Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5581	8.8	重要 Adjacent	フィリップス	Hue Bridge V2 ファームウェア	フィリップスのHue Bridge V2 ファームウェアにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-3556	2026-04-30 12:29	2026-03-16	Show	GitHub Exploit DB Packet Storm

5582	8	重要 Adjacent	フィリップス	Hue Bridge V2 ファームウェア	フィリップスのHue Bridge V2 ファームウェアにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-3557	2026-04-30 12:29	2026-03-16	Show	GitHub Exploit DB Packet Storm

5583	4.8	警告 Network	NSA	Emissary	NSAのEmissaryにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-35571	2026-04-30 12:29	2026-04-7	Show	GitHub Exploit DB Packet Storm

5584	8.1	重要 Adjacent	フィリップス	Hue Bridge V2 ファームウェア	フィリップスのHue Bridge V2 ファームウェアにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-3558	2026-04-30 12:29	2026-03-16	Show	GitHub Exploit DB Packet Storm

5585	8.1	重要 Adjacent	フィリップス	Hue Bridge V2 ファームウェア	フィリップスのHue Bridge V2 ファームウェアにおける暗号化処理のナンスおよび鍵ペアの再利用に関する脆弱性	CWE-323 暗号化処理のナンスおよび鍵ペアの再利用	CVE-2026-3559	2026-04-30 12:29	2026-03-16	Show	GitHub Exploit DB Packet Storm

5586	8.8	重要 Adjacent	フィリップス	Hue Bridge V2 ファームウェア	フィリップスのHue Bridge V2 ファームウェアにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-3560	2026-04-30 12:29	2026-03-16	Show	GitHub Exploit DB Packet Storm

5587	8	重要 Adjacent	フィリップス	Hue Bridge V2 ファームウェア	フィリップスのHue Bridge V2 ファームウェアにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-3561	2026-04-30 12:29	2026-03-16	Show	GitHub Exploit DB Packet Storm

5588	8.8	重要 Adjacent	フィリップス	Hue Bridge V2 ファームウェア	フィリップスのHue Bridge V2 ファームウェアにおけるデジタル署名の検証に関する脆弱性	CWE-347 デジタル署名の不適切な検証	CVE-2026-3562	2026-04-30 12:29	2026-03-16	Show	GitHub Exploit DB Packet Storm

5589	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-3689	2026-04-30 12:29	2026-04-11	Show	GitHub Exploit DB Packet Storm

5590	7.4	重要 Network	OpenClaw	OpenClaw	OpenClawにおける認証時の IP アドレスへの依存に関する脆弱性	CWE-291 認証時の IP アドレスへの依存	CVE-2026-3690	2026-04-30 12:29	2026-04-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
821	7.5	HIGH Network	-	-	CAI Content Credentials versions c2pa-web@0.7.1, c2pa-v0.80.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability. An attacker could exploit this vulnerability to crash the ap… New	CWE-190 Integer Overflow or Wraparound	CVE-2026-34711	2026-06-11 03:35	2026-06-10	Show	GitHub Exploit DB Packet Storm

822	7.5	HIGH Network	-	-	CAI Content Credentials versions c2pa-web@0.7.1, c2pa-v0.80.1 and earlier are affected by an Improper Input Validation vulnerability. An attacker could exploit this vulnerability to crash the applica… New	CWE-20 Improper Input Validation	CVE-2026-34712	2026-06-11 03:35	2026-06-10	Show	GitHub Exploit DB Packet Storm

823	7.5	HIGH Network	-	-	CAI Content Credentials versions c2pa-web@0.7.1, c2pa-v0.80.1 and earlier are affected by an Uncontrolled Resource Consumption vulnerability. An attacker could exploit this vulnerability to exhaust s… New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-34713	2026-06-11 03:35	2026-06-10	Show	GitHub Exploit DB Packet Storm

824	6.2	MEDIUM Local	-	-	CAI Content Credentials versions c2pa-web@0.7.1, c2pa-v0.80.1 and earlier are affected by an Uncontrolled Resource Consumption vulnerability. An attacker could exploit this vulnerability to exhaust s… New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-47902	2026-06-11 03:35	2026-06-10	Show	GitHub Exploit DB Packet Storm

825	6.2	MEDIUM Local	-	-	CAI Content Credentials versions c2pa-web@0.7.1, c2pa-v0.80.1 and earlier are affected by an Improper Input Validation vulnerability. An attacker could exploit this vulnerability to crash the applica… New	CWE-20 Improper Input Validation	CVE-2026-47903	2026-06-11 03:35	2026-06-10	Show	GitHub Exploit DB Packet Storm

826	6.2	MEDIUM Local	-	-	CAI Content Credentials versions c2pa-web@0.7.1, c2pa-v0.80.1 and earlier are affected by an Uncontrolled Resource Consumption vulnerability. An attacker could exploit this vulnerability to exhaust s… New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-47904	2026-06-11 03:35	2026-06-10	Show	GitHub Exploit DB Packet Storm

827	6.2	MEDIUM Local	-	-	CAI Content Credentials versions c2pa-web@0.7.1, c2pa-v0.80.1 and earlier are affected by an Uncontrolled Resource Consumption vulnerability. An attacker could exploit this vulnerability to exhaust s… New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-47905	2026-06-11 03:35	2026-06-10	Show	GitHub Exploit DB Packet Storm

828	7.3	HIGH Local	-	-	OS command injection in the NodejsFunction local bundling pipeline in aws-cdk-lib before 2.245.0 (2.246.0 on Windows) might allow an actor who controls the value of one or more bundling properties (e… New	CWE-78 OS Command	CVE-2026-11417	2026-06-11 03:35	2026-06-11	Show	GitHub Exploit DB Packet Storm

829	6.4	MEDIUM Network	-	-	The Animation Addons for Elementor – GSAP Powered Elementor Addons & Website Templates plugin for WordPress is vulnerable to DOM-Based Stored Cross-Site Scripting via the multiple parameters in all v… New	CWE-79 Cross-site Scripting	CVE-2025-8444	2026-06-11 03:35	2026-06-10	Show	GitHub Exploit DB Packet Storm

830	9.8	CRITICAL Network	-	-	The Doctreat Core plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.6.8. This is due to the doctreat_process_registration() function not properly rest… New	CWE-269 Improper Privilege Management	CVE-2025-6254	2026-06-11 03:35	2026-06-10	Show	GitHub Exploit DB Packet Storm