Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1221	-	-	（複数のベンダ）	（複数の製品）	Windowsカーネルドライバ「PCTCore64.sys」における不適切なアクセス制御	-	-	2026-06-3 16:22	2026-06-2	Show	GitHub Exploit DB Packet Storm

1222	-	-	（複数のベンダ）	（複数の製品）	Casdoorにおける複数の脆弱性	-	-	2026-06-3 16:22	2026-06-1	Show	GitHub Exploit DB Packet Storm

1223	6.8	警告 Adjacent	TP-Link Systems Inc.	Archer BE7200 Archer BE450	TP-Link製ルーターArcher BE450およびBE7200におけるOSコマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-5509	2026-06-3 16:22	2026-06-2	Show	GitHub Exploit DB Packet Storm

1224	6.5	警告 Network	Samba Project レッドハット	Red Hat Enterprise Linux Red Hat OpenShift Container Platform Samba	レッドハット等の複数ベンダの製品における不十分なパーミッションまたは特権の不適切な処理に関する脆弱性	CWE-280 権限管理不備	CVE-2026-2340	2026-06-3 15:39	2026-05-27	Show	GitHub Exploit DB Packet Storm

1225	6.5	警告 Network	Apache Software Foundation	Apache Shiro	Apache Software FoundationのApache Shiroにおけるセッションの固定化の脆弱性	CWE-384 セッションの固定化	CVE-2026-43827	2026-06-3 15:39	2026-05-25	Show	GitHub Exploit DB Packet Storm

1226	6.5	警告 Network	Apache Software Foundation	Apache Shiro	Apache Software FoundationのApache ShiroにおけるHTTPS セッション内の Secure 属性がない重要な Cookie に関する脆弱性	CWE-614 HTTPS セッション内の Secure 属性がない重要な Cookie	CVE-2026-43828	2026-06-3 15:39	2026-05-25	Show	GitHub Exploit DB Packet Storm

1227	7.8	重要 Local	3S-Smart Software Solutions	CODESYS Development System	CODESYS GmbHのCODESYS Development Systemにおける不適切なデフォルトパーミッションに関する脆弱性	CWE-276 CWE-noinfo	CVE-2026-44468	2026-06-3 15:39	2026-05-26	Show	GitHub Exploit DB Packet Storm

1228	7	重要 Local	3S-Smart Software Solutions	CODESYS Development System	CODESYS GmbHのCODESYS Development Systemにおける不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2026-44469	2026-06-3 15:39	2026-05-26	Show	GitHub Exploit DB Packet Storm

1229	5.4	警告 Network	Apache Software Foundation	Apache Shiro	Apache Software FoundationのApache Shiroにおける複数の脆弱性	CWE-601 CWE-918	CVE-2026-44598	2026-06-3 15:39	2026-05-25	Show	GitHub Exploit DB Packet Storm

1230	9.8	緊急 Network	Exim Development	Exim	Exim DevelopmentのEximにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-45185	2026-06-3 15:39	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
319561	8.2	HIGH Local	intel	server_board_s2600st_firmware	Improper input validation in kernel mode driver for some Intel(R) Server Board S2600ST Family firmware before version 02.01.0017 may allow a privileged user to potentially enable escalation of privil…	NVD-CWE-noinfo	CVE-2024-28947	2024-09-13 03:52	2024-08-14	Show	GitHub Exploit DB Packet Storm

319562	7.8	HIGH Local	intel	oneapi_base_toolkit integrated_performance_primitives	Uncontrolled search path in some Intel(R) IPP software before version 2021.11 may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-427 Uncontrolled Search Path Element	CVE-2024-28887	2024-09-13 03:51	2024-08-14	Show	GitHub Exploit DB Packet Storm

319563	7.8	HIGH Local	intel	nuc_x15_laptop_kit_lapac71h nuc_x15_laptop_kit_lapac71g nuc_x15_laptop_kit_lapkc71f nuc_x15_laptop_kit_lapkc71e nuc_x15_laptop_kit_lapkc51e nuc_m15_laptop_kit_lapbc710 nuc_m15_lapto…	Insecure inherited permissions in some Intel(R) HID Event Filter software installers before version 2.2.2.1 may allow an authenticated user to potentially enable escalation of privilege via local acc…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2024-25561	2024-09-13 03:50	2024-08-14	Show	GitHub Exploit DB Packet Storm

319564	7.8	HIGH Local	intel	license_manager_for_flexim	Uncontrolled search path for some Intel(R) License Manager for FLEXlm product software before version 11.19.5.0 may allow an authenticated user to potentially enable escalation of privilege via local…	CWE-427 Uncontrolled Search Path Element	CVE-2024-24977	2024-09-13 03:45	2024-08-14	Show	GitHub Exploit DB Packet Storm

319565	7.8	HIGH Local	intel	flexlm_license_daemons_for_intel_fpga	Insecure inherited permissions in some Flexlm License Daemons for Intel(R) FPGA software before version v11.19.5.0 may allow an authenticated user to potentially enable escalation of privilege via lo…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2024-23908	2024-09-13 03:43	2024-08-14	Show	GitHub Exploit DB Packet Storm

319566	9.8	CRITICAL Network	openedx	openedx	This openedx-translations repository contains translation files from Open edX repositories to be kept in sync with Transifex. Before moving to pulling translations from the openedx-translations repos…	CWE-74 Injection	CVE-2024-43782	2024-09-13 03:29	2024-08-24	Show	GitHub Exploit DB Packet Storm

319567	7.8	HIGH Local	steveklabnik	request_store	RequestStore provides per-request global storage for Rack. The files published as part of request_store 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to …	CWE-276 Incorrect Default Permissions	CVE-2024-43791	2024-09-13 03:26	2024-08-24	Show	GitHub Exploit DB Packet Storm

319568	8.8	HIGH Local	intel	ethernet_800_series_controllers_driver	Out-of-bounds write in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of pri…	CWE-787 Out-of-bounds Write	CVE-2024-23497	2024-09-13 03:26	2024-08-14	Show	GitHub Exploit DB Packet Storm

319569	6.1	MEDIUM Network	jeesite	jeesite	A vulnerability was found in thinkgem JeeSite 5.3. It has been rated as problematic. This issue affects some unknown processing of the file /js/a/login of the component Cookie Handler. The manipulati…	CWE-79 Cross-site Scripting	CVE-2024-8112	2024-09-13 03:23	2024-08-24	Show	GitHub Exploit DB Packet Storm

319570	5.4	MEDIUM Network	pretix	pretix	Stored XSS in organizer and event settings of pretix up to 2024.7.0 allows malicious event organizers to inject HTML tags into e-mail previews on settings page. The default Content Security Policy of…	CWE-79 Cross-site Scripting	CVE-2024-8113	2024-09-13 03:21	2024-08-24	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed