Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3701	9.3	緊急 Network	GeoVision	GV-IP Device Utility	GeoVisionのGV-IP Device Utilityにおける隠蔽によるセキュリティへの依存に関する脆弱性	CWE-656 隠蔽によるセキュリティへの依存	CVE-2026-7161	2026-05-7 11:31	2026-05-4	Show	GitHub Exploit DB Packet Storm

3702	6.1	警告 Network	GeoVision	GV-LPC2211 Firmware GV-LPC2011 Firmware	GeoVisionのGV-LPC2011 Firmware等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-7371	2026-05-7 11:31	2026-05-4	Show	GitHub Exploit DB Packet Storm

3703	9	緊急 Network	GeoVision	GV-VMS Firmware	GeoVisionのGV-VMS Firmwareにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-7372	2026-05-7 11:31	2026-05-4	Show	GitHub Exploit DB Packet Storm

3704	7.8	重要 Local	Zurich Instruments	LabOne Q	Zurich InstrumentsのLabOne Qにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-7584	2026-05-7 11:31	2026-05-1	Show	GitHub Exploit DB Packet Storm

3705	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	W308R Firmware	Shenzhen Tenda Technology Co.,Ltd.のW308R Firmwareにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2018-25316	2026-05-7 11:31	2026-04-29	Show	GitHub Exploit DB Packet Storm

3706	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	W3002R Firmware A302 Firmware W309R Firmware	Shenzhen Tenda Technology Co.,Ltd.のA302 Firmware等の複数製品におけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2018-25317	2026-05-7 11:31	2026-04-29	Show	GitHub Exploit DB Packet Storm

3707	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	FH303 Firmware A300 Firmware	Shenzhen Tenda Technology Co.,Ltd.のA300 Firmware等の複数製品におけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2018-25318	2026-05-7 11:31	2026-04-29	Show	GitHub Exploit DB Packet Storm

3708	9.8	緊急 Network	DeanWu (pylixm)	Django-mdeditor	DeanWu (pylixm)のDjango-mdeditorにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2025-13030	2026-05-7 11:31	2026-04-30	Show	GitHub Exploit DB Packet Storm

3709	7.8	重要 Local	The Qt Company	qtdeclarative	The Qt Companyのqtdeclarativeにおける複数の脆弱性	CWE-20 CWE-94 CWE-94	CVE-2025-14576	2026-05-7 11:30	2026-04-30	Show	GitHub Exploit DB Packet Storm

3710	6.4	警告 Local	レッドハット	OpenShift Update Service (OSUS)	レッドハットのOpenShift Update Service (OSUS)における不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2025-57854	2026-05-7 11:30	2026-04-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2501	8.3	HIGH Network	-	-	Integer overflow in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (…	CWE-472 External Control of Assumed-Immutable Web Parameter	CVE-2026-9998	2026-05-30 01:16	2026-05-29	Show	GitHub Exploit DB Packet Storm

2502	8.3	HIGH Network	-	-	Use after free in WebRTC in Google Chrome on Linux prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)	CWE-416 Use After Free	CVE-2026-9988	2026-05-30 01:16	2026-05-29	Show	GitHub Exploit DB Packet Storm

2503	8.3	HIGH Network	-	-	Integer overflow in XML in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HT…	CWE-472 External Control of Assumed-Immutable Web Parameter	CVE-2026-9966	2026-05-30 01:16	2026-05-29	Show	GitHub Exploit DB Packet Storm

2504	7.3	HIGH Network	-	-	A vulnerability was identified in KLiK SocialMediaWebsite 1.0. This issue affects some unknown processing of the component HTTP POST Request Parameter Handler. Such manipulation leads to injection. T…	CWE-74 CWE-707 Injection Improper Enforcement of Message or Data Structure	CVE-2026-9422	2026-05-30 01:16	2026-05-25	Show	GitHub Exploit DB Packet Storm

2505	-		-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid…	-	CVE-2026-9194	2026-05-30 01:16	2026-05-30	Show	GitHub Exploit DB Packet Storm

2506	7.3	HIGH Network	-	-	IO::Compress versions from 2.207 before 2.220 for Perl ship a zipdetails CLI tool that crashes with undefined subroutine on Info-ZIP Unix Extra Field with 8-byte UID or GID. When decode_ux() in bin/…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2026-48961	2026-05-30 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2507	7.5	HIGH Network	-	-	IO::Uncompress::Unzip versions before 2.220 for Perl allow CPU exhaustion via per-byte read loop in fastForward. fastForward() compares length $offset (the digit count of the offset, 1 to 19) agains…	CWE-407 Inefficient Algorithmic Complexity	CVE-2026-48959	2026-05-30 01:16	2026-05-27	Show	GitHub Exploit DB Packet Storm

2508	9.9	CRITICAL Network	-	-	Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite (component: Work Provider Site Level Administration). Supported versions that are affected are 12.2.3-12.2.15. Eas…	CWE-269 CWE-284 CWE-306 Improper Privilege Management Improper Access Control Missing Authentication for Critical Function	CVE-2026-46824	2026-05-30 01:16	2026-05-29	Show	GitHub Exploit DB Packet Storm

2509	7.7	HIGH Network	-	-	Vulnerability in the Oracle Public Sector Financials (International) product of Oracle E-Business Suite (component: Authorization). Supported versions that are affected are 12.2.6-12.2.15. Easily ex…	CWE-863 Incorrect Authorization	CVE-2026-46823	2026-05-30 01:16	2026-05-29	Show	GitHub Exploit DB Packet Storm

2510	9.9	CRITICAL Network	-	-	Vulnerability in the Oracle iAssets product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability all…	CWE-284 Improper Access Control	CVE-2026-46822	2026-05-30 01:16	2026-05-29	Show	GitHub Exploit DB Packet Storm