Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
132871	4.3	警告 Network	Nike, Inc.	Nike	スマートフォンアプリ「Nike」における Custom URL Scheme の処理にアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2021-20834	2021-10-8 12:08	2021-10-8	Show	GitHub Exploit DB Packet Storm

132872	7.5	重要 Network	fil-ocl project	fil-ocl	Rust 用 fil-ocl crate における二重解放に関する脆弱性	CWE-415 二重解放	CVE-2021-25908	2021-10-7 18:11	2021-01-4	Show	GitHub Exploit DB Packet Storm

132873	9.8	緊急 Network	containers project	containers	RUST 用 containers crate における二重解放に関する脆弱性	CWE-415 二重解放	CVE-2021-25907	2021-10-7 18:11	2021-01-12	Show	GitHub Exploit DB Packet Storm

132874	7.5	重要 Network	basic_dsp_matrix project	basic_dsp_matrix	RUST 用 basic_dsp_matrix crate における脆弱性	CWE-noinfo 情報不足	CVE-2021-25906	2021-10-7 18:11	2021-01-10	Show	GitHub Exploit DB Packet Storm

132875	9.1	緊急 Network	bra project	bra	RUST 用 bra crate における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2021-25905	2021-10-7 18:11	2021-01-2	Show	GitHub Exploit DB Packet Storm

132876	7.5	重要 Network	av-data project	av-data	RUST 用 av-data crate における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2021-25904	2021-10-7 18:11	2021-01-7	Show	GitHub Exploit DB Packet Storm

132877	7.5	重要 Network	Doctrine Project	Cache	RUST 用 cache crate における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2021-25903	2021-10-7 18:11	2021-01-1	Show	GitHub Exploit DB Packet Storm

132878	7.5	重要 Network	glsl-layout project	glsl-layout	RUST 用 glsl-layout crate における脆弱性	CWE-noinfo 情報不足	CVE-2021-25902	2021-10-7 18:11	2021-01-10	Show	GitHub Exploit DB Packet Storm

132879	5.3	警告 Network	lazy-init project	lazy-init	RUST 用 lazy-init crate における境界外読み取りに関する脆弱性	CWE-125 CWE-noinfo	CVE-2021-25901	2021-10-7 18:11	2021-01-17	Show	GitHub Exploit DB Packet Storm

132880	9.8	緊急 Network	Servo	smallvec	RUST 用 smallvec crate における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2021-25900	2021-10-7 18:11	2021-01-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201	-		-	-	Shenzhen Tenda Technology Co., Ltd Tenda FH451 V1.0.0.9 was discovered to contain a stack overflow in the page parameter of the fromDhcpListClient function. This vulnerability allows attackers to cau… New	-	CVE-2026-36785	2026-06-6 06:16	2026-06-6	Show	GitHub Exploit DB Packet Storm

202	-		-	-	A path traversal vulnerability exists in the Altium Enterprise Server Collaboration Service due to improper handling of user-supplied filenames in the MCAD and Simulation file download flows. A regul… New	CWE-22 CWE-269 Path Traversal Improper Privilege Management	CVE-2026-11423	2026-06-6 06:16	2026-06-6	Show	GitHub Exploit DB Packet Storm

203	7.1	HIGH Local	-	-	Markdown Preview Enhanced 0.8.x with crossnote engine 0.9.28 contains a code injection vulnerability in the WaveDrom rendering pipeline that allows attackers to execute arbitrary JavaScript by embedd… New	CWE-95 Eval Injection	CVE-2026-11422	2026-06-6 06:16	2026-06-6	Show	GitHub Exploit DB Packet Storm

204	6.5	MEDIUM Network	gkostka	lwext4	An out-of-bounds read in the ext4_ext_binsearch_idx function in src/ext4_extent.c of the lwext4 1.0.0 library allows attackers to cause a denial of service by supplying a specially crafted ext4 files… Update	CWE-125 Out-of-bounds Read	CVE-2025-70101	2026-06-6 06:10	2026-06-3	Show	GitHub Exploit DB Packet Storm

205	5.5	MEDIUM Local	gkostka	lwext4	A divide-by-zero vulnerability in the ext4_block_set_lb_size function in src/ext4_blockdev.c of the lwext4 1.0.0 library allows attackers to cause a denial of service by providing a malformed ext4 fi… Update	CWE-369 Divide By Zero	CVE-2025-70100	2026-06-6 06:09	2026-06-3	Show	GitHub Exploit DB Packet Storm

206	9.8	CRITICAL Network	freedesktop	libinput	In libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-group unescaped phys output can inject udev properties leading to arbitrary root code execution Update	CWE-93 CRLF Injection	CVE-2026-50292	2026-06-6 06:06	2026-06-5	Show	GitHub Exploit DB Packet Storm

207	9.1	CRITICAL Network	netty	netty-incubator-codec-ohttp	The netty incubator codec.bhttp is a java language binary http parser. The library implements Oblivious HTTP (RFC 9458) using BoringSSL's HPKE C library via JNI. When deriving native memory addresses… Update	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2026-48040	2026-06-6 06:04	2026-06-5	Show	GitHub Exploit DB Packet Storm

208	5.3	MEDIUM Network	netty	netty-incubator-codec-ohttp	The netty incubator codec.bhttp is a java language binary http parser. Prior to version 0.0.21.Final, HKDF_expand returns non-NULL on failure. The byte[] is filled with zeros and has no way to distin… Update	CWE-330 Use of Insufficiently Random Values	CVE-2026-41207	2026-06-6 06:01	2026-06-5	Show	GitHub Exploit DB Packet Storm

209	-		-	-	In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Add missing NULL check for alloc_workqueue() alloc_workqueue() can return NULL on memory allocation failure. Witho… Update	-	CVE-2025-71313	2026-06-6 05:51	2026-06-4	Show	GitHub Exploit DB Packet Storm

210	-		-	-	In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Recover from panthor_gpu_flush_caches() failures We have seen a few cases where the whole memory subsystem is blocke… Update	-	CVE-2025-71314	2026-06-6 05:51	2026-06-4	Show	GitHub Exploit DB Packet Storm