Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1221	7.8	重要 Local	opentelemetry	OpenTelemetry.Exporter.OpenTelemetryProtocol	opentelemetryのOpenTelemetry.Exporter.OpenTelemetryProtocolにおけるアクセスパーミションのディレクトリの一時ファイル作成に関する脆弱性	CWE-379 不適切なアクセスパーミションのディレクトリに一時ファイル作成	CVE-2026-42191	2026-05-28 14:33	2026-05-12	Show	GitHub Exploit DB Packet Storm

1222	7.5	重要 Network	Absinthe-graphql	Absinthe	Absinthe-graphqlのAbsintheにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-42793	2026-05-28 14:32	2026-05-8	Show	GitHub Exploit DB Packet Storm

1223	7.5	重要 Network	Absinthe-graphql	Absinthe	Absinthe-graphqlのAbsintheにおけるアルゴリズムの複雑さに関する脆弱性	CWE-407 アルゴリズムの複雑性	CVE-2026-43967	2026-05-28 14:32	2026-05-8	Show	GitHub Exploit DB Packet Storm

1224	6.1	警告 Network	The Kyverno Authors	Policy-reporter-ui	The Kyverno AuthorsのPolicy-reporter-uiにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-44245	2026-05-28 14:32	2026-05-12	Show	GitHub Exploit DB Packet Storm

1225	8.6	重要 Network	Marginal	v1-core	Marginalのv1-coreにおける数値型間の変換の誤りに関する脆弱性	CWE-681 数値型間の変換の誤り	CVE-2026-4931	2026-05-28 14:32	2026-04-7	Show	GitHub Exploit DB Packet Storm

1226	7.4	重要 Network	Project Jupyter	Jupyter Server	Jupyter Serverにおけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2025-61669	2026-05-28 12:05	2026-05-28	Show	GitHub Exploit DB Packet Storm

1227	-	-	日立	Hitachi Application Server uCosminexus Application Runtime with Java for Apache Tomcat uCosminexus Application Runtime with Java…	Cosminexusにおける複数の脆弱性	-	CVE-2026-22007 CVE-2026-22013 CVE-2026-22016 CVE-2026-22018 CVE-2026-22021 CVE-2026-23865 CVE-2026-34268 CVE-2026-34282	2026-05-27 13:53	2026-05-26	Show	GitHub Exploit DB Packet Storm

1228	-	-	日立	Hitachi Automation Director Hitachi Replication Manager Hitachi Configuration Manager Hitachi Ops Center API Configuration Manager H…	Hitachi Command Suite製品, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics AdvisorおよびHitachi Ops Center製品における複数の脆弱性	-	CVE-2026-22007 CVE-2026-22013 CVE-2026-22016 CVE-2026-22018 CVE-2026-22021 CVE-2026-23865 CVE-2026-34268 CVE-2026-34282	2026-05-27 13:53	2026-05-26	Show	GitHub Exploit DB Packet Storm

1229	-	-	日立	Hitachi Infrastructure Analytics Advisor Hitachi Ops Center Analyzer Hitachi Ops Center Analyzer viewpoint	Hitachi Infrastructure Analytics Advisor，Hitachi Ops Center AnalyzerおよびHitachi Ops Center Analyzer viewpointにおける脆弱性	-	CVE-2026-3314	2026-05-27 13:53	2026-05-26	Show	GitHub Exploit DB Packet Storm

1230	-	-	LMSYS Org	SGLang	SGLangにおける複数の脆弱性	-	CVE-2026-5760 CVE-2026-7301 CVE-2026-7302 CVE-2026-7304	2026-05-27 12:17	2026-05-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
310831	-	geovision	digital_surveillance_system	Directory traversal vulnerability in geohttpserver in Geovision Digital Video Surveillance System 8.2 allows remote attackers to read arbitrary files via a .. (dot dot) in a GET request.	CWE-22 Path Traversal	CVE-2009-5087	2024-11-21 10:11	2011-09-12	Show	GitHub Exploit DB Packet Storm

310832	-	juniper	idp	Cross-site scripting (XSS) vulnerability in Appliance Configuration Manager (ACM) in Juniper IDP 4.1 before 4.1r3 and 4.2 before 4.2r1 allows remote attackers to inject arbitrary web script or HTML v…	CWE-79 Cross-site Scripting	CVE-2009-5086	2024-11-21 10:11	2011-09-3	Show	GitHub Exploit DB Packet Storm

310833	-	libpng	libpng	Memory leak in the embedded_profile_len function in pngwutil.c in libpng before 1.2.39beta5 allows context-dependent attackers to cause a denial of service (memory leak or segmentation fault) via a J…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2009-5063	2024-11-21 10:11	2011-09-1	Show	GitHub Exploit DB Packet Storm

310834	-	ibm	tivoli_federated_identity_manager	IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.2, when configured as an OpenID provider, does not delete the site information cookie in response to a user's deletion of a relying-par…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-5085	2024-11-21 10:11	2011-08-13	Show	GitHub Exploit DB Packet Storm

310835	-	ibm	tivoli_federated_identity_manager	IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.2, when com.tivoli.am.fim.infocard.delegates.InfoCardSTSDelegate tracing is enabled, creates a cleartext log entry containing a passwor…	CWE-310 Cryptographic Issues	CVE-2009-5084	2024-11-21 10:11	2011-08-13	Show	GitHub Exploit DB Packet Storm

310836	-	ibm	tivoli_federated_identity_manager	IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.2, when configured as an OpenID relying party, does not perform the expected login rejection upon receiving an OP-Identifier from an Op…	CWE-287 Improper Authentication	CVE-2009-5083	2024-11-21 10:11	2011-08-13	Show	GitHub Exploit DB Packet Storm

310837	-	gnu	groff	The (1) configure and (2) config.guess scripts in GNU troff (aka groff) 1.20.1 on Openwall GNU/*/Linux (aka Owl) improperly create temporary files upon a failure of the mktemp function, which makes i…	CWE-59 Link Following	CVE-2009-5082	2024-11-21 10:11	2011-07-1	Show	GitHub Exploit DB Packet Storm

310838	-	gnu	groff	The (1) config.guess, (2) contrib/groffer/perl/groffer.pl, and (3) contrib/groffer/perl/roff2.pl scripts in GNU troff (aka groff) 1.21 and earlier use an insufficient number of X characters in the te…	CWE-59 Link Following	CVE-2009-5081	2024-11-21 10:11	2011-07-1	Show	GitHub Exploit DB Packet Storm

310839	-	gnu	groff	The (1) contrib/eqn2graph/eqn2graph.sh, (2) contrib/grap2graph/grap2graph.sh, and (3) contrib/pic2graph/pic2graph.sh scripts in GNU troff (aka groff) 1.21 and earlier do not properly handle certain f…	CWE-59 Link Following	CVE-2009-5080	2024-11-21 10:11	2011-07-1	Show	GitHub Exploit DB Packet Storm

310840	-	gnu	groff	The (1) gendef.sh, (2) doc/fixinfo.sh, and (3) contrib/gdiffmk/tests/runtests.in scripts in GNU troff (aka groff) 1.21 and earlier allow local users to overwrite arbitrary files via a symlink attack …	CWE-59 Link Following	CVE-2009-5079	2024-11-21 10:11	2011-07-1	Show	GitHub Exploit DB Packet Storm