Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220231 6.8 警告 マイクロソフト - Microsoft Office の MSCOMCTL ライブラリにおける ASLR 保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1809 2014-05-15 14:25 2014-05-13 Show GitHub Exploit DB Packet Storm
220232 4.3 警告 マイクロソフト - Microsoft Office 2013 における重要なトークン情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-1808 2014-05-15 14:24 2014-05-13 Show GitHub Exploit DB Packet Storm
220233 4.3 警告 マイクロソフト - 複数の Microsoft 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1754 2014-05-15 14:21 2014-05-13 Show GitHub Exploit DB Packet Storm
220234 9 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-0251 2014-05-15 14:21 2014-05-13 Show GitHub Exploit DB Packet Storm
220235 5 警告 Haxx
アップル
Canonical		 - cURL および libcurl の cookie.c における Cookie を盗まれる脆弱性 CWE-200
情報漏えい 		CVE-2013-1944 2014-05-14 18:45 2013-04-12 Show GitHub Exploit DB Packet Storm
220236 4.3 警告 FreeType Project - FreeType の _bdf_parse_glyphs 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5670 2014-05-14 18:44 2012-12-20 Show GitHub Exploit DB Packet Storm
220237 4.3 警告 FreeType Project - FreeType の _bdf_parse_glyphs 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5669 2014-05-14 18:43 2012-12-20 Show GitHub Exploit DB Packet Storm
220238 4.3 警告 FreeType Project - FreeType におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5668 2014-05-14 18:43 2012-12-20 Show GitHub Exploit DB Packet Storm
220239 4.6 警告 サイバートラスト株式会社
XScreenSaver project
レッドハット		 - XScreenSaver のクラッシュによりスクリーンロックが解除される問題 CWE-287
不適切な認証 		CVE-2007-1859 2014-05-14 18:41 2007-05-3 Show GitHub Exploit DB Packet Storm
220240 5 警告 VMware - VMware SpringSource Grails におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1833 2014-05-14 18:40 2012-08-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3281 - - - In the Linux kernel, the following vulnerability has been resolved: net: bridge: use a stable FDB dst snapshot in RCU readers Local FDB entries can be rewritten in place by `fdb_delete_local()`, wh… - CVE-2026-46086 2026-05-27 23:48 2026-05-27 Show GitHub Exploit DB Packet Storm
3282 - - - In the Linux kernel, the following vulnerability has been resolved: ext4: fix bounds check in check_xattrs() to prevent out-of-bounds access The bounds check for the next xattr entry in check_xattr… - CVE-2026-46094 2026-05-27 23:48 2026-05-27 Show GitHub Exploit DB Packet Storm
3283 8.7 HIGH
Network 		twenty twenty Twenty is an open source CRM. In 1.18.0 and earlier, the file serving endpoints in Twenty CRM at /files/* and /file/:fileFolder/:id serve uploaded files using fileStream.pipe(res) without setting any… CWE-79
Cross-site Scripting 		CVE-2026-44729 2026-05-27 23:45 2026-05-27 Show GitHub Exploit DB Packet Storm
3284 9.9 CRITICAL
Network 		twenty twenty Twenty is an open source CRM. From 1.7.7 through 1.16.7, a critical Remote Code Execution (RCE) vulnerability exists in Twenty CRM via a chained SQL Injection and PostgreSQL COPY TO PROGRAM attack. I… CWE-78
CWE-89
OS Command 
SQL Injection 		CVE-2026-46624 2026-05-27 23:45 2026-05-27 Show GitHub Exploit DB Packet Storm
3285 5.5 MEDIUM
Local 		pavel-odintsov fastnetmon FastNetMon Community Edition through 1.2.9 is vulnerable to a local symlink attack via predictable file paths in /tmp. The statistics file path defaults to '/tmp/fastnetmon.dat' (src/fastnetmon.cpp l… CWE-59
Link Following 		CVE-2026-48693 2026-05-27 23:42 2026-05-27 Show GitHub Exploit DB Packet Storm
3286 7.1 HIGH
Local 		pavel-odintsov fastnetmon FastNetMon Community Edition through 1.2.9 contains an integer overflow vulnerability in the packet capture buffer allocation. In src/packet_storage.hpp, the allocate_buffer() function computes memor… CWE-122
CWE-190
Heap-based Buffer Overflow
 Integer Overflow or Wraparound 		CVE-2026-48690 2026-05-27 23:34 2026-05-27 Show GitHub Exploit DB Packet Storm
3287 6.5 MEDIUM
Network 		pavel-odintsov fastnetmon FastNetMon Community Edition through 1.2.9 contains an out-of-bounds read in the NetFlow v9 options template parser. In process_netflow_v9_options_template() (src/netflow_plugin/netflow_v9_collector.… CWE-125
Out-of-bounds Read 		CVE-2026-48684 2026-05-27 23:26 2026-05-27 Show GitHub Exploit DB Packet Storm
3288 6.5 MEDIUM
Network 		pavel-odintsov fastnetmon FastNetMon Community Edition through 1.2.9 has out-of-bounds memory access because it incorrectly parses BGP path attributes with the extended length flag set. In src/bgp_protocol.hpp, the parse_raw_… CWE-130
 Improper Handling of Length Parameter Inconsistency 		CVE-2026-48685 2026-05-27 23:23 2026-05-27 Show GitHub Exploit DB Packet Storm
3289 9.8 CRITICAL
Network 		pavel-odintsov fastnetmon FastNetMon Community Edition through 1.2.9 contains a stack-based buffer overflow in the BGP NLRI (Network Layer Reachability Information) decoder. The function decode_bgp_subnet_encoding_ipv4_raw() … CWE-120
CWE-787
Classic Buffer Overflow
 Out-of-bounds Write 		CVE-2026-48686 2026-05-27 23:23 2026-05-27 Show GitHub Exploit DB Packet Storm
3290 - - - Improper Following of a Certificate's Chain of Trust vulnerability in Erlang OTP public_key (pubkey_cert module) allows a non-CA certificate to be accepted as an intermediate issuer, enabling certifi… CWE-295
CWE-296
Improper Certificate Validation 
 Improper Following of a Certificate's Chain of Trust 		CVE-2026-42789 2026-05-27 23:16 2026-05-27 Show GitHub Exploit DB Packet Storm