Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218091 6.8 警告 アドバンテック株式会社 - Advantech WebAccess におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-0988 2014-09-24 16:12 2014-09-18 Show GitHub Exploit DB Packet Storm
218092 6.8 警告 アドバンテック株式会社 - Advantech WebAccess におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-0985 2014-09-24 16:12 2014-09-18 Show GitHub Exploit DB Packet Storm
218093 6.8 警告 アドバンテック株式会社 - Advantech WebAccess におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-0987 2014-09-24 16:09 2014-09-18 Show GitHub Exploit DB Packet Storm
218094 6.8 警告 アドバンテック株式会社 - Advantech WebAccess におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-0986 2014-09-24 16:09 2014-09-18 Show GitHub Exploit DB Packet Storm
218095 4.3 警告 Phorum - Phorum の管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6659 2014-09-24 16:08 2012-08-24 Show GitHub Exploit DB Packet Storm
218096 4.3 警告 MailEnable - MailEnable Enterprise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2588 2014-09-24 16:07 2012-08-8 Show GitHub Exploit DB Packet Storm
218097 7.2 危険 The PHP Group
アップル		 - PHP の FastCGI Process Manager の sapi/fpm/fpm/fpm_unix.c における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0185 2014-09-24 13:26 2014-05-1 Show GitHub Exploit DB Packet Storm
218098 6.4 警告 アップル - Apple Safari における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-5227 2014-09-22 18:30 2013-12-16 Show GitHub Exploit DB Packet Storm
218099 2.1 注意 アップル - Apple iOS の Lockdown におけるアクティベーションロック保護メカニズムを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-1360 2014-09-22 18:18 2014-06-30 Show GitHub Exploit DB Packet Storm
218100 5 警告 アップル - Apple iOS の TelephonyUI フレームワークにおける電話番号または電子メールアドレス情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6835 2014-09-22 18:10 2014-03-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1451 5.6 MEDIUM
Local 		synology assistant An origin validation error vulnerability in Synology Assistant before 7.0.6-50085 allows local users to write arbitrary files with restricted content and conduct denial-of-service during installation. CWE-346
 Origin Validation Error 		CVE-2025-66593 2026-06-3 01:09 2026-05-27 Show GitHub Exploit DB Packet Storm
1452 5.6 MEDIUM
Local 		synology active_backup_for_business_agent An origin validation error vulnerability in Synology Active Backup for Business Agent before 3.1.0-4967 allows local users to write arbitrary files with restricted content and conduct denial-of-servi… CWE-346
 Origin Validation Error 		CVE-2025-66592 2026-06-3 01:08 2026-05-27 Show GitHub Exploit DB Packet Storm
1453 5.6 MEDIUM
Local 		synology activeprotect_agent Origin validation error vulnerability in Synology ActiveProtect Agent before 1.1.0-0439 allows local users to write arbitrary files with restricted content and conduct denial-of-service during instal… CWE-346
 Origin Validation Error 		CVE-2025-13593 2026-06-3 01:08 2026-05-27 Show GitHub Exploit DB Packet Storm
1454 5.9 MEDIUM
Local 		google android In multiple functions of WindowState.java, there is a possible way to trick a user into accepting a permission due to a tapjacking/overlay attack. This could lead to local escalation of privilege wit… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2026-0061 2026-06-3 00:48 2026-06-2 Show GitHub Exploit DB Packet Storm
1455 5.5 MEDIUM
Local 		google android In multiple functions of DevicePolicyManagerService.java, there is a possible way to hide a system critical package due to improper input validation. This could lead to local denial of service with n… CWE-20
 Improper Input Validation  		CVE-2026-0070 2026-06-3 00:48 2026-06-2 Show GitHub Exploit DB Packet Storm
1456 5.5 MEDIUM
Local 		google android In getPreferredSize of LauncherProcessImageListener.kt, there is a possible denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution priv… CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-0074 2026-06-3 00:47 2026-06-2 Show GitHub Exploit DB Packet Storm
1457 5.3 MEDIUM
Network 		ibm openbmc IBM OPENBMC FW1110.00 through FW1110.11 is vulnerable to denial of service attacks by unauthenticated network users. CWE-1284
 Improper Validation of Specified Quantity in Input 		CVE-2026-7254 2026-06-3 00:45 2026-05-27 Show GitHub Exploit DB Packet Storm
1458 7.8 HIGH
Local 		ibm operations_analytics_log_analysis IBM Operations Analytics - Log Analysis  and IBM SmartCloud Analytics - Log Analysis uses default passwords default passwords from the manufacturing process for use during the installation process, w… CWE-1392
NVD-CWE-noinfo
 Use of Default Credentials 		CVE-2026-7365 2026-06-3 00:40 2026-05-27 Show GitHub Exploit DB Packet Storm
1459 6.4 MEDIUM
Local 		qualcomm snapdragon_g1_gen_2_gaming_platform_firmware
5g_fixed_wireless_access_platform_firmware
c-v2x_9150_firmware
cq7790_firmware
cq8725s_firmware
sm7435p_firmware
sm7525_firmware
sm75… 		Memory Corruption when processing IOCTL requests with mismatched API versions due to concurrent modification of user-space buffer. CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2025-59610 2026-06-3 00:28 2026-06-2 Show GitHub Exploit DB Packet Storm
1460 6.7 MEDIUM
Local 		qualcomm aqt1000_firmware
cologne_firmware
fastconnect_6200_firmware
fastconnect_6700_firmware
fastconnect_6800_firmware
fastconnect_6900_firmware
fastconnect_7800_firmware
iqx5121_firmwa… 		Memory corruption in diagnostic services due to absence of input validation CWE-787
 Out-of-bounds Write 		CVE-2025-59611 2026-06-3 00:27 2026-06-2 Show GitHub Exploit DB Packet Storm