Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5561	7.5	重要 Network	PowerDNS	dnsdist	PowerDNSのdnsdistにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33254	2026-04-30 12:30	2026-04-22	Show	GitHub Exploit DB Packet Storm

5562	7.5	重要 Network	PowerDNS	PowerDNS Recursor	PowerDNSのPowerDNS Recursorにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33256	2026-04-30 12:30	2026-04-22	Show	GitHub Exploit DB Packet Storm

5563	7.5	重要 Network	PowerDNS	PowerDNS Recursor	PowerDNSのPowerDNS Recursorにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33258	2026-04-30 12:30	2026-04-22	Show	GitHub Exploit DB Packet Storm

5564	5	警告 Network	PowerDNS	PowerDNS Recursor	PowerDNSのPowerDNS Recursorにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33259	2026-04-30 12:30	2026-04-22	Show	GitHub Exploit DB Packet Storm

5565	5.9	警告 Network	PowerDNS	PowerDNS Recursor	PowerDNSのPowerDNS Recursorにおける完全性チェックの欠如に関する脆弱性	CWE-353 完全性チェックの欠如	CVE-2026-33261	2026-04-30 12:30	2026-04-22	Show	GitHub Exploit DB Packet Storm

5566	5.9	警告 Network	PowerDNS	PowerDNS Recursor	PowerDNSのPowerDNS RecursorにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-33262	2026-04-30 12:30	2026-04-22	Show	GitHub Exploit DB Packet Storm

5567	8.7	重要 Local	Linaro	OP-TEE Trusted OS	LinaroのOP-TEE Trusted OSにおける複数の脆弱性	CWE-125 CWE-787	CVE-2026-33317	2026-04-30 12:30	2026-04-24	Show	GitHub Exploit DB Packet Storm

5568	8.8	重要 Network	Actual Budget	Actual	Actual BudgetのActualにおける複数の脆弱性	CWE-284 CWE-862	CVE-2026-33318	2026-04-30 12:30	2026-04-24	Show	GitHub Exploit DB Packet Storm

5569	7.5	重要 Network	FirebirdSQL	Firebird	FirebirdSQLのFirebirdにおける複数の脆弱性	CWE-120 CWE-502	CVE-2026-33337	2026-04-30 12:30	2026-04-17	Show	GitHub Exploit DB Packet Storm

5570	4.9	警告 Network	PowerDNS	PowerDNS Recursor	PowerDNSのPowerDNS RecursorにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-33600	2026-04-30 12:30	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
901	-		-	-	Insufficient input validation in NETGEAR JR6150 (AC750 WiFi Router 802.11ac Dual Band Gigabit released in 2014) allows users connected to the local WiFi Networks to execute operating system commands.… Update	CWE-20 Improper Input Validation	CVE-2026-0419	2026-06-11 02:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

902	-		-	-	Insufficient configuration management in the listed devices allows authenticated administrators connected to the local network to tamper with the system. Update	CWE-15 External Control of System or Configuration Setting	CVE-2026-0418	2026-06-11 02:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

903	4.0	MEDIUM Network	-	-	Dräger Atlan A350 versions 1.00 up to and including 1.01 contains an improper input handling vulnerability that allows attackers to cause a denial of service by sending specifically crafted non-Medib… Update	CWE-1286 Improper Validation of Syntactic Correctness of Input	CVE-2021-4479	2026-06-11 02:16	2026-06-3	Show	GitHub Exploit DB Packet Storm

904	7.9	HIGH Local	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. Update	CWE-1329 Reliance on Component That is Not Updateable	CVE-2026-48573	2026-06-11 02:15	2026-06-10	Show	GitHub Exploit DB Packet Storm

905	6.8	MEDIUM Physics	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack. Update	CWE-306 Missing Authentication for Critical Function	CVE-2026-50507	2026-06-11 01:33	2026-06-10	Show	GitHub Exploit DB Packet Storm

906	6.5	MEDIUM Network	-	-	Silverpeas through 6.4.6 mishandles the "Personal space" feature that is selected when no componentId is set. New	CWE-36 Absolute Path Traversal	CVE-2026-53698	2026-06-11 01:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

907	-		-	-	Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in Nomachine allows Argument Injection.This issue affects Nomachine: before 9.5.7, before 8.23.2. New	CWE-88 Argument Injection	CVE-2026-53694	2026-06-11 01:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

908	-		-	-	A stored cross-site scripting vulnerability existed in MISP BSimVis tag rendering code. Several client-side rendering paths interpolated tag names, collection names, entity identifiers, cluster names… New	CWE-79 CWE-116 Cross-site Scripting Improper Encoding or Escaping of Output	CVE-2026-53693	2026-06-11 01:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

909	9.6	CRITICAL Network	-	-	A flaw was found in migration-planner. The agent-API middleware processes JSON Web Tokens (JWTs) for authentication, but its UpdateSourceInventory and UpdateAgentStatus handlers fail to validate the … New	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-53471	2026-06-11 01:17	2026-06-11	Show	GitHub Exploit DB Packet Storm

910	-		-	-	Stack-based Buffer Overflow vulnerability in Erlang OTP (erl_interface) allows Stack-based Buffer Overflow. This vulnerability is associated with program file lib/erl_interface/src/misc/ei_printterm… New	CWE-121 Stack-based Buffer Overflow	CVE-2026-49760	2026-06-11 01:17	2026-06-11	Show	GitHub Exploit DB Packet Storm