Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1001 7.6 重要
Network 		PocketBase PocketBase PocketBaseにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-44166 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
1002 7.2 重要
Network 		German Cancer Research Center (DKFZ) nnU-Net German Cancer Research Center (DKFZ)のnnU-Netにおけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2026-44246 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
1003 8.7 重要
Network 		protobufjs project protobufjs-cli protobufjs projectのprotobufjs-cliにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-44295 2026-05-21 10:55 2026-05-13 Show GitHub Exploit DB Packet Storm
1004 9.8 緊急
Network 		WGDashboard WGDashboard WGDashboardにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-44343 2026-05-21 10:55 2026-05-12 Show GitHub Exploit DB Packet Storm
1005 8.8 重要
Network 		Tabby Tabby TabbyにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-45035 2026-05-21 10:55 2026-05-15 Show GitHub Exploit DB Packet Storm
1006 7 重要
Local 		Tabby Tabby TabbyにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-45036 2026-05-21 10:55 2026-05-15 Show GitHub Exploit DB Packet Storm
1007 7.1 重要
Network 		Tabby Tabby Tabbyにおける複数の脆弱性 CWE-184
CWE-601
CVE-2026-45037 2026-05-21 10:55 2026-05-15 Show GitHub Exploit DB Packet Storm
1008 7.8 重要
Local 		Tabby Tabby Tabbyにおけるエスケープ、メタ、またはコントロールシーケンスの不適切な無効化に関する脆弱性 CWE-150
エスケープ、メタ、またはコントロールシーケンスの不適切な無効化 		CVE-2026-45038 2026-05-21 10:54 2026-05-15 Show GitHub Exploit DB Packet Storm
1009 9.8 緊急
Network 		Zeit, Inc. Turborepo Vercel, Inc. (旧 Zeit, Inc.)のTurborepoにおける信頼できない検索パスに関する脆弱性 CWE-426
信頼性のない検索パス 		CVE-2026-45772 2026-05-21 10:54 2026-05-15 Show GitHub Exploit DB Packet Storm
1010 6.5 警告
Network 		Zeit, Inc. Turborepo Vercel, Inc. (旧 Zeit, Inc.)のTurborepoにおける複数の脆弱性 CWE-352
CWE-384
CVE-2026-45773 2026-05-21 10:54 2026-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311041 - - - Path traversal for some Intel(R) Extension for Transformers software before version 1.5 may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-22
Path Traversal 		CVE-2024-21799 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311042 - - - Integer overflow for some Intel(R) VPL software before version 24.1.4 may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-190
 Integer Overflow or Wraparound 		CVE-2024-21783 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311043 - - - An information disclosure vulnerability exists in Yugabyte Anywhere, where the LDAP bind password is logged in plaintext within application logs. This flaw results in the unintentional exposure of se… - CVE-2024-11193 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311044 - - - In filterMask of SkEmbossMaskFilter.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. U… - CVE-2024-43091 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311045 - - - In multiple locations, there is a possible cross-user image read due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interac… - CVE-2024-43090 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311046 - - - In updateInternal of MediaProvider.java , there is a possible access of another app's files due to a missing permission check. This could lead to local escalation of privilege with no additional exec… - CVE-2024-43089 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311047 - - - In multiple functions in AppInfoBase.java, there is a possible way to manipulate app permission settings belonging to another user on the device due to a missing permission check. This could lead to … - CVE-2024-43088 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311048 - - - In getInstalledAccessibilityPreferences of AccessibilitySettings.java, there is a possible way to hide an enabled accessibility service in the accessibility service settings due to a logic error in t… - CVE-2024-43087 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311049 - - - In validateAccountsInternal of AccountManagerService.java, there is a possible way to leak account credentials to a third party app due to a confused deputy. This could lead to local information disc… - CVE-2024-43086 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311050 - - - In handleMessage of UsbDeviceManager.java, there is a possible method to access device contents over USB without unlocking the device due to a logic error in the code. This could lead to local escala… - CVE-2024-43085 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm