Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259861 6.8 警告 アップル - Apple iOS の Telephony 内にある GSM 方式の通信管理の実装におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-3832 2010-12-20 14:39 2010-11-26 Show GitHub Exploit DB Packet Storm
259862 4.3 警告 アップル - Apple iOS の Photos における MobileMe アカウントのパスワードを読まれる脆弱性 CWE-200
情報漏えい
CVE-2010-3831 2010-12-20 14:32 2010-11-26 Show GitHub Exploit DB Packet Storm
259863 7.2 危険 アップル - Apple iOS の Networking における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-3830 2010-12-20 14:30 2010-11-26 Show GitHub Exploit DB Packet Storm
259864 4.3 警告 アップル - Apple iOS の iAd Content Display における電話をかけられる脆弱性 CWE-Other
その他
CVE-2010-3828 2010-12-20 14:17 2010-11-26 Show GitHub Exploit DB Packet Storm
259865 4.3 警告 アップル - Apple iOS のプロファイルを偽装される脆弱性 CWE-20
不適切な入力確認
CVE-2010-3827 2010-12-20 14:11 2010-11-26 Show GitHub Exploit DB Packet Storm
259866 6.8 警告 アップル - Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-3795 2010-12-17 14:29 2010-11-16 Show GitHub Exploit DB Packet Storm
259867 6.8 警告 アップル - Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-3794 2010-12-17 14:29 2010-11-16 Show GitHub Exploit DB Packet Storm
259868 6.8 警告 アップル - Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-3793 2010-12-17 14:28 2010-11-16 Show GitHub Exploit DB Packet Storm
259869 6.8 警告 アップル - Apple Mac OS X の QuickTime における整数符号エラーの脆弱性 CWE-189
数値処理の問題
CVE-2010-3792 2010-12-17 14:27 2010-11-16 Show GitHub Exploit DB Packet Storm
259870 6.8 警告 アップル - Apple Mac OS X の QuickTime におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-3791 2010-12-17 13:59 2010-11-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3971 8.1 HIGH
Network
microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w…
Use after free in Universal Plug and Play (upnp.dll) allows an unauthorized attacker to execute code over a network. CWE-843
CWE-416
Type Confusion
 Use After Free
CVE-2026-45635 2026-06-12 03:36 2026-06-10 Show GitHub Exploit DB Packet Storm
3972 7.8 HIGH
Local
microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w…
Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally. CWE-20
CWE-122
 Improper Input Validation 
Heap-based Buffer Overflow
CVE-2026-45636 2026-06-12 03:33 2026-06-10 Show GitHub Exploit DB Packet Storm
3973 6.5 MEDIUM
Adjacent
lldpd_project lldpd lldpd is an implementation of IEEE 802.1ab (LLDP). Prior to version 1.0.22, lldpd_decode() in src/daemon/lldpd.c strips 802.1Q VLAN tags from received Ethernet frames by calling memmove() to shift th… CWE-125
Out-of-bounds Read
CVE-2026-46433 2026-06-12 03:29 2026-06-10 Show GitHub Exploit DB Packet Storm
3974 7.8 HIGH
Local
microsoft windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2019
windows_server_2022
windows_server_2025
Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. CWE-416
 Use After Free
CVE-2026-45637 2026-06-12 03:24 2026-06-10 Show GitHub Exploit DB Packet Storm
3975 7.8 HIGH
Local
microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w…
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. CWE-122
Heap-based Buffer Overflow
CVE-2026-45638 2026-06-12 03:23 2026-06-10 Show GitHub Exploit DB Packet Storm
3976 8.7 HIGH
Network
open-emr openemr OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0.1, a stored cross-site scripting vulnerability in the prescription CSS/… CWE-79
CWE-862
Cross-site Scripting
 Missing Authorization
CVE-2026-46518 2026-06-12 03:23 2026-06-10 Show GitHub Exploit DB Packet Storm
3977 7.0 HIGH
Local
microsoft windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2022
windows_server_2025
Use after free in Windows Bluetooth Port Driver allows an authorized attacker to elevate privileges locally. CWE-416
 Use After Free
CVE-2026-45640 2026-06-12 03:22 2026-06-10 Show GitHub Exploit DB Packet Storm
3978 6.5 MEDIUM
Adjacent
espressif esp-idf ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.2.7, 5.3.5, 5.4.4, 5.5.4, and 6.0.1, an out-of-bounds read flaw exists in the DHCP server option parser (parse_o… CWE-125
Out-of-bounds Read
CVE-2026-45160 2026-06-12 03:22 2026-06-10 Show GitHub Exploit DB Packet Storm
3979 10.0 CRITICAL
Network
- - MariaDB server is a community developed fork of MySQL server. Versions 10.6.1 through 10.6.26, 10.11.1 through 10.11.17, 11.4.1 through 11.4.11, 11.8.1 through 11.8.7, and 12.3.1 with `wsrep_notify_… CWE-78
OS Command 
CVE-2026-49261 2026-06-12 03:16 2026-06-12 Show GitHub Exploit DB Packet Storm
3980 7.3 HIGH
Network
- - KanaDojo before 0.1.18 contains a sandbox escape vulnerability that allows an attacker to execute arbitrary code by exploiting the explicit passing of the global require function into a Node.js vm.ru… CWE-693
 Protection Mechanism Failure
CVE-2026-48546 2026-06-12 03:16 2026-06-12 Show GitHub Exploit DB Packet Storm