Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3511	7.5	重要 Network	マイクロソフト	Microsoft Outlook	Microsoft Outlook for iOS の改ざんの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-42893	2026-05-15 11:00	2026-05-12	Show	GitHub Exploit DB Packet Storm

3512	7.5	重要 Network	マイクロソフト	.NET	ASP.NET Core のサービス拒否の脆弱性	CWE-835 無限ループ	CVE-2026-42899	2026-05-15 11:00	2026-05-12	Show	GitHub Exploit DB Packet Storm

3513	8.6	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2026-43139	2026-05-15 11:00	2026-05-6	Show	GitHub Exploit DB Packet Storm

3514	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-43140	2026-05-15 11:00	2026-05-6	Show	GitHub Exploit DB Packet Storm

3515	7.1	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-43141	2026-05-15 11:00	2026-05-6	Show	GitHub Exploit DB Packet Storm

3516	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43142	2026-05-15 11:00	2026-05-6	Show	GitHub Exploit DB Packet Storm

3517	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43143	2026-05-15 11:00	2026-05-6	Show	GitHub Exploit DB Packet Storm

3518	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-43144	2026-05-15 10:59	2026-05-6	Show	GitHub Exploit DB Packet Storm

3519	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43145	2026-05-15 10:59	2026-05-6	Show	GitHub Exploit DB Packet Storm

3520	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43146	2026-05-15 10:59	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
306651	-	t-mobile busybox	tm-ac1900 busybox	The DHCP client (udhcpc) in BusyBox before 1.20.0 allows remote DHCP servers to execute arbitrary commands via shell metacharacters in the (1) HOST_NAME, (2) DOMAIN_NAME, (3) NIS_DOMAIN, and (4) TFTP…	CWE-20 Improper Input Validation	CVE-2011-2716	2024-11-21 10:28	2012-07-4	Show	GitHub Exploit DB Packet Storm

306652	-	gnome	gdk-pixbuf	The gdk_pixbuf__gif_image_load function in gdk-pixbuf/io-gif.c in gdk-pixbuf before 2.23.5 does not properly handle certain return values, which allows remote attackers to cause a denial of service (…	NVD-CWE-Other	CVE-2011-2485	2024-11-21 10:28	2012-07-4	Show	GitHub Exploit DB Packet Storm

306653	-	umich	libgssglue libgssapi	libgssapi and libgssglue before 0.4 do not properly check privileges, which allows local users to load untrusted configuration files and execute arbitrary code via the GSSAPI_MECH_CONF environment va…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-2709	2024-11-21 10:28	2012-06-22	Show	GitHub Exploit DB Packet Storm

306654	-	qemu	qemu	The change_process_uid function in os-posix.c in Qemu 0.14.0 and earlier does not properly drop group privileges when the -runas option is used, which allows local guest users to access restricted fi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-2527	2024-11-21 10:28	2012-06-22	Show	GitHub Exploit DB Packet Storm

306655	-	kvm_group	qemu-kvm	The virtio_queue_notify in qemu-kvm 0.14.0 and earlier does not properly validate the virtqueue number, which allows guest users to cause a denial of service (guest crash) and possibly execute arbitr…	CWE-20 Improper Input Validation	CVE-2011-2512	2024-11-21 10:28	2012-06-22	Show	GitHub Exploit DB Packet Storm

306656	-	cisco	spa8000_8-port_ip_telephony_gateway_firmware spa8000_8-port_ip_telephony_gateway spa8800_8-port_ip_telephony_gateway_firmware spa8800_ip_telephony_gateway spa2102_phone_adapter_with_route…	Cross-site scripting (XSS) vulnerability in the SIP implementation on the Cisco SPA8000 and SPA8800 before 6.1.11, SPA2102 and SPA3102 before 5.2.13, and SPA 500 series IP phones before 7.4.9 allows …	CWE-79 Cross-site Scripting	CVE-2011-2545	2024-11-21 10:28	2012-06-14	Show	GitHub Exploit DB Packet Storm

306657	-	linux	linux_kernel	Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (BUG_ON and system crash) via a crafted mremap system c…	CWE-189 Numeric Errors	CVE-2011-2496	2024-11-21 10:28	2012-06-13	Show	GitHub Exploit DB Packet Storm

306658	-	linux	linux_kernel	fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonst…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-2495	2024-11-21 10:28	2012-06-13	Show	GitHub Exploit DB Packet Storm

306659	-	linux	linux_kernel	kernel/taskstats.c in the Linux kernel before 3.1 allows local users to obtain sensitive I/O statistics by sending taskstats commands to a netlink socket, as demonstrated by discovering the length of…	CWE-200 Information Exposure	CVE-2011-2494	2024-11-21 10:28	2012-06-13	Show	GitHub Exploit DB Packet Storm

306660	-	linux	linux_kernel	The ext4_fill_super function in fs/ext4/super.c in the Linux kernel before 2.6.39 does not properly initialize a certain error-report data structure, which allows local users to cause a denial of ser…	NVD-CWE-Other	CVE-2011-2493	2024-11-21 10:28	2012-06-13	Show	GitHub Exploit DB Packet Storm