Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218171	5.4	警告	Com2uS USA	-	Android 用 9 Innings: 2014 Pro Baseball アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5597	2014-09-18 16:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

218172	5.4	警告	Com2uS USA	-	Android 用 Homerun Battle 2 アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5596	2014-09-18 16:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

218173	5.4	警告	Background Check protool	-	Android 用 Background Check protool アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5580	2014-09-18 16:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

218174	5.4	警告	Thomas Fun Apps.	-	Android 用 brokenscreencrank アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5587	2014-09-18 16:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

218175	5.4	警告	BeenVerified.com	-	Android 用 Background Check BeenVerified アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5584	2014-09-18 16:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

218176	5.4	警告	Black Belt Studio	-	Android 用 Most Popular Ringtones アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5583	2014-09-18 16:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

218177	5.4	警告	Caesar	-	Android 用 mirror photo & shape アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5581	2014-09-18 16:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

218178	5.4	警告	The Big Byte	-	Android 用 Ingress Intel Helper アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5582	2014-09-18 16:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

218179	5.4	警告	Ask.fm	-	Android 用 Ask.fm - Social Q&A Network アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5574	2014-09-18 16:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

218180	5.4	警告	Azeus Systems Limited	-	Android 用 Anywhere Pad-Meet, Collaborate アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5579	2014-09-18 16:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
951	7.8	HIGH Local	-	-	An inclusion of functionality from untrusted control sphere vulnerability in OpenSSL configuration in Synology Active Backup for Business Recovery Media Creator before 2.5.0-2081 allows local users t… New	CWE-829 Inclusion of Functionality from Untrusted Control Sphere	CVE-2022-49036	2026-06-5 00:35	2026-06-3	Show	GitHub Exploit DB Packet Storm

952	8.2	HIGH Local	-	-	PackagePersister.validate_tgz builds "tar -tf #{tgz} 2>&1" where tgz = File.join(release_dir, 'packages', "#{name}.tgz") and name = package_meta['name'] comes directly from release.MF inside the uplo… New	CWE-78 OS Command	CVE-2026-41011	2026-06-5 00:35	2026-06-4	Show	GitHub Exploit DB Packet Storm

953	7.5	HIGH Network	-	-	Weak Randomness / Insecure Cryptographic Primitive (CWE-338) in Get-RandomPassword in BOSH-Ecosystem / windows-utilities-release allows a network attacker to estimate VM boot time and reconstruct a s… New	CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2026-41858	2026-06-5 00:35	2026-06-4	Show	GitHub Exploit DB Packet Storm

954	7.8	HIGH Local	-	-	A network man-in-the-middle between nats-sync and the BOSH director can steal the director credentials (Basic auth header or UAA client secret) and can tamper with the VM list that is written into th… New	CWE-295 Improper Certificate Validation	CVE-2026-41859	2026-06-5 00:35	2026-06-4	Show	GitHub Exploit DB Packet Storm

955	8.8	HIGH Local	-	-	CWE-326 in BOSH allows a local attacker to steal Basic-auth credentials or redirect UAA token requests via MITM. HttpRequestHelper#create_async_endpoint and #send_http_get_request_synchronous hard-co… New	CWE-326 Inadequate Encryption Strength	CVE-2026-41860	2026-06-5 00:35	2026-06-4	Show	GitHub Exploit DB Packet Storm

956	8.2	HIGH Local	-	-	ReleaseJob#unpack builds job_dir = File.join(@release_dir, 'jobs', name) and job_tgz = File.join(@release_dir, 'jobs', "#{name}.tgz") where name returns @job_meta['name'], a value taken verbatim from… New	CWE-78 OS Command	CVE-2026-41010	2026-06-5 00:35	2026-06-4	Show	GitHub Exploit DB Packet Storm

957	6.7	MEDIUM Local	-	-	A flaw was found in NetworkManager. This local privilege escalation vulnerability exists in NetworkManager's dhclient backend when processing malformed Manufacturer Usage Description (MUD) URLs. A lo… New	CWE-78 OS Command	CVE-2026-10805	2026-06-5 00:35	2026-06-4	Show	GitHub Exploit DB Packet Storm

958	9.6	CRITICAL Network	-	-	A flaw was found in the OpenShift Pipelines operator. The tekton-scheduler-rolebinding ClusterRoleBinding grants the system:authenticated group write access to Kueue and cert-manager custom resources… New	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2026-10840	2026-06-5 00:35	2026-06-4	Show	GitHub Exploit DB Packet Storm

959	7.2	HIGH Network	-	-	A flaw was found in the OpenShift Cloud Credential Operator Mint-mode IAM policies for AWS. Operator credentials are provisioned with account-wide scope for destructive actions rather than being rest… New	CWE-250 Execution with Unnecessary Privileges	CVE-2026-10843	2026-06-5 00:35	2026-06-4	Show	GitHub Exploit DB Packet Storm

960	9.6	CRITICAL Adjacent	-	-	OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an un-authenticated attacker to execute arbitrary commands on the LoadMaster appliance by exploiting un… New	CWE-77 Command Injection	CVE-2026-8037	2026-06-5 00:35	2026-06-4	Show	GitHub Exploit DB Packet Storm