Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3591	5.4	警告 Network	Outlook.com	Microsoft Edge Chromium	Microsoft Edge (Chromium ベース) の特権の昇格の脆弱性	CWE-74 インジェクション	CVE-2026-42838	2026-05-18 12:14	2026-05-12	Show	GitHub Exploit DB Packet Storm

3592	6.5	警告 Network	Outlook.com	Microsoft Edge Chromium	Microsoft Edge (Chromium ベース) for Android のスプーフィングの脆弱性	CWE-451 ユーザインターフェースにおける重要情報の誤った表示	CVE-2026-42891	2026-05-18 12:14	2026-05-12	Show	GitHub Exploit DB Packet Storm

3593	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025	Windows DWM Core ライブラリの特権の昇格の脆弱性	CWE-122 CWE-190	CVE-2026-42896	2026-05-18 12:13	2026-05-12	Show	GitHub Exploit DB Packet Storm

3594	9.9	緊急 Network	マイクロソフト	Microsoft Dynamics 365	Microsoft Dynamics 365 オンプレミスのリモートでコードが実行される脆弱性	CWE-94 コード・インジェクション	CVE-2026-42898	2026-05-18 12:13	2026-05-12	Show	GitHub Exploit DB Packet Storm

3595	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける二重解放に関する脆弱性	CWE-415 二重解放	CVE-2026-43097	2026-05-18 12:13	2026-05-6	Show	GitHub Exploit DB Packet Storm

3596	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-Other その他	CVE-2026-43098	2026-05-18 12:13	2026-05-6	Show	GitHub Exploit DB Packet Storm

3597	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43285	2026-05-18 12:13	2026-05-8	Show	GitHub Exploit DB Packet Storm

3598	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43290	2026-05-18 12:13	2026-05-8	Show	GitHub Exploit DB Packet Storm

3599	8.3	重要 Adjacent	Linux	Linux Kernel	LinuxのLinux Kernelにおける初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2026-43291	2026-05-18 12:13	2026-05-8	Show	GitHub Exploit DB Packet Storm

3600	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43292	2026-05-18 12:13	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
305921	7.5	HIGH Network	abrt_project fedoraproject redhat	abrt fedora enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation	ABRT might allow attackers to obtain sensitive information from crash reports.	CWE-200 Information Exposure	CVE-2011-4088	2024-11-21 10:31	2020-02-1	Show	GitHub Exploit DB Packet Storm

305922	6.1	MEDIUM Network	jara_project	jara	Jara 1.6 has an XSS vulnerability	CWE-79 Cross-site Scripting	CVE-2011-4095	2024-11-21 10:31	2020-01-22	Show	GitHub Exploit DB Packet Storm

305923	9.8	CRITICAL Network	jara_project	jara	Jara 1.6 has a SQL injection vulnerability.	CWE-89 SQL Injection	CVE-2011-4094	2024-11-21 10:31	2020-01-22	Show	GitHub Exploit DB Packet Storm

305924	9.8	CRITICAL Network	ruby-lang	ruby	The OpenSSL extension of Ruby (Git trunk) versions after 2011-09-01 up to 2011-11-03 always generated an exponent value of '1' to be used for private RSA key generation. A remote attacker could use t…	CWE-326 Inadequate Encryption Strength	CVE-2011-4121	2024-11-21 10:31	2019-11-26	Show	GitHub Exploit DB Packet Storm

305925	9.8	CRITICAL Network	yubico debian	pam_module debian_linux	Yubico PAM Module before 2.10 performed user authentication when 'use_first_pass' PAM configuration option was not used and the module was configured as 'sufficient' in the PAM configuration. A remot…	CWE-20 Improper Input Validation	CVE-2011-4120	2024-11-21 10:31	2019-11-26	Show	GitHub Exploit DB Packet Storm

305926	6.1	MEDIUM Network	s9y	serendipity	Serendipity before 1.6 has an XSS issue in the karma plugin which may allow privilege escalation.	CWE-79 Cross-site Scripting	CVE-2011-4090	2024-11-21 10:31	2019-11-26	Show	GitHub Exploit DB Packet Storm

305927	7.5	HIGH Network	phpldapadmin_project debian	phpldapadmin debian_linux	A local file inclusion flaw was found in the way the phpLDAPadmin before 0.9.8 processed certain values of the "Accept-Language" HTTP header. A remote attacker could use this flaw to cause a denial o…	CWE-400 Uncontrolled Resource Consumption	CVE-2011-4082	2024-11-21 10:31	2019-11-26	Show	GitHub Exploit DB Packet Storm

305928	5.9	MEDIUM Network	openstack	nova	OpenStack Nova before 2012.1 allows someone with access to an EC2_ACCESS_KEY (equivalent to a username) to obtain the EC2_SECRET_KEY (equivalent to a password). Exposing the EC2_ACCESS_KEY via http o…	CWE-200 Information Exposure	CVE-2011-4076	2024-11-21 10:31	2019-11-26	Show	GitHub Exploit DB Packet Storm

305929	9.8	CRITICAL Network	apache redhat	struts jboss_enterprise_web_server	Apache Struts before 2.3.1.2 allows remote attackers to bypass security protections in the ParameterInterceptor class and execute arbitrary commands.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2011-3923	2024-11-21 10:31	2019-11-1	Show	GitHub Exploit DB Packet Storm

305930	9.8	CRITICAL Network	opensuse	open_build_service	A vulnerability in open build service allows remote attackers to upload arbitrary RPM files. Affected releases are SUSE open build service prior to 2.1.16.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2011-4183	2024-11-21 10:31	2018-06-13	Show	GitHub Exploit DB Packet Storm