Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
291	5.4	警告 Network	Koha	Koha	Kohaにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-26378	2026-06-8 11:50	2026-06-3	Show	GitHub Exploit DB Packet Storm

292	7.8	重要 Local	Canonical	Ubuntu	CanonicalのUbuntuにおける権限の連鎖に関する脆弱性 New	CWE-268 権限の連鎖	CVE-2026-3888	2026-06-8 11:50	2026-03-17	Show	GitHub Exploit DB Packet Storm

293	9.8	緊急 Network	日本エイサー	Acer Connect M6E 5G Firmware	エイサーのAcer Connect M6E 5G FirmwareにおけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-49185	2026-06-8 11:50	2026-06-4	Show	GitHub Exploit DB Packet Storm

294	9.8	緊急 Network	日本エイサー	Acer Connect M6E 5G Firmware	エイサーのAcer Connect M6E 5G Firmwareにおける認証に関する脆弱性 New	CWE-287 不適切な認証	CVE-2026-49186	2026-06-8 11:50	2026-06-4	Show	GitHub Exploit DB Packet Storm

295	7.5	重要 Network	日本エイサー	Acer Connect M6E 5G Firmware	エイサーのAcer Connect M6E 5G Firmwareにおける情報漏えいに関する脆弱性 New	CWE-200 情報漏えい	CVE-2026-49187	2026-06-8 11:50	2026-06-4	Show	GitHub Exploit DB Packet Storm

296	9.8	緊急 Network	日本エイサー	Acer Connect M6E 5G Firmware	エイサーのAcer Connect M6E 5G Firmwareにおけるアクティブ状態のデバッグコードに関する脆弱性 New	CWE-489 間違ったセッションへのデータの漏洩	CVE-2026-49188	2026-06-8 11:50	2026-06-4	Show	GitHub Exploit DB Packet Storm

297	7.8	重要 Local	日本エイサー	Acer Connect M6E 5G Firmware	エイサーのAcer Connect M6E 5G Firmwareにおける権限管理に関する脆弱性 New	CWE-269 不適切な権限管理	CVE-2026-49189	2026-06-8 11:50	2026-06-4	Show	GitHub Exploit DB Packet Storm

298	8.8	重要 Network	日本エイサー	Acer Connect M6E 5G Firmware	エイサーのAcer Connect M6E 5G FirmwareにおけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-49190	2026-06-8 11:50	2026-06-4	Show	GitHub Exploit DB Packet Storm

299	9.8	緊急 Network	日本エイサー	Acer Connect M6E 5G Firmware	エイサーのAcer Connect M6E 5G Firmwareにおける認証に関する脆弱性 New	CWE-287 不適切な認証	CVE-2026-49191	2026-06-8 11:50	2026-06-4	Show	GitHub Exploit DB Packet Storm

300	5.4	警告 Network	日本エイサー	Acer Connect M6E 5G Firmware	エイサーのAcer Connect M6E 5G Firmwareにおけるユーザ制御の鍵による認証回避に関する脆弱性 New	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-49192	2026-06-8 11:50	2026-06-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344931	-	cisco	vpn_3000_concentrator vpn_3005_concentrator vpn_3015_concentrator vpn_3030_concentator vpn_3060_concentrator vpn_3080_concentrator	Cisco VPN 3000 series concentrators before 2.5.2(F) allow remote attackers to cause a denial of service via a flood of invalid login requests to (1) the SSL service, or (2) the telnet service, which …	CWE-20 Improper Input Validation	CVE-2001-0427	2017-10-10 10:29	2001-06-18	Show	GitHub Exploit DB Packet Storm

344932	-	cisco	catos	Cisco Catalyst 5000 series switches 6.1(2) and earlier will forward an 802.1x frame on a Spanning Tree Protocol (STP) blocked port, which causes a network storm and a denial of service.	NVD-CWE-Other	CVE-2001-0429	2017-10-10 10:29	2001-07-2	Show	GitHub Exploit DB Packet Storm

344933	-	debian	debian_linux	Vulnerability in exuberant-ctags before 3.2.4-0.1 insecurely creates temporary files.	NVD-CWE-Other	CVE-2001-0430	2017-10-10 10:29	2001-07-2	Show	GitHub Exploit DB Packet Storm

344934	-	compaq	presario	The LogDataListToFile ActiveX function used in (1) Knowledge Center and (2) Back web components of Compaq Presario computers allows remote attackers to modify arbitrary files and cause a denial of se…	NVD-CWE-Other	CVE-2001-0434	2017-10-10 10:29	2001-07-2	Show	GitHub Exploit DB Packet Storm

344935	-	licq conectiva freebsd mandrakesoft redhat	licq linux freebsd mandrake_linux mandrake_linux_corporate_server	licq before 1.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.	NVD-CWE-Other	CVE-2001-0439	2017-10-10 10:29	2001-07-2	Show	GitHub Exploit DB Packet Storm

344936	-	licq conectiva mandrakesoft	licq linux mandrake_linux	Buffer overflow in logging functions of licq before 1.0.3 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands.	NVD-CWE-Other	CVE-2001-0440	2017-10-10 10:29	2001-07-2	Show	GitHub Exploit DB Packet Storm

344937	-	cisco	cbos	Cisco CBOS 2.3.0.053 sends output of the "sh nat" (aka "show nat") command to the terminal of the next user who attempts to connect to the router via telnet, which could allow that user to obtain sen…	NVD-CWE-Other	CVE-2001-0444	2017-10-10 10:29	2001-07-2	Show	GitHub Exploit DB Packet Storm

344938	-	winzip	winzip	Buffer overflow in WinZip 8.0 allows attackers to execute arbitrary commands via a long file name that is processed by the /zipandemail command line option.	NVD-CWE-Other	CVE-2001-0449	2017-10-10 10:29	2001-06-27	Show	GitHub Exploit DB Packet Storm

344939	-	cisco	aironet_340	Cisco Aironet 340 Series wireless bridge before 8.55 does not properly disable access to the web interface, which allows remote attackers to modify its configuration.	NVD-CWE-Other	CVE-2001-0455	2017-10-10 10:29	2001-06-27	Show	GitHub Exploit DB Packet Storm

344940	-	debian	debian_linux	postinst installation script for Proftpd in Debian 2.2 does not properly change the "run as uid/gid root" configuration when the user enables anonymous access, which causes the server to run at a hig…	NVD-CWE-Other	CVE-2001-0456	2017-10-10 10:29	2001-06-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed