Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 12:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2271	8	重要 Adjacent	IBM	IBM HTTP Server	IBMのIBM HTTP Serverにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-8834	2026-05-28 14:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

2272	7.3	重要 Adjacent	IBM	IBM HTTP Server	IBMのIBM HTTP Serverにおける信頼できないポインタデリファレンスに関する脆弱性	CWE-822 信頼性のないポインタデリファレンス	CVE-2026-8835	2026-05-28 14:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

2273	7.5	重要 Network	IBM	IBM HTTP Server	IBMのIBM HTTP ServerにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-8850	2026-05-28 14:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

2274	7.5	重要 Network	IBM	IBM HTTP Server	IBMのIBM HTTP Serverにおける到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-8852	2026-05-28 14:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

2275	7.5	重要 Network	IBM	IBM HTTP Server	IBMのIBM HTTP Serverにおける期限切れのポインタデリファレンスに関する脆弱性	CWE-825 期限切れのポインタデリファレンス	CVE-2026-8854	2026-05-28 14:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

2276	9.8	緊急 Network	IBM	IBM HTTP Server	IBMのIBM HTTP Serverにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-8855	2026-05-28 14:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

2277	9.1	緊急 Network	IBM	IBM HTTP Server	IBMのIBM HTTP Serverにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-8856	2026-05-28 14:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

2278	8.8	重要 Network	Ivanti	secure access client	Ivantiのsecure access clientにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-8992	2026-05-28 14:35	2026-05-22	Show	GitHub Exploit DB Packet Storm

2279	7.6	重要 Network	Devolutions	Devolutions Server	DevolutionsのDevolutions Serverにおける根本の脆弱性による認証回避の脆弱性	CWE-305 根本の脆弱性による認証回避	CVE-2026-9047	2026-05-28 14:35	2026-05-22	Show	GitHub Exploit DB Packet Storm

2280	9.8	緊急 Network	Drupal	Drupal	DrupalにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-9082	2026-05-28 14:35	2026-05-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
101	7.8	HIGH Local	-	-	Heap buffer out-of-bounds write vulnerability due to integer overflow in Avira Antivirus engine when scanning a malformed MS-DOS executable file may allow Local Execution of Code or Denial-of-Service… New	CWE-190 CWE-787 Integer Overflow or Wraparound Out-of-bounds Write	CVE-2025-14098	2026-06-13 08:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

102	-		-	-	An authorization flaw in MISP’s object add/edit handling allowed an authenticated user with object editing permissions to assign a MISP object, or attributes contained within an object, to a sharing … New	CWE-863 Incorrect Authorization	CVE-2026-54398	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

103	-		-	-	Rejected reason: CVE REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-53826. Reason: This candidate is a duplicate of CVE-2025-53826. Notes: All CVE users should reference CVE-2025… New	-	CVE-2026-54095	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

104	7.5	HIGH Network	-	-	Capgo before 12.128.2 contains a denial of service vulnerability allowing attackers to register accounts using arbitrary email addresses without verification, then initiate deletion to lock emails in… New	CWE-306 Missing Authentication for Critical Function	CVE-2026-53868	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

105	4.3	MEDIUM Network	-	-	Capgo before 12.128.2 fails to delete previously uploaded profile images from backend storage when users replace or remove them. Attackers can access orphaned image files through previously generated… New	CWE-459 Incomplete Cleanup	CVE-2026-53867	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

106	6.5	MEDIUM Network	-	-	OpenClaw before 2026.5.7 contains a hostname validation vulnerability in retry endpoint checks that allows matching hostname prefixes instead of exact hostnames. Attackers can exploit this by craftin… New	CWE-1023 Incomplete Comparison with Missing Factors	CVE-2026-53839	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

107	9.8	CRITICAL Network	-	-	OpenClaw before 2026.5.27 contains a state mutation vulnerability in node pairing reconnection that allows paired nodes to confuse approval scope decisions. Attackers can exploit reconnection logic t… New	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-53838	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

108	3.7	LOW Network	-	-	OpenClaw before 2026.5.6 contains an improper access control vulnerability in Mattermost event handlers that fails to validate channel type metadata. Attackers can bypass intended DM policy decisions… New	CWE-636 Not Failing Securely ('Failing Open')	CVE-2026-53837	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

109	8.8	HIGH Network	-	-	OpenClaw before 2026.5.12 contains an allowlist bypass vulnerability in PowerShell encoded-command handling that allows attackers to execute encoded commands using abbreviated flag aliases not recogn… New	CWE-184 Incomplete Blacklist	CVE-2026-53836	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm

110	4.3	MEDIUM Network	-	-	OpenClaw before 2026.5.6 contains a configuration enforcement bypass vulnerability in Feishu dynamic-agent bindings that allows authenticated senders to create or update bindings without honoring con… New	CWE-863 Incorrect Authorization	CVE-2026-53835	2026-06-13 07:16	2026-06-13	Show	GitHub Exploit DB Packet Storm