Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
91 7.2 重要
Network 		Apache Software Foundation APISIX Apache Software FoundationのAPISIXにおけるオープンリダイレクトの脆弱性 New CWE-601
オープンリダイレクト 		CVE-2026-48895 2026-06-26 11:56 2026-06-19 Show GitHub Exploit DB Packet Storm
92 5.3 警告
Network 		markdown-it project markdown-it markdown-it projectのmarkdown-itにおけるリソースの枯渇に関する脆弱性 New CWE-400
リソースの枯渇 		CVE-2026-48988 2026-06-26 11:56 2026-06-17 Show GitHub Exploit DB Packet Storm
93 9.1 緊急
Network 		Apache Software Foundation APISIX Apache Software FoundationのAPISIXにおけるデータの整合性検証不備に関する脆弱性 New CWE-354
データの整合性検証不備 		CVE-2026-49230 2026-06-26 11:56 2026-06-19 Show GitHub Exploit DB Packet Storm
94 5.4 警告
Network 		Apache Software Foundation APISIX Apache Software FoundationのAPISIXにおけるスプーフィングによる認証回避に関する脆弱性 New CWE-290
スプーフィングによる認証回避 		CVE-2026-49231 2026-06-26 11:56 2026-06-19 Show GitHub Exploit DB Packet Storm
95 3.3
Local 		pypdf project pypdf pypdf projectのpypdfにおけるアルゴリズムの複雑さに関する脆弱性 New CWE-407
アルゴリズムの複雑性 		CVE-2026-49460 2026-06-26 11:56 2026-06-22 Show GitHub Exploit DB Packet Storm
96 5.5 警告
Local 		pypdf project pypdf pypdf projectのpypdfにおけるリソースの枯渇に関する脆弱性 New CWE-400
リソースの枯渇 		CVE-2026-49461 2026-06-26 11:56 2026-06-22 Show GitHub Exploit DB Packet Storm
97 9.8 緊急
Network 		litellm litellm LiteLLMにおけるスプーフィングによる認証回避に関する脆弱性 New CWE-290
スプーフィングによる認証回避 		CVE-2026-49468 2026-06-26 11:56 2026-06-22 Show GitHub Exploit DB Packet Storm
98 5.4 警告
Network 		Eclipse Foundation Eclipse Open VSX Eclipse FoundationのEclipse Open VSXにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-4983 2026-06-26 11:56 2026-06-23 Show GitHub Exploit DB Packet Storm
99 9.3 緊急
Network 		Apache Software Foundation APISIX Apache Software FoundationのAPISIXにおけるクロスサイトリクエストフォージェリの脆弱性 New CWE-352
同一生成元ポリシー違反 		CVE-2026-49871 2026-06-26 11:56 2026-06-19 Show GitHub Exploit DB Packet Storm
100 8.1 重要
Network 		Apache Software Foundation APISIX Apache Software FoundationのAPISIXにおける認証に関する脆弱性 New CWE-287
不適切な認証 		CVE-2026-49872 2026-06-26 11:56 2026-06-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4011 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: clk: qcom: gfx3d: add parent to parent request map After commit d228ece36345 ("clk: divider: remove round_rate() in favor of dete… NVD-CWE-noinfo
CVE-2026-46247 2026-06-10 05:36 2026-06-4 Show GitHub Exploit DB Packet Storm
4012 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_lbc: Fix use-after-free for extcon in IRQ handler Using the `devm_` variant for requesting IRQ _before_ the… CWE-416
 Use After Free 		CVE-2026-46246 2026-06-10 05:36 2026-06-4 Show GitHub Exploit DB Packet Storm
4013 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix dc_link NULL handling in HPD init amdgpu_dm_hpd_init() may see connectors without a valid dc_link. The code… CWE-476
 NULL Pointer Dereference 		CVE-2026-46245 2026-06-10 05:36 2026-06-4 Show GitHub Exploit DB Packet Storm
4014 9.1 CRITICAL
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: Fix IPv6 inner_thoff desync In nft_inner_parse_l2l3(), when processing inner IPv6 packets, ipv6_find_hdr() … NVD-CWE-noinfo
CVE-2026-46244 2026-06-10 05:35 2026-06-4 Show GitHub Exploit DB Packet Storm
4015 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Recover from panthor_gpu_flush_caches() failures We have seen a few cases where the whole memory subsystem is blocke… NVD-CWE-noinfo
CVE-2025-71314 2026-06-10 05:35 2026-06-4 Show GitHub Exploit DB Packet Storm
4016 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Add missing NULL check for alloc_workqueue() alloc_workqueue() can return NULL on memory allocation failure. Witho… CWE-476
 NULL Pointer Dereference 		CVE-2025-71313 2026-06-10 05:35 2026-06-4 Show GitHub Exploit DB Packet Storm
4017 7.5 HIGH
Network 		- - Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow in the webAuthUserInfo parameter of the formAddWebAuthUser function. This vulnerability allows att… CWE-121
Stack-based Buffer Overflow 		CVE-2026-36823 2026-06-10 05:16 2026-06-10 Show GitHub Exploit DB Packet Storm
4018 7.5 HIGH
Network 		- - Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain a stack overflow in the wl_radio parameter of the formwrlSSIDset function. This vulnerability allo… CWE-121
Stack-based Buffer Overflow 		CVE-2026-36771 2026-06-10 05:16 2026-06-10 Show GitHub Exploit DB Packet Storm
4019 7.5 HIGH
Network 		- - Shenzhen Tenda Technology Co., Ltd Tenda US_W3V1.0BR v1.0.0.3 was discovered to contain a stack overflow in the Go parameter of the ask_to_reboot function. This vulnerability allows attackers to caus… CWE-121
Stack-based Buffer Overflow 		CVE-2026-36770 2026-06-10 05:16 2026-06-10 Show GitHub Exploit DB Packet Storm
4020 7.2 HIGH
Network 		- - A flaw was found in Keycloak. A limited administrator can exploit an improper access control vulnerability in the POST /admin/realms/{realm}/partialImport endpoint. This allows them to bypass Fine-Gr… CWE-863
 Incorrect Authorization 		CVE-2026-11577 2026-06-10 05:16 2026-06-8 Show GitHub Exploit DB Packet Storm