Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1	-	-	（複数のベンダ）	（複数の製品）	Securly Chrome Extensionにおける複数の脆弱性 New	-	-	2026-06-5 13:34	2026-06-4	Show	GitHub Exploit DB Packet Storm

2	6.7	警告 Adjacent	TP-Link Systems Inc.	Tapo P300 Tapo L535E Tapo D100C	複数のTP-LINK製品における重要情報の平文送信の脆弱性 New	CWE-Other その他	CVE-2026-34126	2026-06-5 12:08	2026-06-5	Show	GitHub Exploit DB Packet Storm

3	9.8	緊急 Network	deltasql Project	deltasql	deltasql Projectのdeltasqlにおける重要な機能に対する認証の欠如に関する脆弱性 New	CWE-306 重要な機能に対する認証の欠如解説	CVE-2018-25412	2026-06-5 10:52	2026-05-30	Show	GitHub Exploit DB Packet Storm

4	7.5	重要 Network	WinMTR	WinMTR	WinMTRにおける古典的バッファオーバーフローの脆弱性 New	CWE-120 古典的バッファオーバーフロー	CVE-2018-25426	2026-06-5 10:52	2026-05-30	Show	GitHub Exploit DB Packet Storm

5	7.8	重要 Local	4mhz	Base64 Decoder	4mhzのBase64 Decoderにおける境界外書き込みに関する脆弱性 New	CWE-787 境界外書き込み	CVE-2019-25634	2026-06-5 10:52	2026-03-24	Show	GitHub Exploit DB Packet Storm

6	7.8	重要 Local	Google	Android XR	GoogleのAndroid XRにおける認可に関する脆弱性 New	CWE-285 不適切な認可	CVE-2026-0072	2026-06-5 10:52	2026-06-1	Show	GitHub Exploit DB Packet Storm

7	9.8	緊急 Network	TRENDnet	TEW-432BRP Firmware	TRENDnetのTEW-432BRP Firmwareにおける複数の脆弱性 New	CWE-74 CWE-77	CVE-2026-10060	2026-06-5 10:52	2026-05-29	Show	GitHub Exploit DB Packet Storm

8	9.8	緊急 Network	TRENDnet	TEW-432BRP Firmware	TRENDnetのTEW-432BRP Firmwareにおける複数の脆弱性 New	CWE-74 CWE-77	CVE-2026-10061	2026-06-5 10:52	2026-05-29	Show	GitHub Exploit DB Packet Storm

9	9.8	緊急 Network	TRENDnet	TEW-432BRP Firmware	TRENDnetのTEW-432BRP Firmwareにおける複数の脆弱性 New	CWE-119 CWE-121	CVE-2026-10062	2026-06-5 10:52	2026-05-29	Show	GitHub Exploit DB Packet Storm

10	9.8	緊急 Network	TRENDnet	TEW-432BRP Firmware	TRENDnetのTEW-432BRP Firmwareにおける複数の脆弱性 New	CWE-119 CWE-121	CVE-2026-10063	2026-06-5 10:52	2026-05-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
310841	9.8	CRITICAL Network	dataprobe	ibootbar_firmware	Dataprobe iBootBar (with 2007-09-20 and possibly later beta firmware) allows remote attackers to bypass authentication, and conduct power-cycle attacks on connected devices, via a DCCOOKIE cookie.	CWE-287 Improper Authentication	CVE-2007-6760	2024-11-21 09:40	2017-04-8	Show	GitHub Exploit DB Packet Storm

310842	9.8	CRITICAL Network	dataprobe	ibootbar_firmware	Dataprobe iBootBar (with 2007-09-20 and possibly later released firmware) allows remote attackers to bypass authentication, and conduct power-cycle attacks on connected devices, via a DCRABBIT cookie.	CWE-287 Improper Authentication	CVE-2007-6759	2024-11-21 09:40	2017-04-8	Show	GitHub Exploit DB Packet Storm

310843	-		gehealthcare	centricity_dms_firmware	GE Healthcare Centricity DMS 4.2, 4.1, and 4.0 has a password of Muse!Admin for the Museadmin user, which has unspecified impact and attack vectors. NOTE: it is not clear whether this password is de…	CWE-255 Credentials Management	CVE-2007-6757	2024-11-21 09:40	2015-08-4	Show	GitHub Exploit DB Packet Storm

310844	-		zoll	monitor\/defibrillator	ZOLL Defibrillator / Monitor M Series, E Series, and R Series have a default password for System Configuration mode, which allows physically proximate attackers to modify device configuration and cau…	CWE-255 Credentials Management	CVE-2007-6756	2024-11-21 09:40	2014-08-13	Show	GitHub Exploit DB Packet Storm

310845	-		dell	bsafe_crypto-c-micro-edition bsafe_crypto-j	The NIST SP 800-90A default statement of the Dual Elliptic Curve Deterministic Random Bit Generation (Dual_EC_DRBG) algorithm contains point Q constants with a possible relationship to certain "skele…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2007-6755	2024-11-21 09:40	2013-10-12	Show	GitHub Exploit DB Packet Storm

310846	-		canonical	telepathy-idle ubuntu_linux	telepathy-idle before 0.1.15 does not verify (1) that the issuer is a trusted CA, (2) that the server hostname matches a domain name in the subject's Common Name (CN), or (3) the expiration date of t…	CWE-20 Improper Input Validation	CVE-2007-6746	2024-11-21 09:40	2013-05-22	Show	GitHub Exploit DB Packet Storm

310847	-		freebsd netbsd	freebsd netbsd	The ipalloc function in libc/stdlib/malloc.c in jemalloc in libc for FreeBSD 6.4 and NetBSD does not properly allocate memory, which makes it easier for context-dependent attackers to perform memory-…	CWE-189 Numeric Errors	CVE-2007-6754	2024-11-21 09:40	2012-07-26	Show	GitHub Exploit DB Packet Storm

310848	-		microsoft	windows_2000 windows_server_2008 windows_vista windows_7 windows_xp	Untrusted search path vulnerability in Shell32.dll in Microsoft Windows 2000, Windows XP, Windows Vista, Windows Server 2008, and Windows 7, when using an environment configured with a string such as…	NVD-CWE-Other	CVE-2007-6753	2024-11-21 09:40	2012-03-29	Show	GitHub Exploit DB Packet Storm

310849	-		drupal	drupal	Cross-site request forgery (CSRF) vulnerability in Drupal 7.12 and earlier allows remote attackers to hijack the authentication of arbitrary users for requests that end a session via the user/logout …	CWE-352 Origin Validation Error	CVE-2007-6752	2024-11-21 09:40	2012-03-28	Show	GitHub Exploit DB Packet Storm

310850	-		flexerasoftware	installshield	Flexera Macrovision InstallShield before 2008 sends a digital-signature password to an unintended application during certain signature operations involving .spc and .pvk files, which might allow loca…	CWE-200 Information Exposure	CVE-2007-6744	2024-11-21 09:40	2012-01-20	Show	GitHub Exploit DB Packet Storm