Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
213051 7.5 危険 Mozilla Foundation - Mozilla Firefox および Thunderbird のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2015-0815 2015-04-10 11:02 2015-03-31 Show GitHub Exploit DB Packet Storm
213052 5 警告 Mozilla Foundation - Mozilla Firefox および Thunderbird におけるクローム特権で任意の JavaScript コードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-0816 2015-04-10 11:02 2015-03-31 Show GitHub Exploit DB Packet Storm
213053 4.3 警告 Mozilla Foundation - Mozilla Firefox の HTTP Alternative Services 機能における SSL サーバへの X.509 証明書検証のステップを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2015-0799 2015-04-9 17:36 2015-04-3 Show GitHub Exploit DB Packet Storm
213054 5 警告 Mozilla Foundation - Android 上で稼動する Mozilla Firefox および Firefox の開発版のリーダーモード機能におけるクローム特権で任意の JavaScript コードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-0798 2015-04-9 17:36 2015-04-3 Show GitHub Exploit DB Packet Storm
213055 4.6 警告 Canonical
E2fsprog project		 - E2fsprogs の libext2fs ライブラリの openfs.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-0247 2015-04-9 17:10 2015-01-29 Show GitHub Exploit DB Packet Storm
213056 5 警告 Apache Software Foundation - Apache Xerces-C++ の internal/XMLReader.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2015-0252 2015-04-9 17:10 2015-03-20 Show GitHub Exploit DB Packet Storm
213057 2.6 注意 Eaden McKee - bBlog におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2015-0905 2015-04-9 14:04 2015-04-7 Show GitHub Exploit DB Packet Storm
213058 9 危険 CA Technologies - CA Spectrum における管理者権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-2828 2015-04-9 12:18 2015-04-7 Show GitHub Exploit DB Packet Storm
213059 3.5 注意 CA Technologies - CA Spectrum におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-2827 2015-04-9 12:18 2015-04-7 Show GitHub Exploit DB Packet Storm
213060 6.4 警告 GNU Project - GNU C Library の stdio-common/vfscanf.c 内の ADDW マクロにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2015-1473 2015-04-9 11:44 2015-02-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2931 9.8 CRITICAL
Network 		- - IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affecte… CWE-122
Heap-based Buffer Overflow 		CVE-2026-8175 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2932 8.8 HIGH
Network 		- - IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affecte… CWE-121
Stack-based Buffer Overflow 		CVE-2026-8179 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2933 7.5 HIGH
Network 		- - IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affecte… CWE-476
 NULL Pointer Dereference 		CVE-2026-8180 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2934 6.5 MEDIUM
Network 		- - IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affecte… CWE-22
Path Traversal 		CVE-2026-9035 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2935 8.8 HIGH
Network 		- - The Web-based Management allows a remote low privileged Engineer user to install additional APPs on the device downloaded from the PLCnext Store without implementing any data verification mechanism, … CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2025-41669 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2936 7.8 HIGH
Local 		- - A local user with low privileges may be able to influence the behavior of a privileged system service by manipulating configuration or application-related files located in user-writable areas of the … CWE-427
 Uncontrolled Search Path Element 		CVE-2025-41670 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2937 7.5 HIGH
Network 		- - An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the userinfo endpoint due to improper neutralization of special elements in a SQL SELECT command. This… CWE-89
SQL Injection 		CVE-2026-40810 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2938 7.5 HIGH
Network 		- - An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the ssoabstractservice due to improper neutralization of special elements in a SQL SELECT command. Thi… CWE-89
SQL Injection 		CVE-2026-40811 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2939 7.5 HIGH
Network 		- - An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getLiveValues functions sn parameter due to improper neutralization of special elements in a SQL S… CWE-89
SQL Injection 		CVE-2026-40812 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm
2940 7.5 HIGH
Network 		- - An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getLiveValues functions tagid parameter due to improper neutralization of special elements in a SQ… CWE-89
SQL Injection 		CVE-2026-40813 2026-05-27 23:53 2026-05-27 Show GitHub Exploit DB Packet Storm