Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
991 8.8 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-8975 2026-05-22 10:51 2026-05-19 Show GitHub Exploit DB Packet Storm
992 3.3
Local 		Siber Systems Inc. RoboForm Password Manager Androidアプリ「パスワード管理 ロボフォーム」のintent処理における検証不備の脆弱性 CWE-357
危険な操作に対する不十分な警告 		CVE-2026-47782 2026-05-21 16:37 2026-05-20 Show GitHub Exploit DB Packet Storm
993 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年05月19日) - - 2026-05-21 16:17 2026-05-20 Show GitHub Exploit DB Packet Storm
994 6.1 警告
Network 		Northern.tech cfengine Northern.techのcfengineにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-24710 2026-05-21 10:55 2026-05-14 Show GitHub Exploit DB Packet Storm
995 5.3 警告
Network 		Northern.tech cfengine Northern.techのcfengineにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-24711 2026-05-21 10:55 2026-05-14 Show GitHub Exploit DB Packet Storm
996 7.3 重要
Network 		Northern.tech cfengine Northern.techのcfengineにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-24712 2026-05-21 10:55 2026-05-14 Show GitHub Exploit DB Packet Storm
997 9.8 緊急
Network 		Open JS Foundation WebdriverIO Open JS FoundationのWebdriverIOにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-25244 2026-05-21 10:55 2026-05-18 Show GitHub Exploit DB Packet Storm
998 6.5 警告
Network 		マイクロソフト Power Automate for Desktop Microsoft Power Automate デスクトップの情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2026-40374 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
999 7.8 重要
Local 		protobufjs project protobufjs-cli protobufjs projectのprotobufjs-cliにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-42290 2026-05-21 10:55 2026-05-13 Show GitHub Exploit DB Packet Storm
1000 6.1 警告
Network 		beaugunderson ip-address beaugundersonのip-addressにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42338 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
319201 - - - VTiger CRM <= 8.1.0 does not properly sanitize user input before using it in a SQL statement, leading to a SQL Injection in the "CompanyDetails" operation of the "MailManager" module. - CVE-2024-42994 2024-08-19 22:00 2024-08-17 Show GitHub Exploit DB Packet Storm
319202 - - - A Command Injection vulnerability exists in formWriteFacMac of the httpd binary in Tenda AC9 v15.03.06.42. As a result, attacker can execute OS commands with root privileges. - CVE-2024-42634 2024-08-19 22:00 2024-08-17 Show GitHub Exploit DB Packet Storm
319203 - - - When performing an online tag generation to devices which communicate using the ControlLogix protocol, a machine-in-the-middle, or a device that is not configured correctly, could deliver a respons… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2024-6098 2024-08-19 22:00 2024-08-17 Show GitHub Exploit DB Packet Storm
319204 6.5 MEDIUM
Adjacent 		- - A denial-of-service vulnerability was reported in some Lenovo printers that could allow an unauthenticated attacker on a shared network to deny printer connections until the system is rebooted. - CVE-2024-6004 2024-08-19 22:00 2024-08-17 Show GitHub Exploit DB Packet Storm
319205 6.5 MEDIUM
Adjacent 		- - A denial-of-service vulnerability was reported in some Lenovo printers that could allow an unauthenticated attacker on a shared network to prevent printer services from being reachable until the syst… - CVE-2024-5210 2024-08-19 22:00 2024-08-17 Show GitHub Exploit DB Packet Storm
319206 6.5 MEDIUM
Adjacent 		- - A denial-of-service vulnerability was reported in some Lenovo printers that could allow an unauthenticated attacker on a shared network to deny printing capabilities until the system is rebooted. - CVE-2024-5209 2024-08-19 22:00 2024-08-17 Show GitHub Exploit DB Packet Storm
319207 6.5 MEDIUM
Adjacent 		- - A denial-of-service vulnerability was reported in some Lenovo printers that could allow an unauthenticated attacker on a shared network to disrupt the printer's functionality until a manual system re… - CVE-2024-4782 2024-08-19 22:00 2024-08-17 Show GitHub Exploit DB Packet Storm
319208 6.5 MEDIUM
Adjacent 		- - A denial-of-service vulnerability was reported in some Lenovo printers that could allow an unauthenticated attacker on a shared network to crash printer communications until the system is rebooted. - CVE-2024-4781 2024-08-19 22:00 2024-08-17 Show GitHub Exploit DB Packet Storm
319209 7.8 HIGH
Local 		- - An insecure driver vulnerability was reported in Lenovo Display Control Center (LDCC) and Lenovo Accessories and Display Manager (LADM) that could allow a local attacker to escalate privileges to k… - CVE-2024-4763 2024-08-19 22:00 2024-08-17 Show GitHub Exploit DB Packet Storm
319210 - - - Cilium is a networking, observability, and security solution with an eBPF-based dataplane. In versions on the 1.15.x branch prior to 1.15.8 and the 1.16.x branch prior to 1.16.1, ReferenceGrant chang… - CVE-2024-42486 2024-08-19 22:00 2024-08-17 Show GitHub Exploit DB Packet Storm