Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2721 - - LMSYS Org SGLang SGLangにおける複数の脆弱性 - CVE-2026-5760
CVE-2026-7301
CVE-2026-7302
CVE-2026-7304 		2026-05-27 12:17 2026-05-26 Show GitHub Exploit DB Packet Storm
2722 - - dnsmasq dnsmasq dnsmasqにおける複数の脆弱性 - CVE-2026-2291
CVE-2026-4890
CVE-2026-4891
CVE-2026-4892
CVE-2026-4893
CVE-2026-5172 		2026-05-27 12:17 2026-05-26 Show GitHub Exploit DB Packet Storm
2723 - - Linux Linux Kernel Linuxカーネルにおける複数の脆弱性 - CVE-2026-31431
CVE-2026-43284
CVE-2026-43500 		2026-05-26 14:07 2026-05-25 Show GitHub Exploit DB Packet Storm
2724 6.8 警告
Adjacent 		日本電気 Aterm CM51FD
Aterm MR51FN 		NEC AtermシリーズにおけるOSコマンドインジェクションの脆弱性(NV26-003) CWE-78
OSコマンド・インジェクション 		CVE-2026-8652 2026-05-25 15:43 2026-05-25 Show GitHub Exploit DB Packet Storm
2725 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年05月21日) - - 2026-05-25 15:37 2026-05-22 Show GitHub Exploit DB Packet Storm
2726 3.8
Adjacent 		日本電気 Aterm WX11000T12
Aterm WX4200D5
Aterm 19000T12BE
Aterm WX7800T8
Aterm WX5400HP
Aterm WX3000HP2
Aterm WX1800HP
Aterm GX621A1
Aterm … 		NEC Atermシリーズにおけるクロスサイトスクリプティングの脆弱性(NV26-002) CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-6059 2026-05-25 15:29 2026-05-25 Show GitHub Exploit DB Packet Storm
2727 - - 日立 Hitachi Virtual Storage Platform 日立ディスクアレイシステムにおけるSVP 脆弱性対策について (2026年3月分) - CVE-2026-23667
CVE-2026-23668
CVE-2026-23669
CVE-2026-23671
CVE-2026-23672
CVE-2026-23673
CVE-2026-23674
CVE-2026-24282
CVE-2026-24285
CVE-2026-24287
CVE-2026-24288
C… 		2026-05-25 11:30 2026-05-20 Show GitHub Exploit DB Packet Storm
2728 5.5 警告
Local 		Amazon.com, Inc. AWS API MCP Server Amazon.com, Inc.のAWS API MCP Serverにおける代替パスの保護に関する脆弱性 CWE-424
代替パスの不適切な保護 		CVE-2026-4270 2026-05-25 10:26 2026-03-16 Show GitHub Exploit DB Packet Storm
2729 6.5 警告
Network 		ベリタス Veritas InfoScale Operations Manager ベリタスのVeritas InfoScale Operations ManagerにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-44923 2026-05-25 10:26 2026-05-20 Show GitHub Exploit DB Packet Storm
2730 5.4 警告
Network 		ベリタス Veritas InfoScale Operations Manager ベリタスのVeritas InfoScale Operations Managerにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-44924 2026-05-25 10:26 2026-05-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
306411 - redhat
canonical
opensuse 		icedtea-web
ubuntu_linux
opensuse 		The web browser plug-in in IcedTea-Web 1.0.x before 1.0.6 and 1.1.x before 1.1.4 allows remote attackers to bypass the Same Origin Policy (SOP) and execute arbitrary script or establish network conne… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-3377 2024-11-21 10:30 2014-02-6 Show GitHub Exploit DB Packet Storm
306412 - redhat spacewalk
network_satellite 		Cross-site scripting (XSS) vulnerability in the Lookup Login/Password form in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellite, allows remote attackers to inject arbitrary web script or HTML… CWE-79
Cross-site Scripting 		CVE-2011-3344 2024-11-21 10:30 2014-02-6 Show GitHub Exploit DB Packet Storm
306413 - linux linux_kernel The apparmor_setprocattr function in security/apparmor/lsm.c in the Linux kernel before 3.0 does not properly handle invalid parameters, which allows local users to cause a denial of service (NULL po… CWE-20
 Improper Input Validation  		CVE-2011-3619 2024-11-21 10:30 2013-06-8 Show GitHub Exploit DB Packet Storm
306414 - redhat
linux 		enterprise_linux
linux_kernel 		A certain Red Hat patch to the vlan_hwaccel_do_receive function in net/8021q/vlan_core.c in the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows remote attackers to cause a denial of s… CWE-399
 Resource Management Errors 		CVE-2011-3593 2024-11-21 10:30 2013-06-8 Show GitHub Exploit DB Packet Storm
306415 - redhat enterprise_linux A certain Red Hat patch to the be2net implementation in the kernel package before 2.6.32-218.el6 on Red Hat Enterprise Linux (RHEL) 6, when promiscuous mode is enabled, allows remote attackers to cau… NVD-CWE-noinfo
CVE-2011-3347 2024-11-21 10:30 2013-06-8 Show GitHub Exploit DB Packet Storm
306416 - linux linux_kernel fs/ext4/extents.c in the Linux kernel before 3.0 does not mark a modified extent as dirty in certain cases of extent splitting, which allows local users to cause a denial of service (system crash) vi… NVD-CWE-noinfo
CVE-2011-3638 2024-11-21 10:30 2013-03-1 Show GitHub Exploit DB Packet Storm
306417 - libpng libpng Off-by-one error in the png_formatted_warning function in pngerror.c in libpng 1.5.4 through 1.5.7 might allow remote attackers to cause a denial of service (application crash) and possibly execute a… CWE-189
Numeric Errors 		CVE-2011-3464 2024-11-21 10:30 2012-07-23 Show GitHub Exploit DB Packet Storm
306418 - oracle fusion_middleware Unspecified vulnerability in the Portal component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.6, and 11.1.2.0 allows remote attackers to affect integrity via unknown vectors. NVD-CWE-noinfo
CVE-2011-3562 2024-11-21 10:30 2012-07-18 Show GitHub Exploit DB Packet Storm
306419 - mozilla seamonkey
firefox
thunderbird 		Use-after-free vulnerability in the nsHTMLSelectElement function in nsHTMLSelectElement.cpp in Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and SeaMonkey before 2.6 allows remote att… CWE-399
 Resource Management Errors 		CVE-2011-3671 2024-11-21 10:30 2012-06-19 Show GitHub Exploit DB Packet Storm
306420 6.5 MEDIUM
Adjacent 		linux
redhat 		linux_kernel
enterprise_linux 		The setup_cifs_sb function in fs/cifs/connect.c in the Linux kernel before 2.6.39 does not properly handle DFS referrals, which allows remote CIFS servers to cause a denial of service (system crash) … CWE-20
 Improper Input Validation  		CVE-2011-3363 2024-11-21 10:30 2012-05-25 Show GitHub Exploit DB Packet Storm