Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 5, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1131 | 6.8 |
警告
Physics |
マイクロソフト |
Microsoft Windows 11 24h2 Microsoft Windows 11 25h2 Microsoft Windows Server 2025 Microsoft Windows 11 26h1 |
Windows BitLocker Security Feature Bypass Vulnerability |
CWE-77
コマンドインジェクション |
CVE-2026-45585 | 2026-05-22 10:52 | 2026-05-20 | Show | GitHub Exploit DB Packet Storm |
| 1132 | 5.5 |
警告
Local |
GNU Project レッドハット |
Red Hat OpenShift Container Platform Red Hat Enterprise Linux nano |
GNU Project等の複数ベンダの製品における書式文字列に関する脆弱性 |
CWE-134
書式文字列の問題 |
CVE-2026-6843 | 2026-05-22 10:52 | 2026-04-22 | Show | GitHub Exploit DB Packet Storm |
| 1133 | 5.5 |
警告
Local |
GNU Project レッドハット |
Red Hat Hardened Images Red Hat OpenShift Container Platform Red Hat Enterprise Linux GNU Binutils |
GNU Project等の複数ベンダの製品におけるリソースの枯渇に関する脆弱性 |
CWE-400
リソースの枯渇 |
CVE-2026-6844 | 2026-05-22 10:52 | 2026-04-22 | Show | GitHub Exploit DB Packet Storm |
| 1134 | 5 |
警告
Local |
GNU Project レッドハット |
Red Hat Hardened Images Red Hat OpenShift Container Platform Red Hat Enterprise Linux GNU Binutils |
GNU Project等の複数ベンダの製品におけるNULL ポインタデリファレンスに関する脆弱性 |
CWE-476
NULL ポインタデリファレンス |
CVE-2026-6845 | 2026-05-22 10:52 | 2026-04-22 | Show | GitHub Exploit DB Packet Storm |
| 1135 | 7.8 |
重要
Local |
GNU Project レッドハット |
Red Hat Hardened Images Red Hat OpenShift Container Platform Red Hat Enterprise Linux GNU Binutils |
GNU Project等の複数ベンダの製品におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-122
ヒープオーバーフロー |
CVE-2026-6846 | 2026-05-22 10:52 | 2026-04-22 | Show | GitHub Exploit DB Packet Storm |
| 1136 | 8.1 |
重要
Network |
レッドハット | Quay | レッドハットのQuayにおけるセッション期限に関する脆弱性 |
CWE-613
不適切なセッション期限 |
CVE-2026-6848 | 2026-05-22 10:52 | 2026-04-22 | Show | GitHub Exploit DB Packet Storm |
| 1137 | 7.1 |
重要
Local |
レッドハット |
Red Hat Enterprise Linux AI InstructLab |
レッドハットのRed Hat Enterprise Linux AI等の複数製品におけるパストラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2026-6855 | 2026-05-22 10:52 | 2026-04-22 | Show | GitHub Exploit DB Packet Storm |
| 1138 | 6.5 |
警告
Adjacent |
Mozilla Foundation | Mozilla Firefox | Mozilla FoundationのMozilla Firefoxにおける複数の脆弱性 |
CWE-200 CWE-306 |
CVE-2026-8706 | 2026-05-22 10:52 | 2026-05-19 | Show | GitHub Exploit DB Packet Storm |
| 1139 | 3.1 |
低
Network |
EMQX | emqx | EMQXのemqxにおける競合状態に関する脆弱性 |
CWE-362
競合状態 |
CVE-2026-8741 | 2026-05-22 10:52 | 2026-05-17 | Show | GitHub Exploit DB Packet Storm |
| 1140 | 9.1 |
緊急
Network |
Mozilla Foundation |
Mozilla Firefox Mozilla Thunderbird |
Mozilla FoundationのMozilla Firefox等の複数製品における過度に許容されるクロスドメインホワイトリストに関する脆弱性 |
CWE-942
過度に許容されるクロスドメインホワイトリスト |
CVE-2026-8948 | 2026-05-22 10:52 | 2026-05-19 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 5, 2026, 4:11 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 311071 | 8.8 |
HIGH
Network |
microsoft |
windows_server_2008 windows_server_2012 windows_server_2025 windows_10_1809 windows_server_2019 windows_server_2022 windows_10_21h2 windows_11_22h2 windows_10_22h2 windows_… |
Windows Telephony Service Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-43621 | 2024-11-16 08:59 | 2024-11-13 | Show | GitHub Exploit DB Packet Storm |
| 311072 | 8.8 |
HIGH
Network |
microsoft |
