Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
222661	6.8	警告	アップル	-	Apple iOS および Apple TV の ImageIO におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-1275	2014-03-17 16:10	2014-03-10	Show	GitHub Exploit DB Packet Storm

222662	2.1	注意	アップル	-	Apple iOS の FaceTime における重要な FaceTime 連絡先情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-1274	2014-03-17 16:10	2014-03-10	Show	GitHub Exploit DB Packet Storm

222663	5.8	警告	アップル	-	Apple iOS および Apple TV の dyld におけるコード署名の要件を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2014-1273	2014-03-17 16:10	2014-03-10	Show	GitHub Exploit DB Packet Storm

222664	6.3	警告	アップル	-	Apple iOS および Apple TV のクラッシュレポートの CrashHouseKeeping における任意のファイルのアクセス権を変更される脆弱性	CWE-59 リンク解釈の問題	CVE-2014-1272	2014-03-17 16:09	2014-03-10	Show	GitHub Exploit DB Packet Storm

222665	7.8	危険	アップル	-	Apple iOS および Apple TV の CoreCapture におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-1271	2014-03-17 16:09	2014-03-10	Show	GitHub Exploit DB Packet Storm

222666	5.8	警告	アップル	-	Apple iOS および Apple TV の構成プロファイルコンポーネントにおけるアクセス制限を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2014-1267	2014-03-17 16:08	2014-03-10	Show	GitHub Exploit DB Packet Storm

222667	8.8	危険	アップル	-	Apple iOS のバックアップにおけるリストア操作中にファイルを上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-5133	2014-03-17 16:08	2014-03-10	Show	GitHub Exploit DB Packet Storm

222668	6.8	警告	Schneider Electric	-	Schneider Electric StruxureWare SCADA Expert ClearSCADA の Kepware KepServerEX 4 コンポーネントの ServerMain.exe 内の PLC ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2014-0779	2014-03-17 15:38	2014-01-24	Show	GitHub Exploit DB Packet Storm

222669	5	警告	シスコシステムズ	-	Cisco Cloud Portal の Intelligent Automation for Cloud における平文データを取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-0694	2014-03-17 15:37	2014-03-12	Show	GitHub Exploit DB Packet Storm

222670	5.8	警告	Samba Project	-	Samba の smbcacls の smbcacls.c 内の owner_set 関数におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6442	2014-03-17 15:11	2013-11-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2431	6.5	MEDIUM Network	vmware	spring_cloud_function	Under infinite recursion in the routing layer, request-handling can cause OOM error. Affected Spring Products and Versions: Spring Cloud Function 3.2.x: versions prior to 3.2.16 Spring Cloud Functio…	CWE-674 Uncontrolled Recursion	CVE-2026-40989	2026-06-5 22:49	2026-06-2	Show	GitHub Exploit DB Packet Storm

2432	6.5	MEDIUM Network	vmware	spring_cloud_function	OOM error is possible while attempting to add infinite amount of functions to Function Registry. Affected Spring Products and Versions: Spring Cloud Function 3.2.x: versions prior to 3.2.16 Spring C…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-40990	2026-06-5 22:47	2026-06-2	Show	GitHub Exploit DB Packet Storm

2433	7.3	HIGH Local	aiohttp	aiohttp	AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.14.0, using ``CookieJar.load()`` with untrusted input may allow arbitrary code execution. Most appli…	CWE-502 Deserialization of Untrusted Data	CVE-2026-34993	2026-06-5 22:44	2026-06-3	Show	GitHub Exploit DB Packet Storm

2434	7.5	HIGH Network	aiohttp	aiohttp	AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.14.0, cookies set with the `cookies` parameter on requests are sent after following a cross-origin r…	CWE-346 Origin Validation Error	CVE-2026-47265	2026-06-5 22:39	2026-06-3	Show	GitHub Exploit DB Packet Storm

2435	7.8	HIGH Local	-	-	A use-after-free flaw was found in the X.Org X server and Xwayland in SyncChangeCounter(). A client that sets up multiple SyncCounters can trigger a use-after-free when destroying those counters via …	CWE-416 Use After Free	CVE-2026-50261	2026-06-5 22:27	2026-06-5	Show	GitHub Exploit DB Packet Storm

2436	5.5	MEDIUM Local	-	-	An out-of-bounds read flaw was found in the X.Org X server and Xwayland in __glXDisp_ChangeDrawableAttributes(). A wrong size validation check can read a client-controlled number of bytes, exceeding …	CWE-125 Out-of-bounds Read	CVE-2026-50262	2026-06-5 22:27	2026-06-5	Show	GitHub Exploit DB Packet Storm

2437	7.8	HIGH Local	-	-	An out-of-bounds write flaw was found in the X.Org X server and Xwayland in DRIGetBuffers/DRIGetBuffersWithFormat. A client that requests multiple DRI2BufferBackLeft attachments and one DRI2BufferFro…	CWE-787 Out-of-bounds Write	CVE-2026-50264	2026-06-5 22:27	2026-06-5	Show	GitHub Exploit DB Packet Storm

2438	3.3	LOW Local	-	-	A vulnerability was found in bytedance InfiniStore up to 0.2.33. The impacted element is the function purge_kv_map in the library /src/infinistore.h of the component KV Map Handler. Performing a mani…	CWE-404 CWE-407 Improper Resource Shutdown or Release Inefficient Algorithmic Complexity	CVE-2026-11312	2026-06-5 22:27	2026-06-5	Show	GitHub Exploit DB Packet Storm

2439	3.6	LOW Local	-	-	A vulnerability has been found in onnx onnx-mlir up to 0.5.0.0. Affected by this issue is the function generate_hash_key of the file src/Runtime/python/torch_onnxmlir/src/torch_onnxmlir/backend.py of…	CWE-327 CWE-328 Use of a Broken or Risky Cryptographic Algorithm Use of Weak Hash	CVE-2026-11329	2026-06-5 22:26	2026-06-5	Show	GitHub Exploit DB Packet Storm

2440	7.2	HIGH Network	-	-	A vulnerability has been found in Shibby Tomato 1.28.0000. This vulnerability affects the function start_6rd_tunnel of the file /sbin/rc of the component Web UI. Such manipulation of the argument ipv…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-10871	2026-06-5 22:26	2026-06-5	Show	GitHub Exploit DB Packet Storm