Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133141 7.5 重要
Network 		Stable Yield Credit プロジェクト Stable Yield Credit Stable Yield Credit における計算の誤りに関する脆弱性 CWE-682
計算の誤り 		CVE-2021-3004 2021-09-10 14:58 2021-01-3 Show GitHub Exploit DB Packet Storm
133142 9.8 緊急
Network 		chatter-social Creeper Creeper におけるトロイの木馬の脆弱性 CWE-507
トロイの木馬 		CVE-2020-26292 2021-09-10 14:58 2020-12-31 Show GitHub Exploit DB Packet Storm
133143 5.5 警告
Local 		DriverGenius DriverGenius ファームウェア DriverGenius における脆弱性 CWE-noinfo
情報不足 		CVE-2020-28841 2021-09-10 14:58 2020-11-12 Show GitHub Exploit DB Packet Storm
133144 7.5 重要
Network 		Serde CBOR project Serde CBOR Rust 用 serde_cbor crate における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2019-25001 2021-09-10 14:56 2019-10-3 Show GitHub Exploit DB Packet Storm
133145 9.8 緊急
Network 		sodiumoxide project sodiumoxide Rust 用 sodiumoxide crate における脆弱性 CWE-noinfo
情報不足 		CVE-2019-25002 2021-09-10 14:45 2019-10-11 Show GitHub Exploit DB Packet Storm
133146 7.5 重要
Network 		The Go Project Go Go の x/text における配列インデックスの検証に関する脆弱性 CWE-129
配列インデックスの不適切な検証 		CVE-2020-28852 2021-09-10 14:37 2020-11-12 Show GitHub Exploit DB Packet Storm
133147 7.5 重要
Network 		The Go Project Go Go の x/text における配列インデックスの検証に関する脆弱性 CWE-129
配列インデックスの不適切な検証 		CVE-2020-28851 2021-09-10 14:37 2020-11-12 Show GitHub Exploit DB Packet Storm
133148 9 緊急
Network 		Electron zonote zonote におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-35717 2021-09-10 14:37 2020-12-26 Show GitHub Exploit DB Packet Storm
133149 6.5 警告
Adjacent 		Shenzhen Tenda Technology Co.,Ltd. F3 ファームウェア Tenda N300 F3 デバイスにおけるリクエストの直接送信に関する脆弱性 CWE-425
リクエストの直接送信 		CVE-2020-35391 2021-09-10 14:37 2020-12-31 Show GitHub Exploit DB Packet Storm
133150 7.5 重要
Network 		jrbcs webform report Drupal 用 Webform Report プロジェクトにおけるリクエストの直接送信に関する脆弱性 CWE-425
リクエストの直接送信 		CVE-2019-25012 2021-09-10 14:37 2019-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1 7.8 HIGH
Local 		google android In performPreInstallChecks of InstallRepository.kt, there is a possible way to bypass MDM policy due to a logic error in the code. This could lead to local escalation of privilege with no additional … New CWE-693
 Protection Mechanism Failure 		CVE-2025-48652 2026-06-3 03:59 2026-06-2 Show GitHub Exploit DB Packet Storm
2 5.5 MEDIUM
Local 		google android In isSameApp of NotificationManagerService.java, there is a possible persistent dos due to resource exhaustion. This could lead to local denial of service with no additional execution privileges need… New CWE-400
 Uncontrolled Resource Consumption 		CVE-2025-48648 2026-06-3 03:59 2026-06-2 Show GitHub Exploit DB Packet Storm
3 3.3 LOW
Local 		google android In multiple functions of KeyguardViewMediator.java , there is a possible way to bypass lockdown mode with screen pinning due to a logic error in the code. This could lead to local information disclos… New NVD-CWE-noinfo
CVE-2025-48616 2026-06-3 03:58 2026-06-2 Show GitHub Exploit DB Packet Storm
4 7.8 HIGH
Local 		google android In multiple functions of PipTaskOrganizer.java, there is a possible way to launch an activity from the background due to a confused deputy. This could lead to local escalation of privilege with no ad… New CWE-441
Confused Deputy 		CVE-2025-48570 2026-06-3 03:58 2026-06-2 Show GitHub Exploit DB Packet Storm
5 5.9 MEDIUM
Local 		google android In setUserDisclaimerAcknowledged of CarDevicePolicyService.java, there is a possible way to bypass the user dialog when adding an account to a managed device due to a missing permission check. This c… New CWE-862
 Missing Authorization 		CVE-2025-26418 2026-06-3 03:58 2026-06-2 Show GitHub Exploit DB Packet Storm
6 5.9 MEDIUM
Local 		google android In many functions of ComputerEngine.java, there is a possible way to access URIs across users due to a logic error in the code. This could lead to local escalation of privilege with no additional exe… New CWE-284
Improper Access Control 		CVE-2025-22426 2026-06-3 03:57 2026-06-2 Show GitHub Exploit DB Packet Storm
7 7.8 HIGH
Local 		google android In multiple locations, there is a possible way to reveal images across users due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges… New NVD-CWE-noinfo
CVE-2025-22424 2026-06-3 03:57 2026-06-2 Show GitHub Exploit DB Packet Storm
8 7.8 HIGH
Local 		google android In multiple locations, there is a possible background activity launch due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges neede… New NVD-CWE-noinfo
CVE-2025-32348 2026-06-3 03:50 2026-06-2 Show GitHub Exploit DB Packet Storm
9 6.5 MEDIUM
Network 		apache airflow A Dag author could either (a) create a symlink under their task's log directory pointing to an arbitrary file readable by the API server process (read-path attack — e.g. `/etc/passwd` or `airflow.cfg… New CWE-59
Link Following 		CVE-2026-40861 2026-06-3 03:49 2026-06-1 Show GitHub Exploit DB Packet Storm
10 7.2 HIGH
Network 		apache airflow A bug in the login redirect route in Apache Airflow allowed authenticated users to craft URLs that bypassed the `is_safe_url` check, enabling redirection from a trusted Airflow domain to an attacker-… New CWE-601
Open Redirect 		CVE-2026-40961 2026-06-3 03:49 2026-06-1 Show GitHub Exploit DB Packet Storm