Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
217261 5 警告 アップル
日立
サン・マイクロシステムズ
オラクル
- Oracle Java SE の Java Runtime Environment における Networking に関する脆弱性 CWE-noinfo
情報不足
CVE-2013-2447 2015-03-18 15:35 2013-06-18 Show GitHub Exploit DB Packet Storm
217262 7.6 危険 アップル
日立
サン・マイクロシステムズ
オラクル
- Oracle Java SE の Java Runtime Environment における Sound に関する脆弱性 CWE-noinfo
情報不足
CVE-2013-2448 2015-03-18 15:34 2013-06-18 Show GitHub Exploit DB Packet Storm
217263 5 警告 アップル
日立
サン・マイクロシステムズ
オラクル
- Oracle Java SE の Java Runtime Environment における Serialization に関する脆弱性 CWE-noinfo
情報不足
CVE-2013-2450 2015-03-18 15:32 2013-06-18 Show GitHub Exploit DB Packet Storm
217264 3.7 注意 アップル
日立
サン・マイクロシステムズ
オラクル
- Oracle Java SE の Java Runtime Environment における Networking に関する脆弱性 CWE-noinfo
情報不足
CVE-2013-2451 2015-03-18 15:31 2013-06-18 Show GitHub Exploit DB Packet Storm
217265 5 警告 アップル
日立
サン・マイクロシステムズ
オラクル
- Oracle Java SE の Java Runtime Environment における Libraries に関する脆弱性 CWE-noinfo
情報不足
CVE-2013-2452 2015-03-18 15:30 2013-06-18 Show GitHub Exploit DB Packet Storm
217266 5 警告 アップル
日立
サン・マイクロシステムズ
オラクル
- Oracle Java SE の Java Runtime Environment における JMX に関する脆弱性 CWE-noinfo
情報不足
CVE-2013-2453 2015-03-18 15:29 2013-06-18 Show GitHub Exploit DB Packet Storm
217267 5.8 警告 アップル
日立
サン・マイクロシステムズ
オラクル
- Oracle Java SE の Java Runtime Environment における JDBC に関する脆弱性 CWE-noinfo
情報不足
CVE-2013-2454 2015-03-18 15:28 2013-06-18 Show GitHub Exploit DB Packet Storm
217268 5 警告 アップル
日立
サン・マイクロシステムズ
オラクル
- Oracle Java SE の Java Runtime Environment における Libraries に関する脆弱性 CWE-noinfo
情報不足
CVE-2013-2455 2015-03-18 15:27 2013-06-18 Show GitHub Exploit DB Packet Storm
217269 5 警告 アップル
日立
サン・マイクロシステムズ
オラクル
- Oracle Java SE の Java Runtime Environment における Serialization に関する脆弱性 CWE-noinfo
情報不足
CVE-2013-2456 2015-03-18 15:26 2013-06-18 Show GitHub Exploit DB Packet Storm
217270 5 警告 アップル
日立
サン・マイクロシステムズ
オラクル
- Oracle Java SE の Java Runtime Environment における JMX に関する脆弱性 CWE-noinfo
情報不足
CVE-2013-2457 2015-03-18 15:26 2013-06-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1311 9.8 CRITICAL
Network
rtklib rtklib RTKLIB through 2.4.3 contains an out-of-bounds write vulnerability in decode_type1033 function that fails to clamp length counters to destination buffer size, allowing up to 191-byte overflow into fi… CWE-787
 Out-of-bounds Write
CVE-2026-56786 2026-06-27 01:52 2026-06-26 Show GitHub Exploit DB Packet Storm
1312 9.8 CRITICAL
Network
anysphere cursor Cursor is a code editor built for programming with AI. Prior to 3.0, Cursor runs agent terminal commands in a sandbox by default. Before a Write, the agent canonicalizes the target path to confirm it… CWE-59
Link Following
CVE-2026-50549 2026-06-27 01:51 2026-06-26 Show GitHub Exploit DB Packet Storm
1313 9.8 CRITICAL
Network
anysphere cursor Cursor is a code editor built for programming with AI. Prior to 3.0, Cursor runs agent terminal commands in a sandbox by default, and the sandbox grants write access to the command's working director… CWE-22
Path Traversal
CVE-2026-50548 2026-06-27 01:51 2026-06-26 Show GitHub Exploit DB Packet Storm
1314 6.5 MEDIUM
Network
wolfssl wolfssl Bleichenbacher padding oracle in PKCS#7 KTRI decryption. When decrypting PKCS#7 EnvelopedData using RSA PKCS#1 v1.5 key transport, wolfSSL returned distinguishable error codes depending on whether RS… CWE-208
 Information Exposure Through Timing Discrepancy
CVE-2026-6291 2026-06-27 01:51 2026-06-26 Show GitHub Exploit DB Packet Storm
1315 9.1 CRITICAL
Network
wolfssl wolfssl Heap buffer overread in wc_PKCS7_DecodeEnvelopedData when parsing crafted PKCS7 EnvelopedData. This could theoretically be triggered by attacker-supplied data delivered via S/MIME or CMS. CWE-125
Out-of-bounds Read
CVE-2026-6094 2026-06-27 01:51 2026-06-26 Show GitHub Exploit DB Packet Storm
1316 6.5 MEDIUM
Network
wolfssl wolfssl Partial-chain certificate verification may accept chains that terminate at a peer-supplied, untrusted intermediate certificate rather than a trusted anchor. An attacker could present a chain that end… CWE-295
Improper Certificate Validation 
CVE-2026-6091 2026-06-27 01:50 2026-06-26 Show GitHub Exploit DB Packet Storm
1317 7.5 HIGH
Network
wolfssl wolfssl AES-GCM encryption/decryption with extremely large cumulative single message sizes (>64 GiB) were not properly rejected by the streaming APIs, allowing counter wrap, keystream reuse, and consequent p… CWE-323
 Reusing a Nonce, Key Pair in Encryption
CVE-2026-55967 2026-06-27 01:50 2026-06-26 Show GitHub Exploit DB Packet Storm
1318 7.5 HIGH
Network
wolfssl wolfssl wolfSSL_PKCS7_verify() returning success for a degenerate (certs-only) PKCS#7 object that contains no signer. Such an object has empty signerInfos, so the underlying signed-data verification succeeds… CWE-347
 Improper Verification of Cryptographic Signature
CVE-2026-55961 2026-06-27 01:50 2026-06-26 Show GitHub Exploit DB Packet Storm
1319 7.5 HIGH
Network
wolfssl wolfssl X.509 trust-chain bypass (path-depth exhaustion) in the OpenSSL compatibility certificate verifier (wolfSSL_X509_verify_cert()). This affects only builds with --enable-opensslextra whose application … CWE-295
Improper Certificate Validation 
CVE-2026-11999 2026-06-27 01:50 2026-06-26 Show GitHub Exploit DB Packet Storm
1320 9.8 CRITICAL
Network
dest-unreach socat socat versions 1.8.0.0 through 1.8.1.1 contain a heap-based buffer overflow vulnerability that allows a malicious SOCKS5 proxy server to overwrite adjacent heap memory by exploiting a sign-extension … CWE-122
Heap-based Buffer Overflow
CVE-2026-56123 2026-06-27 01:50 2026-06-26 Show GitHub Exploit DB Packet Storm