Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218961	1.9	注意	アップル	-	Apple iOS のキーボードサブシステムの QuickType 機能における認証情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-4450	2014-10-23 11:59	2014-10-20	Show	GitHub Exploit DB Packet Storm

218962	6.8	警告	アップル	-	Apple iOS の iCloud Data Access におけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-4449	2014-10-23 11:53	2014-10-20	Show	GitHub Exploit DB Packet Storm

218963	1.9	注意	アップル	-	Apple iOS の House Arrest におけるドキュメントディレトリから重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2014-4448	2014-10-23 11:53	2014-10-20	Show	GitHub Exploit DB Packet Storm

218964	6.8	警告	YOOtheme	-	YOOtheme Pagekit CMS におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2014-8070	2014-10-22 19:53	2014-10-13	Show	GitHub Exploit DB Packet Storm

218965	4.3	警告	YOOtheme	-	YOOtheme Pagekit CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8069	2014-10-22 19:48	2014-10-13	Show	GitHub Exploit DB Packet Storm

218966	5	警告	Mozilla Foundation	-	Mozilla Firefox の content/base/src/nsDocument.cpp におけるローカルカメラから重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2014-1586	2014-10-22 18:23	2014-10-14	Show	GitHub Exploit DB Packet Storm

218967	5	警告	Mozilla Foundation	-	Mozilla Firefox の dom/media/MediaManager.cpp の WebRTC 動画共有機能における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2014-1585	2014-10-22 18:20	2014-10-14	Show	GitHub Exploit DB Packet Storm

218968	4.3	警告	Mozilla Foundation	-	Mozilla Firefox の Public Key Pinning の実装におけるピンニングの設定を回避される脆弱性	CWE-310 暗号の問題	CVE-2014-1584	2014-10-22 18:18	2014-10-14	Show	GitHub Exploit DB Packet Storm

218969	4.3	警告	Mozilla Foundation	-	Mozilla Firefox の Public Key Pinning の実装におけるピンニングの設定を回避される脆弱性	CWE-310 暗号の問題	CVE-2014-1582	2014-10-22 18:08	2014-10-14	Show	GitHub Exploit DB Packet Storm

218970	5	警告	Mozilla Foundation	-	Mozilla Firefox におけるプロセスメモリから重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-1580	2014-10-22 17:56	2014-10-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3001	5.5	MEDIUM Local	google	android	In multiple functions of AccessibilityManagerService.java, there is a possible persistent denial of service due to improper input validation. This could lead to local denial of service with no additi…	CWE-20 Improper Input Validation	CVE-2026-0018	2026-06-3 03:44	2026-06-2	Show	GitHub Exploit DB Packet Storm

3002	7.1	HIGH Network	ibm	engineering_lifecycle_management	IBM Engineering Lifecycle Management 7.0.3 Interim Fix 001 through Interim Fix 021, 7.1.0 Interim Fix 001 through Interim Fix 009, and 7.2.0 and 7.2.0 Interim Fix 001 is vulnerable to an XML exter…	CWE-611 XXE	CVE-2026-3603	2026-06-3 03:44	2026-05-27	Show	GitHub Exploit DB Packet Storm

3003	7.5	HIGH Network	viewcomponent	view_component	view_component is a framework for building reusable, testable, and encapsulated view components in Ruby on Rails. From 3.0.0 to 4.9.0, the system test entrypoint canonicalizes a user-controlled file …	CWE-187 Partial String Comparison	CVE-2026-44837	2026-06-3 03:43	2026-05-27	Show	GitHub Exploit DB Packet Storm

3004	3.3	LOW Local	google	android	In updateProvidersWhenServiceRemoved of CredentialManagerService.java, there is a possible way to override settings across users due to a permissions bypass. This could lead to local information disc…	CWE-269 Improper Privilege Management	CVE-2026-0016	2026-06-3 03:41	2026-06-2	Show	GitHub Exploit DB Packet Storm

3005	7.5	HIGH Network	ibm	websphere_application_server	IBM Web Server Plug-ins for WebSphere Application Server and WebSphere Liberty 8.5, 9.0 IBM WebSphere Application Server and WebSphere Application Server Liberty are vulnerable to HTTP request smuggl…	CWE-444 HTTP Request Smuggling	CVE-2026-8620	2026-06-3 03:40	2026-05-27	Show	GitHub Exploit DB Packet Storm

3006	9.8	CRITICAL Network	shepherdwind	velocity.js	Velocity.js is a JavaScript implementation of the Apache Velocity template engine. In 2.1.5 and earlier, a prototype pollution vulnerability was discovered in velocityjs. This issue occurs during the…	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2026-44966	2026-06-3 03:40	2026-05-27	Show	GitHub Exploit DB Packet Storm

3007	8.2	HIGH Network	github	enterprise_server	A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an unauthenticated attacker to send crafted requests to internal services by exploiting insu…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-9312	2026-06-3 03:31	2026-05-27	Show	GitHub Exploit DB Packet Storm

3008	7.5	HIGH Network	osgeo	mapserver	MapServer is a system for developing web-based GIS applications. From 6.4.0 to before 8.6.3, msSLDParseUserStyle always calls _SLDApplyRuleValues(psRule, psLayer, 1); for any <Rule> carrying <ElseFil…	CWE-129 CWE-476 Improper Validation of Array Index NULL Pointer Dereference	CVE-2026-45104	2026-06-3 03:19	2026-05-28	Show	GitHub Exploit DB Packet Storm

3009	5.5	MEDIUM Local	google	android	In verifySignature of ApkChecksums.java, there is a possible way to cause a crash due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed…	CWE-400 Uncontrolled Resource Consumption	CVE-2026-0069	2026-06-3 03:06	2026-06-2	Show	GitHub Exploit DB Packet Storm

3010	6.5	MEDIUM Adjacent	qualcomm	fastconnect_7800_firmware qca7005_firmware snapdragon_ar1_gen_1_platform_firmware wcd9380_firmware wcd9385_firmware wsa8830_firmware wsa8832_firmware wsa8835_firmware	Information Disclosure when resetting device to factory default settings through powerline interface allows unauthorized access to device configuration.	CWE-1230 Exposure of Sensitive Information Through Metadata	CVE-2025-59601	2026-06-3 03:00	2026-06-2	Show	GitHub Exploit DB Packet Storm