Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4721	5.4	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41909	2026-04-30 10:58	2026-04-23	Show	GitHub Exploit DB Packet Storm

4722	8.8	重要 Network	GitHub	Enterprise Server	GitHubのEnterprise Serverにおける不正な正規表現に関する脆弱性	CWE-185 不正な正規表現	CVE-2026-4296	2026-04-30 10:58	2026-04-21	Show	GitHub Exploit DB Packet Storm

4723	8.8	重要 Network	Kubernetes	ingress-nginx	Kubernetesのingress-nginxにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-4342	2026-04-30 10:58	2026-03-19	Show	GitHub Exploit DB Packet Storm

4724	6.5	警告 Network	レッドハット libarchive	Red Hat OpenShift Container Platform Red Hat Enterprise Linux Red Hat Hardened Images libarchive	libarchive等の複数ベンダの製品における整数への不適切なビットシフトに関する脆弱性	CWE-1335 整数への不適切なビットシフト	CVE-2026-4426	2026-04-30 10:58	2026-03-19	Show	GitHub Exploit DB Packet Storm

4725	7.2	重要 Network	GitHub	Enterprise Server	GitHubのEnterprise ServerにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-4821	2026-04-30 10:58	2026-04-21	Show	GitHub Exploit DB Packet Storm

4726	7.5	重要 Network	OpenBMB	XAgent	OpenBMBのXAgentにおける複数の脆弱性	CWE-287 CWE-306	CVE-2026-4959	2026-04-30 10:58	2026-03-27	Show	GitHub Exploit DB Packet Storm

4727	5.5	警告 Local	レッドハット	KVM Windows virtio ドライバ Red Hat Enterprise Linux	レッドハットのRed Hat Enterprise Linux等の複数製品における古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2026-5164	2026-04-30 10:58	2026-03-30	Show	GitHub Exploit DB Packet Storm

4728	7.8	重要 Local	レッドハット	KVM Windows virtio ドライバ Red Hat Enterprise Linux	レッドハットのRed Hat Enterprise Linux等の複数製品における期限切れのポインタデリファレンスに関する脆弱性	CWE-825 期限切れのポインタデリファレンス	CVE-2026-5165	2026-04-30 10:58	2026-03-30	Show	GitHub Exploit DB Packet Storm

4729	8.1	重要 Network	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける整数アンダーフローの脆弱性	CWE-191 整数アンダーフロー	CVE-2026-5188	2026-04-30 10:58	2026-04-10	Show	GitHub Exploit DB Packet Storm

4730	8	重要 Adjacent	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-5295	2026-04-30 10:58	2026-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1161	-		-	-	FlexRIC v2.0.0 contains reachable assert(0) calls in stub message handlers for whitelisted but unimplemented E2AP message types in the near-RT RIC. A remote unauthenticated attacker can send a decoda…	-	CVE-2026-37227	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

1162	-		-	-	An issue in ESA AnomalyMatch before 1.3.1 allow attackers to execute arbitrary code via crafted model checkpoint files. The affected components load model files from session directories using torch.l…	-	CVE-2026-38950	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

1163	5.5	MEDIUM Network	portainer	portainer	Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …	CWE-22 Path Traversal	CVE-2026-44885	2026-06-2 03:08	2026-05-29	Show	GitHub Exploit DB Packet Storm

1164	6.5	MEDIUM Network	portainer	portainer	Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …	CWE-862 Missing Authorization	CVE-2026-44884	2026-06-2 03:07	2026-05-29	Show	GitHub Exploit DB Packet Storm

1165	4.0	MEDIUM Network	-	-	A misconfigured Content Security Policy (CSP) in HCL BigFix Remote Control Server WebUI (versions 10.1.0.0442 and earlier) fails to define directives without fallbacks, allowing attackers to bypass i…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2026-21785	2026-06-2 03:04	2026-05-28	Show	GitHub Exploit DB Packet Storm

1166	7.5	HIGH Network	-	-	The Rocket.Chat DDP method autoTranslate.translateMessage in versions <8.5.0, <8.4.2, <8.3.4, <8.2.4, <8.1.5, <8.0.5, <7.13.8, and <7.10.12 accepts a client-supplied IMessage object and passes it dir…	CWE-284 Improper Access Control	CVE-2026-32995	2026-06-2 03:04	2026-05-28	Show	GitHub Exploit DB Packet Storm

1167	8.1	HIGH Network	portainer	portainer	Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before …	CWE-863 Incorrect Authorization	CVE-2026-44882	2026-06-2 03:03	2026-05-29	Show	GitHub Exploit DB Packet Storm

1168	6.3	MEDIUM Network	-	-	A race condition in the shared Extreme Platform ONE IAM Gateway API-key authentication path could, under specific high-concurrency traffic conditions, intermittently allow requests authenticated with…	CWE-362 CWE-488 Race Condition Exposure of Data Element to Wrong Session	CVE-2026-9831	2026-06-2 03:02	2026-05-30	Show	GitHub Exploit DB Packet Storm

1169	6.3	MEDIUM Network	-	-	Missing authentication and clear‑text transmission of data from the heat pumps to the control server, combined with the absence of input validation on aggregated data, can lead to stored XSS that ena…	CWE-79 CWE-306 CWE-319 Cross-site Scripting Missing Authentication for Critical Function Cleartext Transmission of Sensitive Information	CVE-2026-25599	2026-06-2 03:02	2026-06-1	Show	GitHub Exploit DB Packet Storm

1170	6.4	MEDIUM Local	-	-	The PDBM application relies on a static, hard‑coded secret embedded in the PDBM.exe executable. This secret is used by the application’s encryption routines, including the function responsible for …	CWE-798 Use of Hard-coded Credentials	CVE-2026-25600	2026-06-2 03:02	2026-06-1	Show	GitHub Exploit DB Packet Storm