Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242931 9.3 危険 コンソナ - Consona Live Assistance の SdcWebSecureBase インターフェースにおける ActiveX 実行上で制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1912 2012-06-26 16:19 2010-05-12 Show GitHub Exploit DB Packet Storm
242932 9.3 危険 コンソナ - Consona Live Assistance の SdcWebSecureBase インターフェースの site-locking 実装における任意のコードを実行される脆弱性 CWE-310
暗号の問題 		CVE-2010-1911 2012-06-26 16:19 2010-04-16 Show GitHub Exploit DB Packet Storm
242933 5.1 警告 コンソナ - Consona Live Assistance の Forgot Password 実装における空白の Hint 質問および空白の Hint 答えを持つアカウントのパスワードをリセットされる脆弱性 CWE-287
不適切な認証 		CVE-2010-1910 2012-06-26 16:19 2010-04-16 Show GitHub Exploit DB Packet Storm
242934 7.6 危険 コンソナ - Consona Live Assistance の tgctlcm.dll の SdcUser.TgConCtl ActiveX コントロールの RunCmd メソッドにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1909 2012-06-26 16:19 2010-05-12 Show GitHub Exploit DB Packet Storm
242935 9.3 危険 コンソナ - Consona Live Assistance の tgctlcm.dll の SdcUser.TgConCtl ActiveX コントロールにおける任意のプログラムを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1908 2012-06-26 16:19 2010-05-12 Show GitHub Exploit DB Packet Storm
242936 4.3 警告 コンソナ - Consona Live Assistance の SdcUser.TgConCtl ActiveX コントロールにおける特定のユーザディレクトリへのパス名を特定される脆弱性 CWE-200
情報漏えい 		CVE-2010-1907 2012-06-26 16:19 2010-05-12 Show GitHub Exploit DB Packet Storm
242937 7.2 危険 コンソナ - Consona Dynamic Agent などの tgsrv.exe における任意のコードを実行される脆弱性 CWE-310
暗号の問題 		CVE-2010-1906 2012-06-26 16:19 2010-04-16 Show GitHub Exploit DB Packet Storm
242938 4.3 警告 コンソナ - Consona Live Assistance および他の製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1905 2012-06-26 16:19 2010-04-16 Show GitHub Exploit DB Packet Storm
242939 6.8 警告 DELL EMC (旧 EMC Corporation) - EMC RKM C Client における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1904 2012-06-26 16:19 2010-06-7 Show GitHub Exploit DB Packet Storm
242940 7.5 危険 blueflyingfish.no-ip
Joomla!		 - Joomla! 用の OrgChart コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1878 2012-06-26 16:19 2010-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2701 9.8 CRITICAL
Network 		nvidia triton_inference_server NVIDIA Triton Inference Server contains a vulnerability in the DALI backend where an attacker could cause an out-of-bounds read. A successful exploit of this vulnerability might lead to code executio… CWE-125
Out-of-bounds Read 		CVE-2026-24213 2026-05-21 02:18 2026-05-20 Show GitHub Exploit DB Packet Storm
2702 8.8 HIGH
Network 		mozilla firefox
thunderbird 		Privilege escalation in the WebRTC: Audio/Video component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. CWE-269
 Improper Privilege Management 		CVE-2026-8972 2026-05-21 02:16 2026-05-19 Show GitHub Exploit DB Packet Storm
2703 8.8 HIGH
Network 		mozilla firefox
thunderbird 		Privilege escalation in the Enterprise Policies component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. CWE-269
 Improper Privilege Management 		CVE-2026-8957 2026-05-21 02:16 2026-05-19 Show GitHub Exploit DB Packet Storm
2704 8.8 HIGH
Network 		mozilla firefox
thunderbird 		Privilege escalation in the DOM: Workers component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11. CWE-269
 Improper Privilege Management 		CVE-2026-8955 2026-05-21 02:16 2026-05-19 Show GitHub Exploit DB Packet Storm
2705 8.8 HIGH
Network 		mozilla firefox
thunderbird 		Privilege escalation in the Application Update component. This vulnerability was fixed in Firefox 151 and Thunderbird 151. CWE-269
 Improper Privilege Management 		CVE-2026-8952 2026-05-21 02:16 2026-05-19 Show GitHub Exploit DB Packet Storm
2706 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid… - CVE-2026-8342 2026-05-21 02:16 2026-05-21 Show GitHub Exploit DB Packet Storm
2707 7.1 HIGH
Network 		- - A flaw was found in Keycloak. A low-privilege user, with knowledge of user credentials and client ID, can bypass a security control intended to disable the implicit flow in OpenID Connect (OIDC) clie… CWE-472
 External Control of Assumed-Immutable Web Parameter 		CVE-2026-7571 2026-05-21 02:16 2026-05-19 Show GitHub Exploit DB Packet Storm
2708 7.5 HIGH
Network 		- - A session fixation vulnerability was found in Keycloak's login-actions endpoints. An unauthenticated attacker could exploit this flaw by pre-creating an authentication session and tricking a victim i… CWE-290
 Authentication Bypass by Spoofing 		CVE-2026-7507 2026-05-21 02:16 2026-05-19 Show GitHub Exploit DB Packet Storm
2709 8.1 HIGH
Network 		- - A flaw was found in Keycloak's URL validation logic during redirect operations. By crafting a malicious request, an attacker could bypass validation to redirect users to unauthorized URLs, potentiall… CWE-601
Open Redirect 		CVE-2026-7504 2026-05-21 02:16 2026-05-19 Show GitHub Exploit DB Packet Storm
2710 7.5 HIGH
Network 		- - A flaw was found in Keycloak. A remote, unauthenticated attacker can send a specially crafted XML input to the Security Assertion Markup Language (SAML) endpoint. This malicious input can cause high … CWE-1286
 Improper Validation of Syntactic Correctness of Input 		CVE-2026-7307 2026-05-21 02:16 2026-05-19 Show GitHub Exploit DB Packet Storm