Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
321	8.8	重要 Network	HCL Technologies Limited	HCL iControl	HCL Technologies LimitedのHCL iControlにおけるCSV ファイル内の数式要素の中和に関する脆弱性 New	CWE-1236 CSV ファイル内の数式要素の不適切な中和	CVE-2025-52612	2026-06-8 11:49	2026-06-4	Show	GitHub Exploit DB Packet Storm

322	7.5	重要 Network	Open JS Foundation	Node Version Manager (NVM)	Open JS FoundationのNode Version Manager (NVM)におけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-10796	2026-06-8 11:49	2026-06-4	Show	GitHub Exploit DB Packet Storm

323	7.8	重要 Local	NVIDIA	transformers4rec	NVIDIAのtransformers4recにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-24162	2026-06-8 11:49	2026-05-26	Show	GitHub Exploit DB Packet Storm

324	7.8	重要 Local	NVIDIA	NVTabular	NVIDIAのNVTabularにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-24221	2026-06-8 11:49	2026-06-2	Show	GitHub Exploit DB Packet Storm

325	7.8	重要 Local	NVIDIA	NVTabular	NVIDIAのNVTabularにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-24237	2026-06-8 11:49	2026-06-2	Show	GitHub Exploit DB Packet Storm

326	6.8	警告 Network	SWUpdate	SWUpdate	SWUpdateにおける複数の脆弱性 New	CWE-125 CWE-191	CVE-2026-28525	2026-06-8 11:49	2026-04-23	Show	GitHub Exploit DB Packet Storm

327	7.5	重要 Network	turbo-stream Shopify	React Router Turbo Stream	Shopify等の複数ベンダの製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-34077	2026-06-8 11:49	2026-06-2	Show	GitHub Exploit DB Packet Storm

328	6.5	警告 Network	Apnotic	Password Pusher	ApnoticのPassword Pusherにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性 New	CWE-288 CWE-noinfo	CVE-2026-41308	2026-06-8 11:48	2026-05-8	Show	GitHub Exploit DB Packet Storm

329	7.5	重要 Network	Shopify	remix-run/server-runtime React Router	ShopifyのReact Router等の複数製品におけるリソースの枯渇に関する脆弱性 New	CWE-400 リソースの枯渇	CVE-2026-42342	2026-06-8 11:48	2026-06-2	Show	GitHub Exploit DB Packet Storm

330	5.3	警告 Network	forms project	forms	NextcloudのFormsにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 New	CWE-552 外部からアクセス可能なファイルまたはディレクトリ	CVE-2026-45543	2026-06-8 11:48	2026-06-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2311	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: selinux: fix overlayfs mmap() and mprotect() access checks The existing SELinux security model for overlayfs is to allow access i…	-	CVE-2026-46054	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2312	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: ceph: only d_add() negative dentries when they are unhashed Ceph can call d_add(dentry, NULL) on a negative dentry that is alread…	-	CVE-2026-46052	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2313	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: rxgk: Fix potential integer overflow in length check Fix potential integer overflow in rxgk_extract_token() when checking the len…	-	CVE-2026-46039	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2314	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: vfio/cdx: Serialize VFIO_DEVICE_SET_IRQS with a per-device mutex vfio_cdx_set_msi_trigger() reads vdev->config_msi and operates o…	-	CVE-2026-46036	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2315	7.0	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: mm/slab: return NULL early from kmalloc_nolock() in NMI on UP On UP kernels (!CONFIG_SMP), spin_trylock() is a no-op that uncondi…	-	CVE-2026-46029	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2316	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: media: mtk-jpeg: fix use-after-free in release path due to uncancelled work The mtk_jpeg_release() function frees the context str…	-	CVE-2026-46011	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2317	8.1	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix error handling in rxgk_extract_token() Fix a missing bit of error handling in rxgk_extract_token(): in the event that …	-	CVE-2026-46010	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2318	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: erofs: fix unsigned underflow in z_erofs_lz4_handle_overlap() Some crafted images can have illegal (!partial_decoding && m_llen <…	-	CVE-2026-45999	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2319	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: udf: fix partition descriptor append bookkeeping Mounting a crafted UDF image with repeated partition descriptors can trigger a h…	-	CVE-2026-45991	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2320	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix re-decryption of RESPONSE packets If a RESPONSE packet gets a temporary failure during processing, it may end up in a …	-	CVE-2026-45988	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm