Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3361	7.5	重要 Network	Open JS Foundation	Node Version Manager (NVM)	Open JS FoundationのNode Version Manager (NVM)におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-10796	2026-06-8 11:49	2026-06-4	Show	GitHub Exploit DB Packet Storm

3362	7.8	重要 Local	NVIDIA	transformers4rec	NVIDIAのtransformers4recにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-24162	2026-06-8 11:49	2026-05-26	Show	GitHub Exploit DB Packet Storm

3363	7.8	重要 Local	NVIDIA	NVTabular	NVIDIAのNVTabularにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-24221	2026-06-8 11:49	2026-06-2	Show	GitHub Exploit DB Packet Storm

3364	7.8	重要 Local	NVIDIA	NVTabular	NVIDIAのNVTabularにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-24237	2026-06-8 11:49	2026-06-2	Show	GitHub Exploit DB Packet Storm

3365	6.8	警告 Network	SWUpdate	SWUpdate	SWUpdateにおける複数の脆弱性	CWE-125 CWE-191	CVE-2026-28525	2026-06-8 11:49	2026-04-23	Show	GitHub Exploit DB Packet Storm

3366	7.5	重要 Network	turbo-stream Shopify	React Router Turbo Stream	Shopify等の複数ベンダの製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-34077	2026-06-8 11:49	2026-06-2	Show	GitHub Exploit DB Packet Storm

3367	6.5	警告 Network	Apnotic	Password Pusher	ApnoticのPassword Pusherにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性	CWE-288 CWE-noinfo	CVE-2026-41308	2026-06-8 11:48	2026-05-8	Show	GitHub Exploit DB Packet Storm

3368	7.5	重要 Network	Shopify	remix-run/server-runtime React Router	ShopifyのReact Router等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-42342	2026-06-8 11:48	2026-06-2	Show	GitHub Exploit DB Packet Storm

3369	5.3	警告 Network	forms project	forms	NextcloudのFormsにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性	CWE-552 外部からアクセス可能なファイルまたはディレクトリ	CVE-2026-45543	2026-06-8 11:48	2026-06-1	Show	GitHub Exploit DB Packet Storm

3370	8.1	重要 Network	Get-hermes	Hermes Web UI	Get-hermesのHermes Web UIにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-6832	2026-06-8 11:48	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
551	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: batman-adv: tp_meter: avoid use of uninit sender vars batadv_tp_recv_ack() and batadv_tp_stop() are only valid for tp_vars in the… Update	-	CVE-2026-52931	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

552	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: sctp: stream: fully roll back denied add-stream state When ADD_OUT_STREAMS is denied, SCTP only shrinks the queued chunks and the… Update	-	CVE-2026-52929	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

553	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: ebtables: fix OOB read in compat_mtw_from_user Luxiao Xu says: The function compat_mtw_from_user() converts ebtables… Update	-	CVE-2026-52927	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

554	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO handling sctp_stream_update() is only invoked when the association is moved into COOKIE… Update	-	CVE-2026-52924	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

555	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: ipc: limit next_id allocation to the valid ID range The checkpoint/restore sysctl path can request the next SysV IPC id through i… Update	-	CVE-2026-52923	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

556	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: batman-adv: dat: handle forward allocation error batadv_dat_forward_data() calls pskb_copy_for_clone() to duplicate an skb for ea… Update	-	CVE-2026-52922	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

557	8.3	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_policy: fix strict mode inbound policy matching match_policy_in() walks sec_path entries from the last transform to… Update	-	CVE-2026-52920	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

558	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix tp_meter counter underflow during shutdown batadv_tp_sender_shutdown() unconditionally decrements the "sending" a… Update	-	CVE-2026-52919	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

559	8.8	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: serialize accept_q access bt_sock_poll() walks the accept queue without synchronization, while child teardown can unli… Update	-	CVE-2026-52918	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

560	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: sctp: diag: reject stale associations in dump_one path The SCTP exact sock_diag lookup can hold a transport reference, block on l… Update	-	CVE-2026-52917	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm