Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 14, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 2961 | 7.8 |
重要
Local |
マイクロソフト |
Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind… |
Windows メッセージ キュー (MSMQ) の特権昇格の脆弱性 |
CWE-415
二重解放 |
CVE-2026-33838 | 2026-05-18 12:17 | 2026-05-12 | Show | GitHub Exploit DB Packet Storm |
| 2962 | 7 |
重要
Local |
マイクロソフト |
Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind… |
Win32k の特権の昇格の脆弱性 |
CWE-362
競合状態 |
CVE-2026-33839 | 2026-05-18 12:17 | 2026-05-12 | Show | GitHub Exploit DB Packet Storm |
| 2963 | 7.8 |
重要
Local |
マイクロソフト |
Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025 |
Win32k の特権の昇格の脆弱性 |
CWE-416
解放済みメモリの使用 |
CVE-2026-33840 | 2026-05-18 12:17 | 2026-05-12 | Show | GitHub Exploit DB Packet Storm |
| 2964 | 7.8 |
重要
Local |
マイクロソフト |
Microsoft Windows 11 25h2 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows 11 24h2 Microsoft Wind… |
Windows カーネルの特権の昇格の脆弱性 |
CWE-122
ヒープオーバーフロー |
CVE-2026-33841 | 2026-05-18 12:17 | 2026-05-12 | Show | GitHub Exploit DB Packet Storm |
| 2965 | 7.5 |
重要
Network |
MediaWiki | MediaWiki | MediaWikiにおける情報漏えいに関する脆弱性 |
CWE-200
情報漏えい |
CVE-2026-34087 | 2026-05-18 12:17 | 2026-05-11 | Show | GitHub Exploit DB Packet Storm |
| 2966 | 7.5 |
重要
Network |
MediaWiki | MediaWiki | MediaWikiにおける情報漏えいに関する脆弱性 |
CWE-200 CWE-noinfo |
CVE-2026-34088 | 2026-05-18 12:17 | 2026-05-11 | Show | GitHub Exploit DB Packet Storm |
| 2967 | 7.5 |
重要
Network |
MediaWiki | Checkuser | MediaWikiのCheckuserにおける情報漏えいに関する脆弱性 |
CWE-200
情報漏えい |
CVE-2026-34090 | 2026-05-18 12:17 | 2026-05-11 | Show | GitHub Exploit DB Packet Storm |
| 2968 | 7.5 |
重要
Network |
MediaWiki | MediaWiki | MediaWikiにおける情報漏えいに関する脆弱性 |
CWE-200 CWE-noinfo |
CVE-2026-34091 | 2026-05-18 12:17 | 2026-05-11 | Show | GitHub Exploit DB Packet Storm |
| 2969 | 7.5 |
重要
Network |
MediaWiki | MediaWiki | MediaWikiにおける情報漏えいに関する脆弱性 |
CWE-200 CWE-noinfo |
CVE-2026-34092 | 2026-05-18 12:17 | 2026-05-11 | Show | GitHub Exploit DB Packet Storm |
| 2970 | 8.8 |
重要
Adjacent |
マイクロソフト |
Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind… |
Microsoft Message Queuing (MSMQ) のリモートでコードが実行される脆弱性 |
CWE-122
ヒープオーバーフロー |
CVE-2026-34329 | 2026-05-18 12:17 | 2026-05-12 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 14, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 306601 | 5.9 |
MEDIUM
Network |
apache redhat |
wss4j cxf jboss_enterprise_soa_platform jboss_enterprise_application_platform jboss_portal jboss_enterprise_web_platform jboss_business_rules_management_system jboss_enterprise_a… |
The implementations of PKCS#1 v1.5 key transport mechanism for XMLEncryption in JBossWS and Apache WSS4J before 1.6.5 is susceptible to a Bleichenbacher attack. |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2011-2487 | 2024-11-21 10:28 | 2020-03-12 | Show | GitHub Exploit DB Packet Storm |
| 306602 | 5.5 |
MEDIUM
Local |
linux canonical |
linux_kernel ubuntu_linux |
The Linux kernel from v2.3.36 before v2.6.39 allows local unprivileged users to cause a denial of service (memory consumption) by triggering creation of PTE pages. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2011-2498 | 2024-11-21 10:28 | 2020-02-20 | Show | GitHub Exploit DB Packet Storm |
| 306603 | 6.1 |
MEDIUM
Network |
mambo-foundation | mambo_cms | Mambo CMS through 4.6.5 has multiple XSS. |
CWE-79
Cross-site Scripting |
CVE-2011-2499 | 2024-11-21 10:28 | 2020-02-13 | Show | GitHub Exploit DB Packet Storm |
| 306604 | 2.4 |
LOW
Physics |
android | The Bluetooth stack in Android before 2.3.6 allows a physically proximate attacker to obtain contact information via an AT phonebook transfer. |
CWE-200
Information Exposure |
CVE-2011-2343 | 2024-11-21 10:28 | 2020-02-13 | Show | GitHub Exploit DB Packet Storm | |
| 306605 | 6.5 |
MEDIUM
Network |
mozilla | firefox | Mozilla Firefox prior to 3.6 has a DoS vulnerability due to an issue in the validation of certificates. |
CWE-295
Improper Certificate Validation |
CVE-2011-2669 | 2024-11-21 10:28 | 2020-01-22 | Show | GitHub Exploit DB Packet Storm |
| 306606 | 8.8 |
HIGH
Network |
mozilla | firefox | Mozilla Firefox through 1.5.0.3 has a vulnerability in processing the content-length header |
NVD-CWE-noinfo
|
CVE-2011-2668 | 2024-11-21 10:28 | 2020-01-22 | Show | GitHub Exploit DB Packet Storm |
| 306607 | 9.8 |
CRITICAL
Network |
drupal |
drupal data |
An SQL Injection vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table names or column names. |
CWE-89
SQL Injection |
CVE-2011-2715 | 2024-11-21 10:28 | 2020-01-15 | Show | GitHub Exploit DB Packet Storm |
| 306608 | 6.1 |
MEDIUM
Network |
drupal |
drupal data |
A Cross-Site Scripting vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table descriptions, field names, or labels before display. |
CWE-79
Cross-site Scripting |
CVE-2011-2714 | 2024-11-21 10:28 | 2020-01-15 | Show | GitHub Exploit DB Packet Storm |
| 306609 | 6.1 |
MEDIUM
Network |
snewscms | snews | A Cross-Site Scripting (XSS) vulnerability exists in the reorder administrator functions in sNews 1.71. |
CWE-79
Cross-site Scripting |
CVE-2011-2706 | 2024-11-21 10:28 | 2020-01-15 | Show | GitHub Exploit DB Packet Storm |
| 306610 | 6.1 |
MEDIUM
Network |
mozilla | firefox | Mozilla Firefox before 3.6 is vulnerable to XSS via the rendering of Cascading Style Sheets |
CWE-79
Cross-site Scripting |
CVE-2011-2670 | 2024-11-21 10:28 | 2020-01-13 | Show | GitHub Exploit DB Packet Storm |