Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1021	9.1	緊急 Network	GitHub	cli	GitHubのcliにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-48501	2026-06-5 10:45	2026-05-29	Show	GitHub Exploit DB Packet Storm

1022	5.3	警告 Network	Exim Development	Exim	Exim DevelopmentのEximにおける最小値チェックのない数値範囲の比較に関する脆弱性	CWE-839 最小値チェックのない数値範囲の比較	CVE-2026-48840	2026-06-5 10:45	2026-05-30	Show	GitHub Exploit DB Packet Storm

1023	8.1	重要 Network	Project Jupyter	Jupyter Server	Project JupyterのJupyter Serverにおける相対パストラバーサルの脆弱性	CWE-23 相対的パストラバーサル	CVE-2026-5422	2026-06-5 10:45	2026-06-2	Show	GitHub Exploit DB Packet Storm

1024	7.5	重要 Network	レッドハット	build of keycloak	レッドハットのbuild of keycloakにおける入力の構文的正当性の検証に関する脆弱性	CWE-1286 入力の構文的正当性の不適切な検証	CVE-2026-7307	2026-06-5 10:45	2026-05-19	Show	GitHub Exploit DB Packet Storm

1025	8.1	重要 Network	レッドハット	build of keycloak	レッドハットのbuild of keycloakにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-7504	2026-06-5 10:45	2026-05-19	Show	GitHub Exploit DB Packet Storm

1026	7.5	重要 Network	レッドハット	build of keycloak	レッドハットのbuild of keycloakにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2026-7507	2026-06-5 10:45	2026-05-19	Show	GitHub Exploit DB Packet Storm

1027	7.1	重要 Network	レッドハット	build of keycloak	レッドハットのbuild of keycloakにおける不変と仮定される Web パラメータの外部制御に関する脆弱性	CWE-472 不変と仮定される Web パラメータの外部制御	CVE-2026-7571	2026-06-5 10:45	2026-05-19	Show	GitHub Exploit DB Packet Storm

1028	5.4	警告 Network	レッドハット	build of keycloak	レッドハットのbuild of keycloakにおける認証アルゴリズムの不適切な実装に関する脆弱性	CWE-303 認証アルゴリズム上の問題	CVE-2026-8922	2026-06-5 10:45	2026-05-19	Show	GitHub Exploit DB Packet Storm

1029	5.4	警告 Network	Mozilla Foundation	Mozilla Firefox	Mozilla FoundationのMozilla Firefoxにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-9308	2026-06-5 10:44	2026-06-1	Show	GitHub Exploit DB Packet Storm

1030	5.4	警告 Network	Mozilla Foundation	Mozilla Firefox	Mozilla FoundationのMozilla Firefoxにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-9309	2026-06-5 10:44	2026-06-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
310561	-	realnetworks	realplayer realplayer_sp	Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.0.1, Mac RealPlayer 11.0 through 11.1, Linux RealPlayer 11.0.2.1744, and possibly HelixPlayer 1.…	CWE-399 Resource Management Errors	CVE-2010-2997	2024-11-21 10:17	2010-12-15	Show	GitHub Exploit DB Packet Storm

310562	-	redhat	enterprise_virtualization_manager spice-activex	Race condition in the SPICE (aka spice-activex) plug-in for Internet Explorer in Red Hat Enterprise Virtualization (RHEV) Manager before 2.2.4 allows local users to create a certain named pipe, and c…	CWE-362 Race Condition	CVE-2010-2793	2024-11-21 10:17	2010-12-9	Show	GitHub Exploit DB Packet Storm

310563	-	linux	linux_kernel	The io_submit_one function in fs/aio.c in the Linux kernel before 2.6.23 allows local users to cause a denial of service (NULL pointer dereference) via a crafted io_submit system call with an IOCB_FL…	NVD-CWE-Other	CVE-2010-3066	2024-11-21 10:17	2010-12-7	Show	GitHub Exploit DB Packet Storm

310564	-	andy_armstrong	cgi.pm cgi-simple	The multipart_init function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which…	CWE-94 Code Injection	CVE-2010-2761	2024-11-21 10:17	2010-12-7	Show	GitHub Exploit DB Packet Storm

310565	-	ibm	websphere_commerce	IBM WebSphere Commerce Enterprise 7.0 before 7.0.0.2 allows remote attackers to read messages intended for other recipients via vectors involving access by the outbound messaging system to the RunTim…	CWE-200 Information Exposure	CVE-2010-2639	2024-11-21 10:17	2010-12-7	Show	GitHub Exploit DB Packet Storm

310566	-	linux fedoraproject suse opensuse debian canonical	linux_kernel fedora linux_enterprise_desktop linux_enterprise_server opensuse debian_linux ubuntu_linux	drivers/media/video/v4l2-compat-ioctl32.c in the Video4Linux (V4L) implementation in the Linux kernel before 2.6.36 on 64-bit platforms does not validate the destination of a memory copy operation, w…	CWE-20 Improper Input Validation	CVE-2010-2963	2024-11-21 10:17	2010-11-27	Show	GitHub Exploit DB Packet Storm

310567	-	linux fedoraproject suse opensuse canonical	linux_kernel fedora linux_enterprise_desktop linux_enterprise_server opensuse linux_enterprise_real_time_extension ubuntu_linux	drivers/gpu/drm/i915/i915_gem.c in the Graphics Execution Manager (GEM) in the Intel i915 driver in the Direct Rendering Manager (DRM) subsystem in the Linux kernel before 2.6.36 does not properly va…	CWE-20 Improper Input Validation	CVE-2010-2962	2024-11-21 10:17	2010-11-27	Show	GitHub Exploit DB Packet Storm

310568	-	cisco	unified_videoconferencing_system_5110_firmware unified_videoconferencing_system_5115_firmware unified_videoconferencing_system_5110 unified_videoconferencing_system_5115	Cisco Unified Videoconferencing (UVC) System 5110 and 5115, when the Linux operating system is used, has a default password for the (1) root, (2) cs, and (3) develop accounts, which makes it easier f…	CWE-255 Credentials Management	CVE-2010-3038	2024-11-21 10:17	2010-11-23	Show	GitHub Exploit DB Packet Storm

310569	-	cisco	unified_videoconferencing_system_5110_firmware unified_videoconferencing_system_5115_firmware unified_videoconferencing_system_5110 unified_videoconferencing_system_5115 unified_videoconf…	goform/websXMLAdminRequestCgi.cgi in Cisco Unified Videoconferencing (UVC) System 5110 and 5115, and possibly Unified Videoconferencing System 3545 and 5230, Unified Videoconferencing 3527 Primary Ra…	CWE-94 Code Injection	CVE-2010-3037	2024-11-21 10:17	2010-11-23	Show	GitHub Exploit DB Packet Storm

310570	-	landesk	management_gateway	gsb/drivers.php in LANDesk Management Gateway 4.0 through 4.0-1.48 and 4.2 through 4.2-1.8 allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in the DRI…	CWE-20 Improper Input Validation	CVE-2010-2892	2024-11-21 10:17	2010-11-16	Show	GitHub Exploit DB Packet Storm