be triggered by an unprivileged local u…	CWE-476 NULL Pointer Dereference	CVE-2026-47337	2026-05-29 11:45	2026-05-29	Show	GitHub Exploit DB Packet Storm

2677	9.8	CRITICAL Network	-	-	The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to Privilege Escalation via Validation Bypass in all versions up to and including 0.9.2.5. The vulnerability exists due to the …	CWE-269 Improper Privilege Management	CVE-2026-8809	2026-05-29 11:40	2026-05-29	Show	GitHub Exploit DB Packet Storm

2678	-		-	-	Use after free in SurfaceCapture in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	CWE-416 Use After Free	CVE-2026-9961	2026-05-29 11:35	2026-05-29	Show	GitHub Exploit DB Packet Storm

2679	-		-	-	Out of bounds write in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	CWE-787 Out-of-bounds Write	CVE-2026-9965	2026-05-29 11:35	2026-05-29	Show	GitHub Exploit DB Packet Storm

2680	7.5	HIGH Network	benoitc	hackney	Improper Neutralization of CRLF Sequences ('CRLF Injection') vulnerability in benoitc hackney allows HTTP Request/Response Splitting. The WebSocket upgrade code in src/hackney_ws.erl copies the host,…	CWE-93 CRLF Injection	CVE-2026-47072	2026-05-29 05:27	2026-05-26	Show	GitHub Exploit DB Packet Storm