Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
226731 2.6 注意 Skype Technologies S.A. - Windows 用 Skype の URI ハンドラにおける任意のファイルをダウンロードされる脆弱性 CWE-94
コード・インジェクション
CVE-2006-2312 2013-12-26 15:44 2006-05-19 Show GitHub Exploit DB Packet Storm
226732 5 警告 New Atlanta Communications, LLC. - Windows 用 BlueDragon Server および Server JX におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-2310 2013-12-26 15:44 2006-06-26 Show GitHub Exploit DB Packet Storm
226733 3.6 注意 Avahi - Avahi におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-2288 2013-12-26 15:44 2006-05-10 Show GitHub Exploit DB Packet Storm
226734 5 警告 acftp - acFTP におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-2242 2013-12-26 15:44 2006-05-9 Show GitHub Exploit DB Packet Storm
226735 2.1 注意 bitrock
ProcessOne
- Process-one ejabberd を含む製品で使用されるサードパーティ製インストーラ生成ツールにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-2221 2013-12-26 15:44 2006-05-5 Show GitHub Exploit DB Packet Storm
226736 5 警告 321soft - 321soft PhP-Gallery の index.php における絶対パストラバーサルの脆弱性 - CVE-2006-2211 2013-12-26 15:44 2006-05-5 Show GitHub Exploit DB Packet Storm
226737 5 警告 VWar - Virtual War の admin.php における重要な情報を取得される脆弱性 - CVE-2006-2091 2013-12-26 15:44 2006-04-29 Show GitHub Exploit DB Packet Storm
226738 5 警告 Invision Power Services, Inc - Invision Power Board の action_public/search.php における任意の PHP コードを実行される脆弱性 - CVE-2006-2059 2013-12-26 15:44 2006-04-26 Show GitHub Exploit DB Packet Storm
226739 5 警告 avant force - Avant Browser におけるコマンドライン引数を変更される脆弱性 - CVE-2006-2058 2013-12-26 15:44 2006-04-26 Show GitHub Exploit DB Packet Storm
226740 7.1 危険 WinSCP - WinSCP における任意のファイルをアップロードされる脆弱性 CWE-94
コード・インジェクション
CVE-2006-3015 2013-12-26 15:44 2006-06-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3651 5.5 MEDIUM
Local
microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w…
Out-of-bounds read in Windows DHCP Server allows an authorized attacker to disclose information locally. CWE-125
Out-of-bounds Read
CVE-2026-45634 2026-06-13 02:46 2026-06-10 Show GitHub Exploit DB Packet Storm
3652 8.8 HIGH
Network
microsoft windows_app
windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_s…
Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network. CWE-122
Heap-based Buffer Overflow
CVE-2026-47289 2026-06-13 02:39 2026-06-10 Show GitHub Exploit DB Packet Storm
3653 8.8 HIGH
Network
microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w…
Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network. CWE-416
CWE-787
 Use After Free
 Out-of-bounds Write
CVE-2026-47653 2026-06-13 02:32 2026-06-10 Show GitHub Exploit DB Packet Storm
3654 7.5 HIGH
Network
microsoft windows_server_2016
windows_server_2019
windows_server_2022
windows_server_2025
Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network. CWE-416
CWE-787
 Use After Free
 Out-of-bounds Write
CVE-2026-47654 2026-06-13 02:27 2026-06-10 Show GitHub Exploit DB Packet Storm
3655 8.3 HIGH
Network
google chrome Use after free in WebMIDI in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted … CWE-416
 Use After Free
CVE-2026-12011 2026-06-13 02:20 2026-06-12 Show GitHub Exploit DB Packet Storm
3656 7.5 HIGH
Network
microsoft remote_desktop_client
windows_app
windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows…
Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code over a network. CWE-416
CWE-787
 Use After Free
 Out-of-bounds Write
CVE-2026-44801 2026-06-13 02:20 2026-06-10 Show GitHub Exploit DB Packet Storm
3657 8.3 HIGH
Network
google chrome Heap buffer overflow in GPU in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafte… CWE-122
Heap-based Buffer Overflow
CVE-2026-12010 2026-06-13 02:19 2026-06-12 Show GitHub Exploit DB Packet Storm
3658 8.3 HIGH
Network
google chrome Insufficient validation of untrusted input in Accessibility in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a… CWE-20
NVD-CWE-noinfo
 Improper Input Validation 
CVE-2026-12009 2026-06-13 02:18 2026-06-12 Show GitHub Exploit DB Packet Storm
3659 9.1 CRITICAL
Network
- - Aqara Home Android (com.lumiunited.aqarahome) 6.0.0 (and white-label clients embedding the same liblumidevsdk.so) uses hard-coded cryptographic keys, which is an instance of "CWE-321: Use of Hard-cod… CWE-321
 Use of Hard-coded Cryptographic Key
CVE-2026-50091 2026-06-13 02:16 2026-06-13 Show GitHub Exploit DB Packet Storm
3660 9.3 CRITICAL
Network
- - The Aqara Cloud OAuth Authorization Endpoint (open-cn.aqara.com/oauth/authorize) is vulnerable to a redirect bypass due to lax controls on domain matching, which is an instance of "CWE-1289: Improper… CWE-1289
 Improper Validation of Unsafe Equivalence in Input
CVE-2026-50090 2026-06-13 02:16 2026-06-13 Show GitHub Exploit DB Packet Storm