Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216581	1.9	注意	アップル	-	Apple iOS および Apple TV のサンドボックスプロファイルコンポーネントにおけるハードウェアの識別子を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-1114	2015-04-14 10:58	2015-04-8	Show	GitHub Exploit DB Packet Storm

216582	1.9	注意	アップル	-	Apple iOS および Apple TV の IOMobileFramebuffer における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-1097	2015-04-14 10:58	2015-04-8	Show	GitHub Exploit DB Packet Storm

216583	6.9	警告	アップル	-	Apple iOS および Apple TV の Audio Drivers サブシステムにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2015-1086	2015-04-14 10:58	2014-04-8	Show	GitHub Exploit DB Packet Storm

216584	5	警告	The PHP Group アップル	-	PHP の Fileinfo コンポーネントで使用される file の cdf.c の cdf_read_property_info 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2014-3587	2015-04-13 17:31	2014-08-21	Show	GitHub Exploit DB Packet Storm

216585	7.5	危険	The PHP Group アップル	-	PHP の ext/standard/dns.c の php_parserr 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-3597	2015-04-13 17:29	2014-08-21	Show	GitHub Exploit DB Packet Storm

216586	5	警告	The PHP Group アップル	-	PHP の XMLRPC エクステンションにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-3668	2015-04-13 17:27	2014-10-16	Show	GitHub Exploit DB Packet Storm

216587	9.3	危険	アップル	-	Apple iOS および Apple TV の IOHIDFamily カーネルエクステンションにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-4380	2015-04-13 17:22	2014-09-17	Show	GitHub Exploit DB Packet Storm

216588	9.3	危険	アップル	-	Apple iOS および Apple TV の IOHIDFamily における特権付きコンテキスト内で任意のコードを実行される脆弱性	CWE-Other その他	CVE-2014-4405	2015-04-13 17:18	2014-09-17	Show	GitHub Exploit DB Packet Storm

216589	5.1	警告	The PHP Group アップル	-	PHP の ext/standard/dns.c 内の php_parserr 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-4049	2015-04-13 17:18	2014-06-12	Show	GitHub Exploit DB Packet Storm

216590	3.3	注意	The PHP Group アップル	-	PHP の設定スクリプトで使用される acinclude.m4 における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2014-3981	2015-04-13 17:15	2014-06-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1971	3.8	LOW Network	mattermost	mattermost_server	Mattermost versions 11.7.x <= 11.7.0, 10.11.x <= 10.11.17 fail to enforce bot-specific permission checks on the user active status endpoint, which allows a User Manager with user management write acc…	CWE-863 Incorrect Authorization	CVE-2026-8074	2026-06-24 05:48	2026-06-22	Show	GitHub Exploit DB Packet Storm

1972	4.3	MEDIUM Network	mattermost	mattermost_server	Mattermost versions 11.7.x <= 11.7.0, 11.6.x <= 11.6.2, 11.5.x <= 11.5.5, 10.11.x <= 10.11.17 fail to invalidate cached authentication state for active WebSocket connections during global session rev…	CWE-613 Insufficient Session Expiration	CVE-2026-9162	2026-06-24 05:47	2026-06-22	Show	GitHub Exploit DB Packet Storm

1973	7.5	HIGH Network	ibm	websphere_application_server	IBM WebSphere Application Server 9.0, and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 are vulnerable to a denial of service, caused by sending a specially-crafted req…	CWE-400 Uncontrolled Resource Consumption	CVE-2026-9320	2026-06-24 05:46	2026-06-23	Show	GitHub Exploit DB Packet Storm

1974	7.5	HIGH Network	ibm	websphere_application_server	IBM WebSphere Application Server 9.0, and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 are vulnerable to a denial of service, caused by sending a specially-crafted req…	CWE-400 Uncontrolled Resource Consumption	CVE-2026-9071	2026-06-24 05:46	2026-06-23	Show	GitHub Exploit DB Packet Storm

1975	7.3	HIGH Network	ibm	websphere_application_server	IBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to bypass authentication and gain unauthorized access to JAX-WS applications.	CWE-287 Improper Authentication	CVE-2026-10845	2026-06-24 05:36	2026-06-23	Show	GitHub Exploit DB Packet Storm

1976	7.7	HIGH Network	-	-	Daytona is a secure and elastic infrastructure runtime for AI-generated code execution and agent workflows. Prior to 0.185.0, Daytona's organization role update and delete endpoints authorized the ca…	CWE-639 CWE-862 Authorization Bypass Through User-Controlled Key Missing Authorization	CVE-2026-54322	2026-06-24 05:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

1977	7.8	HIGH Local	-	-	Wondershare PDFelement 5.2.9 contains a privilege escalation vulnerability due to an unquoted service path in the WsAppService Windows service. Local attackers can place a malicious executable in the…	CWE-428 Unquoted Search Path or Element	CVE-2020-37254	2026-06-24 05:16	2026-06-20	Show	GitHub Exploit DB Packet Storm

1978	7.8	HIGH Local	-	-	Matrix42 Remote Control Host 3.20.0031 contains an unquoted service path vulnerability in the FastViewerRemoteService and FastViewerRemoteProxy services that allows local users to execute arbitrary c…	CWE-428 Unquoted Search Path or Element	CVE-2016-20095	2026-06-24 05:16	2026-06-20	Show	GitHub Exploit DB Packet Storm

1979	7.8	HIGH Local	-	-	Iperius Remote 1.7.0 contains an unquoted service path vulnerability that allows local users to execute arbitrary code with SYSTEM privileges by exploiting the service installation path. When install…	CWE-428 Unquoted Search Path or Element	CVE-2016-20089	2026-06-24 05:16	2026-06-20	Show	GitHub Exploit DB Packet Storm

1980	4.9	MEDIUM Local	libexpat_project	libexpat	libexpat before 2.8.2 lacks handler call depth tracking for calls to XML_ResumeParser from within handlers in cases of a policy violation. Thus, a use-after-free can occur (similar to the CVE-2026-50…	CWE-416 Use After Free	CVE-2026-56131	2026-06-24 05:15	2026-06-19	Show	GitHub Exploit DB Packet Storm