Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2911	7.5	重要 Network	NLnet Labs	unbound	NLnet Labsのunboundにおける初期化されていないポインタのアクセスに関する脆弱性	CWE-824 初期化されていないポインタのアクセス	CVE-2026-42959	2026-05-22 10:59	2026-05-20	Show	GitHub Exploit DB Packet Storm

2912	10	緊急 Network	NLnet Labs	unbound	NLnet Labsのunboundにおける信頼できるデータ受け入れ時の信頼できない無関係なデータの受け入れに関する脆弱性	CWE-349 信頼できるデータ受け入れ時の信頼できない無関係なデータの受け入れ	CVE-2026-42960	2026-05-22 10:59	2026-05-20	Show	GitHub Exploit DB Packet Storm

2913	5.3	警告 Network	NLnet Labs	unbound	NLnet Labsのunboundにおけるアルゴリズムの複雑さに関する脆弱性	CWE-407 アルゴリズムの複雑性	CVE-2026-44390	2026-05-22 10:59	2026-05-20	Show	GitHub Exploit DB Packet Storm

2914	5.9	警告 Network	NLnet Labs	unbound	NLnet Labsのunboundにおける不適切なリソースロックに関する脆弱性	CWE-413 不適切なリソースロック	CVE-2026-44608	2026-05-22 10:59	2026-05-20	Show	GitHub Exploit DB Packet Storm

2915	6.1	警告 Network	Drupal	Drupal	Drupalにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-6365	2026-05-22 10:59	2026-05-19	Show	GitHub Exploit DB Packet Storm

2916	6.6	警告 Network	Drupal	Drupal	Drupalにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性	CWE-915 動的に決定されたオブジェクト属性の不適切に制御された変更	CVE-2026-6366	2026-05-22 10:59	2026-05-19	Show	GitHub Exploit DB Packet Storm

2917	6.1	警告 Network	Drupal	Drupal	Drupalにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-6367	2026-05-22 10:59	2026-05-19	Show	GitHub Exploit DB Packet Storm

2918	7.5	重要 Network	Progress Software Corporation	MOVEit Automation Web Admin	Progress Software CorporationのMOVEit Automation Web Adminにおける過剰なサイズ値のメモリ割り当てに関する脆弱性	CWE-789 過剰なサイズ値のメモリ割り当て	CVE-2026-8485	2026-05-22 10:59	2026-05-20	Show	GitHub Exploit DB Packet Storm

2919	9.8	緊急 Network	NVIDIA	TensorRT LLM	NVIDIAのTensorRT LLMにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2025-33255	2026-05-22 10:59	2026-05-20	Show	GitHub Exploit DB Packet Storm

2920	9.8	緊急 Network	NVIDIA	TensorRT LLM	NVIDIAのTensorRT LLMにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-24142	2026-05-22 10:59	2026-05-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
307151	2.4	LOW Physics	google	android	The Bluetooth stack in Android before 2.3.6 allows a physically proximate attacker to obtain contact information via an AT phonebook transfer.	CWE-200 Information Exposure	CVE-2011-2343	2024-11-21 10:28	2020-02-13	Show	GitHub Exploit DB Packet Storm

307152	6.5	MEDIUM Network	mozilla	firefox	Mozilla Firefox prior to 3.6 has a DoS vulnerability due to an issue in the validation of certificates.	CWE-295 Improper Certificate Validation	CVE-2011-2669	2024-11-21 10:28	2020-01-22	Show	GitHub Exploit DB Packet Storm

307153	8.8	HIGH Network	mozilla	firefox	Mozilla Firefox through 1.5.0.3 has a vulnerability in processing the content-length header	NVD-CWE-noinfo	CVE-2011-2668	2024-11-21 10:28	2020-01-22	Show	GitHub Exploit DB Packet Storm

307154	9.8	CRITICAL Network	drupal	drupal data	An SQL Injection vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table names or column names.	CWE-89 SQL Injection	CVE-2011-2715	2024-11-21 10:28	2020-01-15	Show	GitHub Exploit DB Packet Storm

307155	6.1	MEDIUM Network	drupal	drupal data	A Cross-Site Scripting vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table descriptions, field names, or labels before display.	CWE-79 Cross-site Scripting	CVE-2011-2714	2024-11-21 10:28	2020-01-15	Show	GitHub Exploit DB Packet Storm

307156	6.1	MEDIUM Network	snewscms	snews	A Cross-Site Scripting (XSS) vulnerability exists in the reorder administrator functions in sNews 1.71.	CWE-79 Cross-site Scripting	CVE-2011-2706	2024-11-21 10:28	2020-01-15	Show	GitHub Exploit DB Packet Storm

307157	6.1	MEDIUM Network	mozilla	firefox	Mozilla Firefox before 3.6 is vulnerable to XSS via the rendering of Cascading Style Sheets	CWE-79 Cross-site Scripting	CVE-2011-2670	2024-11-21 10:28	2020-01-13	Show	GitHub Exploit DB Packet Storm

307158	9.8	CRITICAL Network	linux redhat	dhcp6c enterprise_linux	The DHCPv6 client (dhcp6c) as used in the dhcpv6 project through 2011-07-25 allows remote DHCP servers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP messag…	CWE-74 Injection	CVE-2011-2717	2024-11-21 10:28	2019-11-28	Show	GitHub Exploit DB Packet Storm

307159	9.8	CRITICAL Network	vsftpd_project debian	vsftpd debian_linux	vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.	CWE-78 OS Command	CVE-2011-2523	2024-11-21 10:28	2019-11-28	Show	GitHub Exploit DB Packet Storm

307160	5.3	MEDIUM Local	packagekit_project debian redhat	packagekit debian_linux enterprise_linux_server	PackageKit 0.6.17 allows installation of unsigned RPM packages as though they were signed which may allow installation of non-trusted packages and execution of arbitrary code.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2011-2515	2024-11-21 10:28	2019-11-28	Show	GitHub Exploit DB Packet Storm