Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219001	10	危険	Mozilla Foundation	-	Mozilla Firefox および Thunderbird の SMIL Animation Controller における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2014-1541	2014-06-25 14:56	2014-06-10	Show	GitHub Exploit DB Packet Storm

219002	4	警告	Debian	-	apt におけるトロイの木馬のパッケージをダウンロードされる脆弱性	CWE-20 不適切な入力確認	CVE-2014-0478	2014-06-25 14:25	2014-06-12	Show	GitHub Exploit DB Packet Storm

219003	10	危険	Mozilla Foundation	-	Mozilla Firefox の nsTextEditRules::CreateMozBR 関数における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2014-1538	2014-06-25 12:16	2014-06-10	Show	GitHub Exploit DB Packet Storm

219004	10	危険	Mozilla Foundation	-	Mozilla Firefox および Thunderbird のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2014-1533	2014-06-25 12:15	2014-06-10	Show	GitHub Exploit DB Packet Storm

219005	7.1	危険	IBM	-	IBM WebSphere Application Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-0964	2014-06-25 12:13	2014-05-7	Show	GitHub Exploit DB Packet Storm

219006	6.8	警告	NetIQ	-	NetIQ Sentinel の Agent Manager の NQMcsVarSet ActiveX コントロールの DumpToFile メソッドにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-3460	2014-06-25 12:13	2014-05-19	Show	GitHub Exploit DB Packet Storm

219007	4.3	警告	シマンテック	-	OS X 上で稼働する Symantec PGP Desktop および Encryption Desktop Professional におけるファイル操作時の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3431	2014-06-24 18:38	2014-06-20	Show	GitHub Exploit DB Packet Storm

219008	4	警告	シスコシステムズ	-	Cisco WebEx Meeting Server の XML programmatic interface における重要なミーティング情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-3296	2014-06-24 18:26	2014-06-20	Show	GitHub Exploit DB Packet Storm

219009	10	危険	IBM	-	IBM Security Access Manager for Mobile および IBM Security Access Manager for Web における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2014-3073	2014-06-24 18:08	2014-06-21	Show	GitHub Exploit DB Packet Storm

219010	8	危険	IBM	-	IBM Security Access Manager for Mobile および IBM Security Access Manager for Web のファームウェアにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2014-3053	2014-06-24 18:07	2014-06-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
31	9.8	CRITICAL Network	shepherdwind	velocity.js	Velocity.js is a JavaScript implementation of the Apache Velocity template engine. In 2.1.5 and earlier, a prototype pollution vulnerability was discovered in velocityjs. This issue occurs during the… Update	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2026-44966	2026-06-3 03:40	2026-05-27	Show	GitHub Exploit DB Packet Storm

32	8.2	HIGH Network	github	enterprise_server	A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an unauthenticated attacker to send crafted requests to internal services by exploiting insu… Update	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-9312	2026-06-3 03:31	2026-05-27	Show	GitHub Exploit DB Packet Storm

33	7.5	HIGH Network	osgeo	mapserver	MapServer is a system for developing web-based GIS applications. From 6.4.0 to before 8.6.3, msSLDParseUserStyle always calls _SLDApplyRuleValues(psRule, psLayer, 1); for any <Rule> carrying <ElseFil… Update	CWE-129 CWE-476 Improper Validation of Array Index NULL Pointer Dereference	CVE-2026-45104	2026-06-3 03:19	2026-05-28	Show	GitHub Exploit DB Packet Storm

34	3.3	LOW Local	google	android	In setTo of ResourceTypes.cpp, there is a possible read out of bounds due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed.… New	CWE-120 Classic Buffer Overflow	CVE-2026-0056	2026-06-3 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

35	7.8	HIGH Local	google	android	In addWindow of WindowManagerService.java, there is a possible tapjacking issue due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privi… New	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2026-28577	2026-06-3 03:08	2026-06-2	Show	GitHub Exploit DB Packet Storm

36	5.5	MEDIUM Local	google	android	In multiple functions of ubsan_throwing_runtime.cpp, there is a possible way to cause a permanent denial of service due to a logic error in the code. This could lead to local denial of service with n… New	NVD-CWE-noinfo	CVE-2026-0067	2026-06-3 03:08	2026-06-2	Show	GitHub Exploit DB Packet Storm

37	8.0	HIGH Adjacent	google	android	In multiple functions of sdp_discovery.cc, there is a possible way to achieve code execution due to a heap buffer overflow. This could lead to remote (proximal/adjacent) code execution with no additi… New	CWE-122 Heap-based Buffer Overflow	CVE-2026-0059	2026-06-3 03:07	2026-06-2	Show	GitHub Exploit DB Packet Storm

38	5.5	MEDIUM Local	google	android	In updateState of GraphicsDriverEnableAngleAsSystemDriverController.java, there is a possible persistent dos issue due to an unusual root cause. This could lead to local denial of service with no add… New	NVD-CWE-noinfo	CVE-2026-0060	2026-06-3 03:07	2026-06-2	Show	GitHub Exploit DB Packet Storm

39	5.5	MEDIUM Local	google	android	In verifySignature of ApkChecksums.java, there is a possible way to cause a crash due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed… New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-0069	2026-06-3 03:06	2026-06-2	Show	GitHub Exploit DB Packet Storm

40	5.9	MEDIUM Local	google	android	In multiple functions, there is a possible way to access the contacts database due to a SQL injection. This could lead to local escalation of privilege with no additional execution privileges needed.… New	CWE-89 SQL Injection	CVE-2026-0075	2026-06-3 03:06	2026-06-2	Show	GitHub Exploit DB Packet Storm