Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225961	5.8	警告	Puppet	-	Puppet Enterprise のパスワードリセットページにおけるユーザパスワードを変更される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-4962	2013-10-23 10:36	2013-08-15	Show	GitHub Exploit DB Packet Storm

225962	4	警告	株式会社アイ・オー・データ機器	-	HDL-A および HDL2-A シリーズにおけるセッション管理に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4712	2013-10-23 09:56	2013-10-18	Show	GitHub Exploit DB Packet Storm

225963	7.5	危険	vBulletin Solutions, Inc.	-	vBulletin の install/upgrade.php スクリプトにおける管理者アカウントを作成される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6129	2013-10-22 19:38	2013-08-27	Show	GitHub Exploit DB Packet Storm

225964	8.5	危険	D-Link Systems, Inc.	-	D-Link DIR-100 ルータ上で稼働する /bin/webs の RuntimeDiagnosticPing 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-6027	2013-10-22 19:38	2013-10-17	Show	GitHub Exploit DB Packet Storm

225965	10	危険	プラネックスコミュニケーションズ株式会社 Alpha Networks D-Link Systems, Inc.	-	D-Link 製ルータなどの製品上で稼働する Web インターフェースにおける認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6026	2013-10-22 19:37	2013-10-17	Show	GitHub Exploit DB Packet Storm

225966	4.3	警告	ウォッチガード・テクノロジー	-	WatchGuard System Manager および Extensible Threat Management Fireware におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5702	2013-10-22 19:37	2013-10-17	Show	GitHub Exploit DB Packet Storm

225967	6.8	警告	VMware	-	VMware vCenter Server の vSphere Web Client サーバにおける Web セッションをハイジャックされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-5971	2013-10-22 19:34	2013-10-17	Show	GitHub Exploit DB Packet Storm

225968	7.1	危険	VMware	-	VMware ESXi および ESX の hostd-vmdb におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-5970	2013-10-22 19:34	2013-10-17	Show	GitHub Exploit DB Packet Storm

225969	8.5	危険	シスコシステムズ	-	Cisco Adaptive Security Appliance ソフトウェアにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-5542	2013-10-22 19:33	2013-10-9	Show	GitHub Exploit DB Packet Storm

225970	5.8	警告	シスコシステムズ	-	Cisco Unified Computing System のファブリックインターコネクトコンポーネントにおける重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2012-4115	2013-10-22 19:32	2013-10-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3281	7.8	HIGH Local	-	-	A high security vulnerability affecting Security Center main server installations has been identified. It could allow an attacker with local OS privileges to the main server to access the Server Admi…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2026-40619	2026-06-3 02:35	2026-06-3	Show	GitHub Exploit DB Packet Storm

3282	3.1	LOW Network	-	-	HCL iReflection Third party vulnerable and outdated components issue was detected in the web application	-	CVE-2024-42206	2026-06-3 02:35	2026-06-3	Show	GitHub Exploit DB Packet Storm

3283	6.3	MEDIUM Network	-	-	CZ.NIC BIRD Internet Routing Daemon through 2.19.0 contains a stack-based buffer overflow in the BGP AS_PATH mask matching implementation in nest/a-path.c. The as_path_match() function uses a fixed-s…	CWE-121 Stack-based Buffer Overflow	CVE-2026-49943	2026-06-3 02:35	2026-06-3	Show	GitHub Exploit DB Packet Storm

3284	7.4	HIGH Adjacent	linuxfoundation	volcano	Volcano is a Kubernetes-native batch scheduling system. Prior to v1.14.2, v1.13.3, and v1.12.4, the Volcano webhook server does not enforce a size limit on incoming HTTP request bodies. Any in-cluste…	CWE-400 CWE-770 Uncontrolled Resource Consumption Allocation of Resources Without Limits or Throttling	CVE-2026-44247	2026-06-3 02:25	2026-05-28	Show	GitHub Exploit DB Packet Storm

3285	7.3	HIGH Network	-	-	A vulnerability was determined in DedeCMS 5.7.88. The affected element is the function TrimMsg of the file /plus/feedback.php of the component Feedback Handler. Executing a manipulation of the argume…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-10606	2026-06-3 02:19	2026-06-3	Show	GitHub Exploit DB Packet Storm

3286	9.8	CRITICAL Network	-	-	Spacelabs Healthcare Sentinel versions 10.5.x and higher and 11.x.x before 11.6.0 contain an unauthenticated remote code execution vulnerability through a deprecated .NET Remoting HTTP channel expose…	CWE-306 Missing Authentication for Critical Function	CVE-2026-0611	2026-06-3 02:19	2026-06-3	Show	GitHub Exploit DB Packet Storm

3287	-		-	-	Improper access control in the PAM account discovery feature in Devolutions Server 2026.1.19 and earlier allows an authenticated user without administrative privileges to delete network discovery sca…	-	CVE-2026-9522	2026-06-3 02:19	2026-06-3	Show	GitHub Exploit DB Packet Storm

3288	-		-	-	Improper access control in the permission validation component in Devolutions Server 2026.1.19 and earlier allows an authenticated user with entry edit privileges to modify asset information without …	-	CVE-2026-9590	2026-06-3 02:19	2026-06-3	Show	GitHub Exploit DB Packet Storm

3289	-		-	-	NamelessMC is website software for Minecraft servers. In version 2.2.4, `modules/Forum/classes/ForumPostReactionContext.php` only verifies that the caller can view the forum, but it does not re-enfor…	CWE-862 Missing Authorization	CVE-2026-35443	2026-06-3 02:18	2026-06-3	Show	GitHub Exploit DB Packet Storm

3290	-		-	-	NamelessMC is website software for Minecraft servers. In version 2.2.4, the profile page (modules/Core/pages/profile.php) processes wall post submissions and replies before verifying whether the view…	CWE-201 Insertion of Sensitive Information Into Sent Data	CVE-2026-35447	2026-06-3 02:18	2026-06-3	Show	GitHub Exploit DB Packet Storm