Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223641	3.8	注意	ヒューレット・パッカード	-	HP-UX 上で稼動する HP-UX Whitelisting におけるアクセス制限を回避される脆弱性	CWE-noinfo 情報不足	CVE-2013-6219	2014-04-23 16:41	2013-10-21	Show	GitHub Exploit DB Packet Storm

223642	10	危険	ヒューレット・パッカード	-	HP Network Node Manager i における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-6218	2014-04-23 16:40	2013-10-21	Show	GitHub Exploit DB Packet Storm

223643	8.5	危険	ヒューレット・パッカード	-	HP Universal Configuration Management Database の Integration Service における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-6215	2014-04-23 16:40	2013-10-21	Show	GitHub Exploit DB Packet Storm

223644	4	警告	ヒューレット・パッカード	-	HP Universal Configuration Management Database の Integration Service における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-6214	2014-04-23 16:39	2013-10-21	Show	GitHub Exploit DB Packet Storm

223645	10	危険	ヒューレット・パッカード	-	HP LoadRunner の Virtual User Generator における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-6213	2014-04-23 16:38	2013-10-30	Show	GitHub Exploit DB Packet Storm

223646	6.5	警告	ヒューレット・パッカード	-	HP Database and Middleware Automation における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-6212	2014-04-23 16:37	2013-10-21	Show	GitHub Exploit DB Packet Storm

223647	3.5	注意	Fedora Project Digium	-	Asterisk Open Source の PJSIP チャネルドライバの res/res_pjsip_exten_state.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2289	2014-04-23 15:53	2014-03-10	Show	GitHub Exploit DB Packet Storm

223648	4.3	警告	Fedora Project Digium	-	Asterisk Open Source の PJSIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2288	2014-04-23 15:52	2014-03-10	Show	GitHub Exploit DB Packet Storm

223649	3.5	注意	Fedora Project Digium	-	Asterisk Open Source および Certified Asterisk の channels/chan_sip.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2287	2014-04-23 15:52	2014-03-10	Show	GitHub Exploit DB Packet Storm

223650	7.5	危険	Fedora Project Digium	-	Asterisk Open Source および Certified Asterisk の main/http.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-2286	2014-04-23 15:52	2014-03-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2271	-		-	-	Authorization Bypass Through User-Controlled Key vulnerability in elixir-grpc grpc allows authenticated attackers to access or modify resources belonging to other users by smuggling a conflicting val…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-48599	2026-06-17 00:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

2272	-		-	-	Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc allow unauthenticated attackers to crash the BEAM node via atom table ex…	CWE-502 CWE-770 Deserialization of Untrusted Data Allocation of Resources Without Limits or Throttling	CVE-2026-48853	2026-06-17 00:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

2273	-		-	-	Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust the BEAM's memory and crash the server by streaming a large or slow-…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-48854	2026-06-17 00:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

2274	-		-	-	Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Message modules) allows a denial of service via a gzip decompression bom…	CWE-409 Improper Handling of Highly Compressed Data (Data Amplification)	CVE-2026-53430	2026-06-17 00:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

2275	8.8	HIGH Network	dlink	dcs-935l_firmware	A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation o…	CWE-119 CWE-134 Incorrect Access of Indexable Resource ('Range Error') Use of Externally-Controlled Format String	CVE-2026-12174	2026-06-17 00:27	2026-06-14	Show	GitHub Exploit DB Packet Storm

2276	6.6	MEDIUM Local	-	-	A flaw was found in GnuTLS. The `gnutls_pkcs11_token_set_pin` function, used for changing the Security Officer PIN, can lead to a use-after-free vulnerability. This occurs when an attacker attempts t…	CWE-825 Expired Pointer Dereference	CVE-2026-42014	2026-06-17 00:26	2026-06-16	Show	GitHub Exploit DB Packet Storm

2277	6.3	MEDIUM Local	-	-	Nokia SR Linux is vulnerable to local privilege escalation vulnerability due to unsanitized format validation. Successful exploitation of this vulnerability may allow an authenticated user to execute…	CWE-134 Use of Externally-Controlled Format String	CVE-2025-10262	2026-06-17 00:26	2026-06-16	Show	GitHub Exploit DB Packet Storm

2278	6.3	MEDIUM Local	-	-	Nokia SR Linux is vulnerable to a local privilege escalation vulnerability. Successful exploitation of this vulnerability may allow an authenticated user to execute arbitrary commands with superuser …	CWE-269 Improper Privilege Management	CVE-2025-9912	2026-06-17 00:26	2026-06-16	Show	GitHub Exploit DB Packet Storm

2279	-		-	-	A denial-of-service vulnerability exists in the WebSocket API due to insufficient validation and handling of JSON-based requests. A low-privileged authenticated attacker can send a specially crafted …	CWE-1287 Improper Validation of Specified Type of Input	CVE-2026-10825	2026-06-17 00:26	2026-06-16	Show	GitHub Exploit DB Packet Storm

2280	-		-	-	A format string vulnerability has been found in the "alias" parameter of the Serial Param configuration page in the NPort W2150A-W4/W2250A-W4 Series version 1.5 and prior. This vulnerability stems fr…	CWE-134 Use of Externally-Controlled Format String	CVE-2026-10828	2026-06-17 00:26	2026-06-16	Show	GitHub Exploit DB Packet Storm