Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3191 7 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows テレフォニー サービスの特権昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-42825 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
3192 6.5 警告
Local 		マイクロソフト Azure Monitor Agent Azure Monitor エージェントの拡張機能の特権昇格の脆弱性 CWE-426
信頼性のない検索パス 		CVE-2026-42830 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
3193 9.1 緊急
Network 		マイクロソフト Microsoft Dynamics 365 Microsoft Dynamics 365 オンプレミスのリモートでコードが実行される脆弱性 CWE-250
CWE-noinfo
CVE-2026-42833 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
3194 5.4 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) の特権の昇格の脆弱性 CWE-74
インジェクション 		CVE-2026-42838 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
3195 6.5 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) for Android のスプーフィングの脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2026-42891 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
3196 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows 11 24h2
Microsoft Windows 11 26h1
Microsoft Windows Server 2025 		Windows DWM Core ライブラリの特権の昇格の脆弱性 CWE-122
CWE-190
CVE-2026-42896 2026-05-18 12:13 2026-05-12 Show GitHub Exploit DB Packet Storm
3197 9.9 緊急
Network 		マイクロソフト Microsoft Dynamics 365 Microsoft Dynamics 365 オンプレミスのリモートでコードが実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2026-42898 2026-05-18 12:13 2026-05-12 Show GitHub Exploit DB Packet Storm
3198 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2026-43097 2026-05-18 12:13 2026-05-6 Show GitHub Exploit DB Packet Storm
3199 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-Other
その他 		CVE-2026-43098 2026-05-18 12:13 2026-05-6 Show GitHub Exploit DB Packet Storm
3200 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-43285 2026-05-18 12:13 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
307091 - bestpractical rt The vulnerable-passwords script in Best Practical Solutions RT 3.x before 3.8.12 and 4.x before 4.0.6 does not update the password-hash algorithm for disabled user accounts, which makes it easier for… CWE-255
Credentials Management 		CVE-2011-2082 2024-11-21 10:27 2012-06-5 Show GitHub Exploit DB Packet Storm
307092 - freebsd libarchive Multiple use-after-free vulnerabilities in libarchive 2.8.4 and 2.8.5 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted (… CWE-399
 Resource Management Errors 		CVE-2011-1779 2024-11-21 10:27 2012-04-14 Show GitHub Exploit DB Packet Storm
307093 - freebsd libarchive Buffer overflow in libarchive through 2.8.5 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TAR archive. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-1778 2024-11-21 10:27 2012-04-14 Show GitHub Exploit DB Packet Storm
307094 - freebsd libarchive Multiple buffer overflows in the (1) heap_add_entry and (2) relocate_dir functions in archive_read_support_format_iso9660.c in libarchive through 2.8.5 allow remote attackers to cause a denial of ser… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-1777 2024-11-21 10:27 2012-04-14 Show GitHub Exploit DB Packet Storm
307095 - advantech adam_opc_server
modbus_rtu_opc_server
modbus_tcp_opc_server 		Buffer overflow in the Advantech ADAM OLE for Process Control (OPC) Server ActiveX control in ADAM OPC Server before 3.01.012, Modbus RTU OPC Server before 3.01.010, and Modbus TCP OPC Server before … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-1914 2024-11-21 10:27 2012-02-21 Show GitHub Exploit DB Packet Storm
307096 - linux linux_kernel The hfs_find_init function in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and Oops) by mounting an HFS file system with a malformed MDB extent recor… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-2203 2024-11-21 10:27 2012-01-28 Show GitHub Exploit DB Packet Storm
307097 - phpmyadmin phpmyadmin Open redirect vulnerability in the redirector feature in phpMyAdmin 3.4.x before 3.4.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified ve… CWE-20
 Improper Input Validation  		CVE-2011-1941 2024-11-21 10:27 2012-01-27 Show GitHub Exploit DB Packet Storm
307098 - phpmyadmin phpmyadmin Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.3.x before 3.3.10.1 and 3.4.x before 3.4.1 allow remote attackers to inject arbitrary web script or HTML via a crafted table name t… CWE-79
Cross-site Scripting 		CVE-2011-1940 2024-11-21 10:27 2012-01-27 Show GitHub Exploit DB Packet Storm
307099 - oracle e-business_suite Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2 allows remote authenticated users to affect integrity via unknown vectors related to … NVD-CWE-noinfo
CVE-2011-2271 2024-11-21 10:27 2012-01-19 Show GitHub Exploit DB Packet Storm
307100 - oracle
mysql 		mysql Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote attackers to affect availability via unknown vectors. NVD-CWE-noinfo
CVE-2011-2262 2024-11-21 10:27 2012-01-19 Show GitHub Exploit DB Packet Storm