Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
222801 6.8 警告 Google - Google Chrome で使用される Blink の core/xml/XSLStyleSheetLibxslt.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-2911 2014-01-9 18:08 2013-10-1 Show GitHub Exploit DB Packet Storm
222802 10 危険 Google - Google Chrome における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-2931 2014-01-9 18:07 2013-11-12 Show GitHub Exploit DB Packet Storm
222803 6.8 警告 Google - Google Chrome で使用される Blink の core/xml/XMLHttpRequest.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-2925 2014-01-9 17:57 2013-10-15 Show GitHub Exploit DB Packet Storm
222804 7.8 危険 baramundi software AG - Baramundi Management Suite の OS デプロイメント機能における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-3624 2014-01-9 17:50 2013-10-1 Show GitHub Exploit DB Packet Storm
222805 9.3 危険 IBM - IBM Java SDK における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-5458 2014-01-9 17:36 2013-10-24 Show GitHub Exploit DB Packet Storm
222806 9.3 危険 IBM - IBM Java SDK における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-5456 2014-01-9 17:31 2013-10-24 Show GitHub Exploit DB Packet Storm
222807 8.5 危険 レッドハット - libvirt の virConnectDomainXMLToNative API 関数における domain:write 権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4401 2014-01-9 17:27 2013-11-4 Show GitHub Exploit DB Packet Storm
222808 1.9 注意 IBus Project
Novell		 - IBUS のデフォルト設定におけるユーザパスワードを取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-4509 2014-01-9 17:25 2013-08-29 Show GitHub Exploit DB Packet Storm
222809 5.9 警告 Ubuntu Developers - systemd の SetX11Keyboard 関数における Xorg X11 Server の設定ファイルを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4394 2014-01-9 17:10 2013-10-4 Show GitHub Exploit DB Packet Storm
222810 2.1 注意 Ubuntu Developers - systemd の journald におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-4393 2014-01-9 17:08 2013-10-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
491 3.3 LOW
Local 		nextcloud approval Nextcloud is an open source content collaboration platform. Prior to version 2.7.2, authenticated users can check if arbitrary files are associated with specific approval workflows where they can req… New CWE-200
NVD-CWE-noinfo
Information Exposure 		CVE-2026-45277 2026-06-4 02:36 2026-06-2 Show GitHub Exploit DB Packet Storm
492 6.1 MEDIUM
Network 		nextcloud user_oidc Nextcloud is an open source content collaboration platform. From version 6.1.0 to before version 8.2.2, an attacker can craft links that would redirect users to another website, when the victim uses … New CWE-601
Open Redirect 		CVE-2026-45278 2026-06-4 02:34 2026-06-2 Show GitHub Exploit DB Packet Storm
493 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 crashes when the iApp receives an E42_RIC_SUBSCRIPTION_REQUEST referencing a non-existent E2 Node. The lookup function returns NULL, which is enforced by assert() in Debug builds (SIGA… New CWE-476
 NULL Pointer Dereference 		CVE-2026-37226 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
494 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 contains a reachable assertion in e2ap_recv_sctp_msg() (src/lib/ep/e2ap_ep.c). The function allocates a fixed 32KB receive buffer and enforces assert(rc < len) on the sctp_recvmsg() re… New CWE-617
 Reachable Assertion 		CVE-2026-37228 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
495 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 contains a reachable assertion in e2ap_create_pdu() triggered when ASN.1 PER decoding fails. A remote unauthenticated attacker can send any non-PER byte sequence (e.g., a single 0x00 b… New CWE-617
 Reachable Assertion 		CVE-2026-37229 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
496 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 crashes when the near-RT RIC receives a RIC_INDICATION message with a ran_func_id that does not exist in its registry. The lookup returns NULL, triggering assert() in Debug builds (SIG… New CWE-476
 NULL Pointer Dereference 		CVE-2026-37230 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
497 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 uses a uint16_t counter for xapp_id assignment but stores the value in uint32_t message fields. After 65,530+ E42_SETUP_REQUESTs, the 16-bit counter wraps around and produces duplicate… New CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-37231 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
498 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 contains an authorization bypass in the iApp's xApp isolation mechanism. The equality function eq_xapp_ric_gen_id() in src/ric/iApp/xapp_ric_id.c compares m0->xapp_id against itself (m… New CWE-617
 Reachable Assertion 		CVE-2026-37233 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
499 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 trusts the xapp_id field from E42 message payloads without binding it to the sender's SCTP association. The validation function valid_xapp_id() only checks that the value is within the… New CWE-284
Improper Access Control 		CVE-2026-37235 2026-06-4 02:15 2026-06-2 Show GitHub Exploit DB Packet Storm
500 6.5 MEDIUM
Network 		nextcloud nextcloud_server Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 31.0.0 to before 31.0.14, and 32.0.0 to before 32.0.4, if {lang} is used in the template directory config… New CWE-22
Path Traversal 		CVE-2026-45279 2026-06-4 02:15 2026-06-2 Show GitHub Exploit DB Packet Storm