Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3421 7.5 重要
Network 		アップル tvOS
iOS
watchOS
visionos
iPadOS 		アップルのiPadOS等の複数製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-28955 2026-05-15 11:04 2026-05-11 Show GitHub Exploit DB Packet Storm
3422 6.5 警告
Network 		アップル tvOS
iOS
watchOS
visionos
iPadOS 		アップルのiPadOS等の複数製品における複数の脆弱性 CWE-125
CWE-787
CVE-2026-28956 2026-05-15 11:04 2026-05-11 Show GitHub Exploit DB Packet Storm
3423 3.3
Local 		アップル visionos
iOS
iPadOS 		アップルのiPadOS等の複数製品におけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-28957 2026-05-15 11:04 2026-05-11 Show GitHub Exploit DB Packet Storm
3424 7.5 重要
Network 		アップル tvOS
iOS
watchOS
visionos
iPadOS 		アップルのiPadOS等の複数製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2026-28959 2026-05-15 11:04 2026-05-11 Show GitHub Exploit DB Packet Storm
3425 4.6 警告
Physics 		アップル iOS
iPadOS 		アップルのiPadOS等の複数製品における認可されていない行為者への個人情報の漏えいに関する脆弱性 CWE-359
認可されていないアクターへの個人情報の漏えい 		CVE-2026-28963 2026-05-15 11:04 2026-05-11 Show GitHub Exploit DB Packet Storm
3426 4.9 警告
Network 		アップル iOS
iPadOS 		アップルのiPadOS等の複数製品におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-28967 2026-05-15 11:04 2026-05-11 Show GitHub Exploit DB Packet Storm
3427 4.3 警告
Network 		アップル visionos
iOS
iPadOS 		アップルのiPadOS等の複数製品におけるレンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限に関する脆弱性 CWE-1021
レンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限 		CVE-2026-28971 2026-05-15 11:04 2026-05-11 Show GitHub Exploit DB Packet Storm
3428 6.5 警告
Network 		アップル tvOS
iOS
watchOS
visionos
iPadOS 		アップルのiPadOS等の複数製品における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-28972 2026-05-15 11:04 2026-05-11 Show GitHub Exploit DB Packet Storm
3429 7.5 重要
Network 		- アップルのmacOSにおける複数の脆弱性 CWE-200
CWE-269
CVE-2026-28976 2026-05-15 11:04 2026-05-11 Show GitHub Exploit DB Packet Storm
3430 8.8 重要
Local 		- アップルのmacOSにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-28978 2026-05-15 11:04 2026-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
306471 6.5 MEDIUM
Network 		google blink Use after free vulnerability in documentloader in WebKit in Google Chrome before Blink M13 in DocumentWriter::replaceDocument function. CWE-416
 Use After Free 		CVE-2011-2353 2024-11-21 10:28 2019-11-8 Show GitHub Exploit DB Packet Storm
306472 7.2 HIGH
Network 		cisco telepresence_video_communication_server Cisco Video Communications Server (VCS) before X7.0.3 contains a command injection vulnerability which allows remote, authenticated attackers to execute arbitrary commands. CWE-74
Injection 		CVE-2011-2538 2024-11-21 10:28 2019-10-30 Show GitHub Exploit DB Packet Storm
306473 9.8 CRITICAL
Network 		apache
debian
redhat
canonical 		mod_perl
debian_linux
enterprise_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
ubuntu_linux 		mod_perl 2.0 through 2.0.10 allows attackers to execute arbitrary Perl code by placing it in a user-owned .htaccess file, because (contrary to the documentation) there is no configuration option that… CWE-94
Code Injection 		CVE-2011-2767 2024-11-21 10:28 2018-08-27 Show GitHub Exploit DB Packet Storm
306474 7.5 HIGH
Network 		pyro_project pyro pyro before 3.15 unsafely handles pid files in temporary directory locations and opening the pid file as root. An attacker can use this flaw to overwrite arbitrary files via symlinks. CWE-59
Link Following 		CVE-2011-2765 2024-11-21 10:28 2018-08-20 Show GitHub Exploit DB Packet Storm
306475 5.5 MEDIUM
Local 		rkkda foo2zjs foo2zjs before 20110722dfsg-3ubuntu1 as packaged in Ubuntu, 20110722dfsg-1 as packaged in Debian unstable, and 20090908dfsg-5.1+squeeze0 as packaged in Debian squeeze create temporary files insecurel… CWE-59
Link Following 		CVE-2011-2684 2024-11-21 10:28 2017-10-24 Show GitHub Exploit DB Packet Storm
306476 5.9 MEDIUM
Network 		reseed_project reseed reseed seeds random numbers from an insecure HTTP request to random.org during installation, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a man-in-the-… CWE-254
 7PK - Security Features 		CVE-2011-2683 2024-11-21 10:28 2017-10-24 Show GitHub Exploit DB Packet Storm
306477 - tribiq tribiq_cms The (1) templatewrap/templatefoot.php, (2) cmsjs/plugin.js.php, and (3) cmsincludes/cms_plugin_api_link.inc.php scripts in Tribal Tribiq CMS before 5.2.7c allow remote attackers to obtain sensitive i… CWE-200
Information Exposure 		CVE-2011-2727 2024-11-21 10:28 2014-12-30 Show GitHub Exploit DB Packet Storm
306478 - gnu glibc
eglibc 		Integer signedness error in Glibc before 2.13 and eglibc before 2.13, when using Supplemental Streaming SIMD Extensions 3 (SSSE3) optimization, allows context-dependent attackers to execute arbitrary… CWE-94
Code Injection 		CVE-2011-2702 2024-11-21 10:28 2014-10-28 Show GitHub Exploit DB Packet Storm
306479 - citrix access_gateway_plug-in Integer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Citrix Access Gateway Enterprise Edition Plug-in for Windows 9.x before 9.3-57.5 and 10.0 before 10.0-69.4 allow… CWE-189
Numeric Errors 		CVE-2011-2593 2024-11-21 10:28 2014-08-13 Show GitHub Exploit DB Packet Storm
306480 - citrix access_gateway_plug-in Heap-based buffer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Citrix Access Gateway Enterprise Edition Plug-in for Windows 9.x before 9.3-57.5 and 10.0 before 10.0-… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-2592 2024-11-21 10:28 2014-06-18 Show GitHub Exploit DB Packet Storm