Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251781 4.3 警告 IBM - IBM FileNet P8AE の Workplace コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-5000 2012-03-27 18:42 2010-09-20 Show GitHub Exploit DB Packet Storm
251782 4.3 警告 IBM - IBM FileNet P8AE の Workplace コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4999 2012-03-27 18:42 2010-09-20 Show GitHub Exploit DB Packet Storm
251783 2.6 注意 IBM - IBM FileNet P8AE の Workplace コンポーネントにおけるアクセス制限を回避する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4998 2012-03-27 18:42 2010-09-20 Show GitHub Exploit DB Packet Storm
251784 7.2 危険 GNOME Project - gnome-power-manager における無人のラップトップにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4997 2012-03-27 18:42 2010-09-7 Show GitHub Exploit DB Packet Storm
251785 6.8 警告 TWiki - TWiki におけるクロスサイトリクエストフォージェリ脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-4898 2012-03-27 18:42 2010-09-7 Show GitHub Exploit DB Packet Storm
251786 4.7 警告 Linux - Linux kernel の tty_fasync 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2009-4895 2012-03-27 18:42 2010-09-8 Show GitHub Exploit DB Packet Storm
251787 4 警告 g.rodola - pyftpdlib の on_dtp_close 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-5013 2012-03-27 18:42 2009-07-29 Show GitHub Exploit DB Packet Storm
251788 4 警告 g.rodola - pyftpdlib の ftpserver.py におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-5012 2012-03-27 18:42 2009-04-20 Show GitHub Exploit DB Packet Storm
251789 4.3 警告 g.rodola - pyftpdlib の FTPHandler クラスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2009-5011 2012-03-27 18:42 2009-02-27 Show GitHub Exploit DB Packet Storm
251790 6.8 警告 シマンテック - Symantec Altiris Deployment Solution などの製品で使用される Altiris eXpress NS SC Download ActiveX コントロールにおける任意のファイルをダウンロードされる脆弱性 CWE-DesignError
CVE-2009-3028 2012-03-27 18:42 2009-09-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
101 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 contains a reachable assertion in e2ap_create_pdu() triggered when ASN.1 PER decoding fails. A remote unauthenticated attacker can send any non-PER byte sequence (e.g., a single 0x00 b… New CWE-617
 Reachable Assertion 		CVE-2026-37229 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
102 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 crashes when the near-RT RIC receives a RIC_INDICATION message with a ran_func_id that does not exist in its registry. The lookup returns NULL, triggering assert() in Debug builds (SIG… New CWE-476
 NULL Pointer Dereference 		CVE-2026-37230 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
103 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 uses a uint16_t counter for xapp_id assignment but stores the value in uint32_t message fields. After 65,530+ E42_SETUP_REQUESTs, the 16-bit counter wraps around and produces duplicate… New CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-37231 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
104 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 contains an authorization bypass in the iApp's xApp isolation mechanism. The equality function eq_xapp_ric_gen_id() in src/ric/iApp/xapp_ric_id.c compares m0->xapp_id against itself (m… New CWE-617
 Reachable Assertion 		CVE-2026-37233 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
105 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 trusts the xapp_id field from E42 message payloads without binding it to the sender's SCTP association. The validation function valid_xapp_id() only checks that the value is within the… New CWE-284
Improper Access Control 		CVE-2026-37235 2026-06-4 02:15 2026-06-2 Show GitHub Exploit DB Packet Storm
106 6.5 MEDIUM
Network 		nextcloud nextcloud_server Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 31.0.0 to before 31.0.14, and 32.0.0 to before 32.0.4, if {lang} is used in the template directory config… New CWE-22
Path Traversal 		CVE-2026-45279 2026-06-4 02:15 2026-06-2 Show GitHub Exploit DB Packet Storm
107 8.1 HIGH
Network 		nextcloud nextcloud_server Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, with the knowledge of other users’ principal URL an… New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-45281 2026-06-4 02:11 2026-06-2 Show GitHub Exploit DB Packet Storm
108 8.1 HIGH
Network 		jupyter jupyter_server A path traversal vulnerability exists in jupyter-server version 2.17.0 due to an incorrect root directory boundary check in the _get_os_path() function within jupyter_server/services/contents/fileio.… New CWE-23
 Relative Path Traversal 		CVE-2026-5422 2026-06-4 02:09 2026-06-2 Show GitHub Exploit DB Packet Storm
109 6.5 MEDIUM
Network 		nextcloud nextcloud_server Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, an authenticated attacker can access attachments of… New CWE-284
NVD-CWE-noinfo
Improper Access Control 		CVE-2026-45282 2026-06-4 02:09 2026-06-2 Show GitHub Exploit DB Packet Storm
110 7.5 HIGH
Network 		prefect prefect In version 3.6.19 of prefecthq/prefect, an authentication bypass vulnerability exists due to the improper handling of URL path exemptions for health check probes. Specifically, the authentication mid… New CWE-863
 Incorrect Authorization 		CVE-2026-3514 2026-06-4 02:08 2026-06-2 Show GitHub Exploit DB Packet Storm