Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
221341 7.5 危険 FreeType Project - FreeType の cff/cf2hints.c 内の cf2_hintmap_build 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-2240 2014-03-14 14:19 2014-03-7 Show GitHub Exploit DB Packet Storm
221342 4.3 警告 CiviCRM
Caseproof
Joobi		 - 複数ベンダの製品で使用される Open Flash Chart の open-flash-chart.swf におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1636 2014-03-14 13:48 2013-06-10 Show GitHub Exploit DB Packet Storm
221343 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR におけるメモリ二重解放の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-0502 2014-03-13 18:24 2014-02-20 Show GitHub Exploit DB Packet Storm
221344 7.8 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR における ASLR 保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0499 2014-03-13 18:23 2014-02-20 Show GitHub Exploit DB Packet Storm
221345 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-0498 2014-03-13 18:19 2014-02-20 Show GitHub Exploit DB Packet Storm
221346 3.5 注意 MySQL AB
オラクル		 - Oracle MySQL の MySQL Server における Optimizer に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0437 2014-03-13 18:18 2014-01-14 Show GitHub Exploit DB Packet Storm
221347 10 危険 シスコシステムズ - Cisco Unified SIP Phone 3905 のファームウェアにおける root アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0721 2014-03-13 17:45 2014-02-19 Show GitHub Exploit DB Packet Storm
221348 7.5 危険 Raoul Proenca - Gnew の users/login.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-5639 2014-03-13 17:45 2013-10-2 Show GitHub Exploit DB Packet Storm
221349 7.8 危険 シスコシステムズ - Cisco IPS ソフトウェアのコントロールプレーンのアクセスリストの実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0719 2014-03-13 17:42 2014-02-19 Show GitHub Exploit DB Packet Storm
221350 4.4 警告 Novell
Logilab.org		 - logilab-common の shellutils の Execute クラスにおける脆弱性 CWE-noinfo
情報不足 		CVE-2014-1839 2014-03-13 16:43 2014-02-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
101 5.5 MEDIUM
Local 		samsung android Improper handling of insufficient privileges in SecTelephonyProvider prior to SMR Jun-2026 Release 1 allows local attackers to access privileged files. New NVD-CWE-Other
CVE-2026-21017 2026-06-6 11:01 2026-06-5 Show GitHub Exploit DB Packet Storm
102 5.5 MEDIUM
Local 		samsung android Incorrect privilege assignment in Telephony prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information. New NVD-CWE-Other
CVE-2026-21025 2026-06-6 11:01 2026-06-5 Show GitHub Exploit DB Packet Storm
103 5.5 MEDIUM
Local 		samsung android Improper export of android application components in SpriteWallpaper prior to SMR Jun-2026 Release 1 allows local attackers to access to sensitive information. New NVD-CWE-Other
CVE-2026-21026 2026-06-6 11:00 2026-06-5 Show GitHub Exploit DB Packet Storm
104 3.3 LOW
Local 		samsung android Improper export of android application components in ImsSettings prior to SMR Jun-2026 Release 1 allows local attackers to trigger logging function. New NVD-CWE-Other
CVE-2026-21027 2026-06-6 11:00 2026-06-5 Show GitHub Exploit DB Packet Storm
105 5.5 MEDIUM
Local 		samsung android Improper access control in AuditLogService prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information. New NVD-CWE-noinfo
CVE-2026-21028 2026-06-6 11:00 2026-06-5 Show GitHub Exploit DB Packet Storm
106 7.8 HIGH
Local 		samsung android Improper export of android application components in Galaxy Editing Service prior to SMR Jun-2026 Release 1 allows local attacker to execute privileged operations. New NVD-CWE-Other
CVE-2026-21029 2026-06-6 11:00 2026-06-5 Show GitHub Exploit DB Packet Storm
107 7.8 HIGH
Local 		samsung android Improper access control in MediaTek Audio HAL prior to SMR Jun-2026 Release 1 allows local attackers to trigger privileged functions. New NVD-CWE-noinfo
CVE-2026-21030 2026-06-6 11:00 2026-06-5 Show GitHub Exploit DB Packet Storm
108 7.8 HIGH
Local 		samsung android Improper authorization in AppBlock prior to SMR Jun-2026 Release 1 allows local attacker to launch arbitrary activity. User interaction is required for triggering this vulnerability. New CWE-863
 Incorrect Authorization 		CVE-2026-21031 2026-06-6 10:59 2026-06-5 Show GitHub Exploit DB Packet Storm
109 6.5 MEDIUM
Network 		google chrome Inappropriate implementation in Signin in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity:… New CWE-284
Improper Access Control 		CVE-2026-11204 2026-06-6 10:59 2026-06-5 Show GitHub Exploit DB Packet Storm
110 6.5 MEDIUM
Network 		google chrome Insufficient policy enforcement in ServiceWorker in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medi… New CWE-693
 Protection Mechanism Failure 		CVE-2026-11206 2026-06-6 10:59 2026-06-5 Show GitHub Exploit DB Packet Storm