Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254891	6.8	警告	フェンリル株式会社	-	ActiveGeckoBrowser における複数の脆弱性	CWE-Other その他	CVE-2010-2420	2010-06-14 12:01	2010-06-14	Show	GitHub Exploit DB Packet Storm

254892	6.8	警告	サン・マイクロシステムズ GNU Project ターボリナックスサイバートラスト株式会社レッドハット	-	GNU tar および GNU cpio の rmt_read__ 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0624	2010-06-11 18:45	2010-03-15	Show	GitHub Exploit DB Packet Storm

254893	3.5	注意	PostgreSQL.org サイバートラスト株式会社レッドハット	-	PostgreSQL における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0733	2010-06-9 16:54	2010-03-19	Show	GitHub Exploit DB Packet Storm

254894	6.5	警告	PostgreSQL.org サイバートラスト株式会社レッドハット	-	PostgreSQL の bitsubstr 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-0442	2010-06-9 16:54	2010-02-2	Show	GitHub Exploit DB Packet Storm

254895	6.8	警告	アップル	-	Java の window drawing 実装における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-0539	2010-06-7 17:58	2010-05-18	Show	GitHub Exploit DB Packet Storm

254896	6.8	警告	アップル	-	Apple Mac OS X 上で稼働する Java における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0538	2010-06-7 17:58	2010-05-18	Show	GitHub Exploit DB Packet Storm

254897	6.5	警告	PostgreSQL.org サイバートラスト株式会社ターボリナックスサン・マイクロシステムズレッドハット	-	PostgreSQL におけるインデックスの処理に関する権限を取得される脆弱性	CWE-Other その他	CVE-2009-4136	2010-06-7 16:48	2009-12-15	Show	GitHub Exploit DB Packet Storm

254898	-	-	コンソナ	-	Consona (旧 SupportSoft) Intelligent Assistance Suite (IAS) に複数の脆弱性	-	-	2010-06-4 17:58	2010-05-13	Show	GitHub Exploit DB Packet Storm

254899	7.5	危険	アップル VMware サン・マイクロシステムズヒューレット・パッカードレッドハット	-	JDK および JRE の Java プラグインにおける古い JRE バージョンで動作可能な脆弱性	CWE-DesignError	CVE-2009-1105	2010-06-4 15:54	2009-03-24	Show	GitHub Exploit DB Packet Storm

254900	10	危険	日立	-	Collaboration - Common Utility におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	-	2010-06-3 15:19	2010-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2611	9.8	CRITICAL Network	synway	smg_gateway_management_software	Synway SMG Gateway Management Software contains an OS command injection vulnerability in the RADIUS configuration endpoint at /en/9-2radius.php where the radius_address POST parameter is split and in…	CWE-78 OS Command	CVE-2025-71284	2026-05-6 03:09	2026-05-1	Show	GitHub Exploit DB Packet Storm

2612	8.0	HIGH Network	jenkins	html_publisher	Jenkins HTML Publisher Plugin 427 and earlier does not escape job name and URL in the legacy wrapper file, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with…	CWE-79 Cross-site Scripting	CVE-2026-42524	2026-05-6 03:06	2026-04-29	Show	GitHub Exploit DB Packet Storm

2613	9.0	CRITICAL Network	jenkins	github	Jenkins GitHub Plugin 1.46.0 and earlier improperly processes the current job URL as part of JavaScript implementing validation of the feature "GitHub hook trigger for GITScm polling", resulting in a…	CWE-79 Cross-site Scripting	CVE-2026-42523	2026-05-6 03:06	2026-04-29	Show	GitHub Exploit DB Packet Storm

2614	5.9	MEDIUM Network	elastic	elastic_package_registry	Improper Verification of Cryptographic Signature (CWE-347) in Elastic Package Registry could allow an attacker positioned to intercept network traffic, or to otherwise influence the contents served t…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2026-33467	2026-05-6 02:55	2026-04-29	Show	GitHub Exploit DB Packet Storm

2615	4.4	MEDIUM Local	oracle	linux	An unprivileged attacker can craft a user-space process with a malicious ELF binary containing an out-of-range sh_link field. When root-level dtrace attaches to -- or instruments -- that process (via…	CWE-125 Out-of-bounds Read	CVE-2026-35233	2026-05-6 02:46	2026-05-2	Show	GitHub Exploit DB Packet Storm

2616	5.5	MEDIUM Local	oracle	linux	An unprivileged attacker can reliably trigger a crash of the dtrace process with a malicious ELF binary due to an integer Divide-by-Zero in Pbuild_file_symtab()	CWE-369 Divide By Zero	CVE-2026-21996	2026-05-6 02:45	2026-05-2	Show	GitHub Exploit DB Packet Storm

2617	7.3	HIGH Network	gnu	glibc	The deprecated functions ns_printrrf, ns_printrr and fp_nquery in the GNU C Library version 2.2 and newer fail to enforce the caller-supplied buffer length, and can result in an out-of-bounds write w…	CWE-787 Out-of-bounds Write	CVE-2026-5435	2026-05-6 02:38	2026-04-28	Show	GitHub Exploit DB Packet Storm

2618	7.8	HIGH Local	kde	kcoreaddons	In KDE KCoreAddons before 6.25, KShell::quoteArgs is intended to safely quote arguments so that they can be passed to a shell command. This parsing does not adequately handle metacharacters, leading …	CWE-150 Improper Neutralization of Escape, Meta, or Control Sequences	CVE-2026-41526	2026-05-6 02:25	2026-04-28	Show	GitHub Exploit DB Packet Storm

2619	2.6	LOW Adjacent	-	-	A vulnerability was found in chatchat-space Langchain-Chatchat up to 0.3.1.3. The affected element is the function _get_file_id of the file libs/chatchat-server/chatchat/server/api_server/openai_rout…	CWE-310 CWE-330 Cryptographic Issues Use of Insufficiently Random Values	CVE-2026-7847	2026-05-6 02:17	2026-05-6	Show	GitHub Exploit DB Packet Storm

2620	5.9	MEDIUM Network	-	-	A flaw was found in Open vSwitch. When Open vSwitch is configured with a conntrack flow using FTP helpers over the userspace datapath, a remote attacker can send a specially crafted FTP stream with a…	CWE-120 Classic Buffer Overflow	CVE-2026-34956	2026-05-6 02:17	2026-05-6	Show	GitHub Exploit DB Packet Storm