Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217801 10 危険 Node.js Foundation
IBM		 - IBM Rational Application Developer などの製品で使用される Node.js 用 syntax-error パッケージの index.js における Eval インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2014-7192 2014-12-15 18:16 2014-07-15 Show GitHub Exploit DB Packet Storm
217802 5 警告 IBM - 複数の IBM 製品の Rule Execution Server の Hosted Transparent Decision Service における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2014-6114 2014-12-15 18:16 2014-12-3 Show GitHub Exploit DB Packet Storm
217803 3.5 注意 Chyrp - Chyrp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-7264 2014-12-15 18:05 2014-12-10 Show GitHub Exploit DB Packet Storm
217804 4.3 警告 ULTRAPOP.JP - i-HTTPD におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-7263 2014-12-15 18:02 2014-12-9 Show GitHub Exploit DB Packet Storm
217805 4.3 警告 Intelliants - Subrion CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9120 2014-12-15 17:06 2014-12-8 Show GitHub Exploit DB Packet Storm
217806 4.6 警告 Xiph.Org - Icecast における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-9091 2014-12-15 17:02 2014-05-6 Show GitHub Exploit DB Packet Storm
217807 7.5 危険 Zoho Corporation - 複数の ZOHO 製品におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-7866 2014-12-15 16:33 2014-09-27 Show GitHub Exploit DB Packet Storm
217808 7.5 危険 NVIDIA - NVIDIA ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-8298 2014-12-15 16:17 2014-12-9 Show GitHub Exploit DB Packet Storm
217809 6.4 警告 Scalix.com - Scalix Web Access における XML 外部エンティティの脆弱性 CWE-Other
その他 		CVE-2014-9360 2014-12-15 15:39 2014-10-31 Show GitHub Exploit DB Packet Storm
217810 4.3 警告 chad phillips - Drupal 用 LoginToboggan モジュールの Unified Login フォームにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9364 2014-12-15 14:31 2014-07-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
861 6.2 MEDIUM
Local 		- - An issue was discovered in Malwarebytes 4.x and 5.x (and Nebula 2020-10-21 and later). A large number of Firefox preference files can cause the parser to ignore other browser configuration files, lea… New CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2023-43686 2026-06-10 05:16 2026-06-10 Show GitHub Exploit DB Packet Storm
862 8.2 HIGH
Local 		- - The utility functions used by Malwarebytes EDR 1.0.11 on Linux for calculating a cryptographic hash of data bytes truncate the hashed data if it exceeds 4GB. This leads to an integer wrap-around if t… New CWE-190
 Integer Overflow or Wraparound 		CVE-2023-29146 2026-06-10 05:16 2026-06-10 Show GitHub Exploit DB Packet Storm
863 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: AppArmor: Allow apparmor to handle unaligned dfa tables The dfa tables can originate from kernel or userspace and 8-byte alignmen… Update NVD-CWE-noinfo
CVE-2026-46254 2026-06-10 05:10 2026-06-4 Show GitHub Exploit DB Packet Storm
864 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: dmaengine: fsl-edma: don't explicitly disable clocks in .remove() The clocks in fsl_edma_engine::muxclk are allocated and enabled… Update NVD-CWE-noinfo
CVE-2026-46255 2026-06-10 05:10 2026-06-4 Show GitHub Exploit DB Packet Storm
865 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: NFS/localio: prevent direct reclaim recursion into NFS via nfs_writepages LOCALIO is an NFS loopback mount optimization that avoi… Update CWE-667
 Improper Locking 		CVE-2026-46256 2026-06-10 05:10 2026-06-4 Show GitHub Exploit DB Packet Storm
866 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: clocksource/drivers/timer-sp804: Fix an Oops when read_current_timer is called on ARM32 platforms where the SP804 is not registere… Update CWE-908
 Use of Uninitialized Resource 		CVE-2026-46257 2026-06-10 05:10 2026-06-4 Show GitHub Exploit DB Packet Storm
867 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: gpio: cdev: Avoid NULL dereference in linehandle_create() In linehandle_create(), there is a statement like this: retain_and_nu… Update CWE-476
 NULL Pointer Dereference 		CVE-2026-46258 2026-06-10 05:09 2026-06-4 Show GitHub Exploit DB Packet Storm
868 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: procfs: fix missing RCU protection when reading real_parent in do_task_stat() When reading /proc/[pid]/stat, do_task_stat() acces… Update NVD-CWE-noinfo
CVE-2026-46259 2026-06-10 05:09 2026-06-4 Show GitHub Exploit DB Packet Storm
869 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix out-of-bound access in fib6_add_rt2node(). syzbot reported out-of-bound read in fib6_add_rt2node(). [0] When IPv6 rout… Update CWE-125
Out-of-bounds Read 		CVE-2026-46260 2026-06-10 05:09 2026-06-4 Show GitHub Exploit DB Packet Storm
870 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: spi: wpcm-fiu: Fix potential NULL pointer dereference in wpcm_fiu_probe() platform_get_resource_byname() can return NULL, which w… Update CWE-476
 NULL Pointer Dereference 		CVE-2026-46261 2026-06-10 05:03 2026-06-4 Show GitHub Exploit DB Packet Storm