Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
221	8.8	重要 Network	MBS GmbH	Universal Gateway Firmware	MBS GmbHのUniversal Gateway Firmwareにおけるスタックベースのバッファオーバーフローの脆弱性 New	CWE-121 スタックオーバーフロー	CVE-2026-35083	2026-06-9 14:11	2026-06-3	Show	GitHub Exploit DB Packet Storm

222	8.8	重要 Network	MBS GmbH	Universal Gateway Firmware	MBS GmbHのUniversal Gateway Firmwareにおけるスタックベースのバッファオーバーフローの脆弱性 New	CWE-121 スタックオーバーフロー	CVE-2026-35084	2026-06-9 14:11	2026-06-3	Show	GitHub Exploit DB Packet Storm

223	8.8	重要 Network	MBS GmbH	Universal Gateway Firmware	MBS GmbHのUniversal Gateway Firmwareにおけるスタックベースのバッファオーバーフローの脆弱性 New	CWE-121 スタックオーバーフロー	CVE-2026-35085	2026-06-9 14:11	2026-06-3	Show	GitHub Exploit DB Packet Storm

224	7.5	重要 Network	レッドハット GNU Project	Redhat Enterprise Linux For Power Little Endian Els Red Hat Enterprise Linux for IBM z Systems - Extended Updat…	GNU Project等の複数ベンダの製品におけるAPI への入力に対する未定義の動作に関する脆弱性 New	CWE-475 API への入力に対する未定義の動作	CVE-2026-42009	2026-06-9 14:11	2026-05-18	Show	GitHub Exploit DB Packet Storm

225	7.8	重要 Local	Thermalright	TR-VISION HOME	ThermalrightのTR-VISION HOMEにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 New	CWE-829 信頼性のない制御領域からの機能の組み込み	CVE-2026-4255	2026-06-9 14:11	2026-03-16	Show	GitHub Exploit DB Packet Storm

226	6.5	警告 Network	レッドハット	Red Hat OpenShift Container Platform OpenShift Router	レッドハットのRed Hat OpenShift Container Platform等の複数製品におけるサーバサイドのリクエストフォージェリの脆弱性 New	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42965	2026-06-9 14:11	2026-05-29	Show	GitHub Exploit DB Packet Storm

227	8.7	重要 Network	SUSE	Local Path Provisioner	SUSEのLocal Path Provisionerにおける権限管理に関する脆弱性 New	CWE-269 不適切な権限管理	CVE-2026-44543	2026-06-9 14:11	2026-05-28	Show	GitHub Exploit DB Packet Storm

228	9.6	緊急 Network	Guardrails AI	Guardrails AI	Guardrails AIにおける埋め込まれた悪意のあるコードに関する脆弱性 New	CWE-506 埋め込まれた悪意のあるコード	CVE-2026-45758	2026-06-9 14:11	2026-06-5	Show	GitHub Exploit DB Packet Storm

229	7.5	重要 Network	レッドハット	Red Hat OpenShift Container Platform OpenShift Router	レッドハットのRed Hat OpenShift Container Platform等の複数製品における認証に関する脆弱性 New	CWE-287 CWE-noinfo	CVE-2026-46579	2026-06-9 14:10	2026-05-29	Show	GitHub Exploit DB Packet Storm

230	5.3	警告 Network	Cosimo	Net::statsd	CosimoのNet::statsdにおけるCRLF インジェクションの脆弱性 New	CWE-93 CRLF インジェクション	CVE-2026-46719 CVE-2026-46720 CVE-2026-46739	2026-06-9 14:10	2026-06-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
357101	-	sebastian_dehne	pp_powerswitch	Unknown vulnerability in Parallel port powerSwitch (aka pp_powerSwitch) 0.1 does not properly enforce access controls, which allows local users to access arbitrary ports.	NVD-CWE-Other	CVE-2002-1972	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

357102	-	sharp	zaurus	The FTP service in Zaurus PDAs SL-5000D and SL-5500 does not require authentication, which allows remote attackers to access the file system as root.	NVD-CWE-Other	CVE-2002-1974	2008-09-6 05:31	2002-12-31	Show	GitHub Exploit DB Packet Storm

357103	-	qualcomm	eudora	Qualcomm Eudora 5.1.1, 5.2, and possibly other versions stores email attachments in a predictable location, which allows remote attackers to read arbitrary files via a link that loads an attachment w…	NVD-CWE-Other	CVE-2002-1210	2008-09-6 05:30	2002-11-29	Show	GitHub Exploit DB Packet Storm

357104	-	kde	kde	Buffer overflow in DSC 3.0 parser from GSview, as used in KGhostView in KDE 1.1 and KDE 3.0.3a, may allow attackers to cause a denial of service or execute arbitrary code via a modified .ps (PostScri…	NVD-CWE-Other	CVE-2002-1223	2008-09-6 05:30	2002-10-28	Show	GitHub Exploit DB Packet Storm

357105	-	kde	kde	Directory traversal vulnerability in kpf for KDE 3.0.1 through KDE 3.0.3a allows remote attackers to read arbitrary files as the kpf user via a URL with a modified icon parameter.	NVD-CWE-Other	CVE-2002-1224	2008-09-6 05:30	2002-10-28	Show	GitHub Exploit DB Packet Storm

357106	-	pam	pam	PAM 0.76 treats a disabled password as if it were an empty (null) password, which allows local and remote attackers to gain privileges as disabled users.	NVD-CWE-Other	CVE-2002-1227	2008-09-6 05:30	2002-10-28	Show	GitHub Exploit DB Packet Storm

357107	-	log2mail	log2mail	Buffer overflow in log2mail before 0.2.5.1 allows remote attackers to execute arbitrary code via a long log message.	NVD-CWE-Other	CVE-2002-1251	2008-09-6 05:30	2002-11-12	Show	GitHub Exploit DB Packet Storm

357108	-	abuse	abuse	Abuse 2.00 and earlier allows local users to gain privileges via command line arguments that specify alternate Lisp scripts that run at escalated privileges, which can contain functions that execute …	NVD-CWE-Other	CVE-2002-1253	2008-09-6 05:30	2002-11-12	Show	GitHub Exploit DB Packet Storm

357109	-	apple	mac_os_x	Unknown vulnerability in NetInfo Manager application in Mac OS X 10.2.2 allows local users to access restricted parts of a filesystem.	NVD-CWE-Other	CVE-2002-1269	2008-09-6 05:30	2002-12-11	Show	GitHub Exploit DB Packet Storm

357110	-	squirrelmail	squirrelmail	An incomplete fix for a cross-site scripting (XSS) vulnerability in SquirrelMail 1.2.8 calls the strip_tags function on the PHP_SELF value but does not save the result back to that variable, leaving …	NVD-CWE-Other	CVE-2002-1276	2008-09-6 05:30	2002-11-29	Show	GitHub Exploit DB Packet Storm