windows_server_2008 windows_server_2012 windows_server_2025 windows_10_1809 windows_server_2019 windows_server_2022 windows_10_21h2 windows_11_22h2 windows_10_22h2 windows_… |
Windows Telephony Service Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-43620 | 2024-11-16 08:59 | 2024-11-13 | Show | GitHub Exploit DB Packet Storm |
| 311073 | 7.8 |
HIGH
Local |
microsoft |
windows_server_2008 windows_server_2012 windows_server_2025 windows_10_1809 windows_server_2019 windows_server_2022 windows_10_21h2 windows_11_22h2 windows_10_22h2 windows_… |
Windows NT OS Kernel Elevation of Privilege Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-43623 | 2024-11-16 08:58 | 2024-11-13 | Show | GitHub Exploit DB Packet Storm |
| 311074 | 8.8 |
HIGH
Network |
microsoft |
windows_server_2008 windows_server_2012 windows_server_2025 windows_10_1809 windows_server_2019 windows_server_2022 windows_10_21h2 windows_11_22h2 windows_10_22h2 windows_… |
Windows Telephony Service Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-43622 | 2024-11-16 08:58 | 2024-11-13 | Show | GitHub Exploit DB Packet Storm |
| 311075 | 8.1 |
HIGH
Local |
microsoft |
windows_server_2025 windows_server_2022 windows_11_22h2 windows_11_23h2 windows_server_2022_23h2 windows_11_24h2 |
Microsoft Windows VMSwitch Elevation of Privilege Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-43625 | 2024-11-16 08:57 | 2024-11-13 | Show | GitHub Exploit DB Packet Storm |
| 311076 | 4.3 |
MEDIUM
Network |
get-simple | getsimplecms | A vulnerability was found in GetSimpleCMS 3.3.16 and classified as problematic. This issue affects some unknown processing of the file /admin/profile.php. The manipulation leads to cross-site request… |
CWE-352
Origin Validation Error |
CVE-2024-11125 | 2024-11-16 08:01 | 2024-11-13 | Show | GitHub Exploit DB Packet Storm |
| 311077 | 6.1 |
MEDIUM
Network |
airties | air4443_firmware | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in AirTies Air4443 Firmware allows Cross-Site Scripting (XSS).This issue affects Air4443 Firm… |
CWE-79
Cross-site Scripting |
CVE-2024-9477 | 2024-11-16 07:54 | 2024-11-14 | Show | GitHub Exploit DB Packet Storm |
| 311078 | 5.4 |
MEDIUM
Network |
siemens |
ozw672_firmware ozw772_firmware |
A vulnerability has been identified in OZW672 (All versions < V5.2), OZW772 (All versions < V5.2). The user accounts tab of affected devices is vulnerable to stored cross-site scripting (XSS) attacks… |
CWE-79
Cross-site Scripting |
CVE-2024-36140 | 2024-11-16 07:53 | 2024-11-12 | Show | GitHub Exploit DB Packet Storm |
| 311079 | 4.8 |
MEDIUM
Network |
publiccms | publiccms | A vulnerability was found in Public CMS 5.202406.d and classified as problematic. This issue affects some unknown processing of the file /admin/cmsVote/save of the component Voting Management. The ma… |
CWE-79
Cross-site Scripting |
CVE-2024-11175 | 2024-11-16 07:50 | 2024-11-14 | Show | GitHub Exploit DB Packet Storm |
| 311080 | 7.8 |
HIGH
Local |
siemens | spectrum_power_7 | A vulnerability has been identified in Spectrum Power 7 (All versions < V24Q3). The affected product contains several root-owned SUID binaries that could allow an authenticated local attacker to esca… |
NVD-CWE-noinfo
|
CVE-2024-29119 | 2024-11-16 07:50 | 2024-11-12 | Show | GitHub Exploit DB Packet Storm |