Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
133171	6.1	警告 Network	Open-Xchange	OX App Suite	OX App Suite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-23928	2021-09-15 17:28	2021-01-12	Show	GitHub Exploit DB Packet Storm

133172	6.4	警告 Network	Open-Xchange	OX App Suite	OX App Suite におけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2021-23927	2021-09-15 17:28	2021-01-12	Show	GitHub Exploit DB Packet Storm

133173	5.5	警告 Local	array-queue プロジェクト	array-queue	Rust 用 array-queue crate における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2020-35900	2021-09-15 17:26	2020-09-26	Show	GitHub Exploit DB Packet Storm

133174	7.8	重要 Local	K7 Computing	Ultimate Security K7 AntiVirus Enterprise Security Total Security	K7Computing Pvt Ltd K7AntiVirus Premium における権限管理に関する脆弱性	CWE-120 CWE-269	CVE-2018-9333	2021-09-15 17:26	2018-04-5	Show	GitHub Exploit DB Packet Storm

133175	7.8	重要 Local	K7 Computing	Ultimate Security K7 AntiVirus Enterprise Security Total Security	K7Computing Pvt Ltd K7AntiVirus Premium における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2018-9332	2021-09-15 17:26	2018-04-5	Show	GitHub Exploit DB Packet Storm

133176	7.8	重要 Local	K7 Computing	Ultimate Security K7 AntiVirus Enterprise Security Total Security	K7Computing Pvt Ltd K7AntiVirus Premium における古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2018-8726	2021-09-15 17:26	2018-03-15	Show	GitHub Exploit DB Packet Storm

133177	7.8	重要 Local	K7 Computing	Ultimate Security K7 AntiVirus Enterprise Security Total Security	K7Computing Pvt Ltd K7AntiVirus Premium における古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2018-8725	2021-09-15 17:26	2018-03-15	Show	GitHub Exploit DB Packet Storm

133178	7.8	重要 Local	K7 Computing	Ultimate Security K7 AntiVirus Enterprise Security Total Security	K7Computing Pvt Ltd K7AntiVirus Premium における不正な認証に関する脆弱性	CWE-269 CWE-863	CVE-2018-8724	2021-09-15 17:26	2018-03-15	Show	GitHub Exploit DB Packet Storm

133179	7.8	重要 Local	K7 Computing	Ultimate Security K7 AntiVirus Enterprise Security Total Security	K7Computing Pvt Ltd K7AntiVirus Premium における権限管理に関する脆弱性	CWE-269 CWE-863	CVE-2018-8044	2021-09-15 17:26	2018-03-10	Show	GitHub Exploit DB Packet Storm

133180	7.5	重要 Network	K7 Computing	Ultimate Security K7 AntiVirus Enterprise Security Total Security	K7Computing K7AntiVirus Premium における有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2018-11246	2021-09-15 17:26	2018-05-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
71	6.1	MEDIUM Network	-	-	A vulnerability in the web-based user interface of Cisco Webex Meetings could have allowed an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack. Cisco has addressed this… New	CWE-79 Cross-site Scripting	CVE-2026-20233	2026-06-4 03:16	2026-06-4	Show	GitHub Exploit DB Packet Storm

72	8.6	HIGH Network	-	-	A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthenticated, remote attack… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-20230	2026-06-4 03:16	2026-06-4	Show	GitHub Exploit DB Packet Storm

73	6.1	MEDIUM Network	-	-	A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to load arbitrary files from remote locations into an active user session on an affected device, possibly leading to b… New	CWE-73 External Control of File Name or Path	CVE-2026-20175	2026-06-4 03:16	2026-06-4	Show	GitHub Exploit DB Packet Storm

74	7.3	HIGH Network	-	-	A security flaw has been discovered in DedeCMS 5.7.88. This affects the function RemoveXSS of the file /plus/carbuyaction.php. The manipulation of the argument postname/des results in sql injection. … New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-10608	2026-06-4 03:16	2026-06-3	Show	GitHub Exploit DB Packet Storm

75	7.3	HIGH Network	-	-	A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affected by this vulnerability is the function _compress_context of the file run_agent.py. The manipulation leads to injectio… New	CWE-74 CWE-707 Injection Improper Enforcement of Message or Data Structure	CVE-2026-10221	2026-06-4 03:16	2026-06-1	Show	GitHub Exploit DB Packet Storm

76	-		-	-	In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Recover from panthor_gpu_flush_caches() failures We have seen a few cases where the whole memory subsystem is blocke… New	-	CVE-2025-71314	2026-06-4 03:16	2026-06-4	Show	GitHub Exploit DB Packet Storm

77	-		-	-	In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Add missing NULL check for alloc_workqueue() alloc_workqueue() can return NULL on memory allocation failure. Witho… New	-	CVE-2025-71313	2026-06-4 03:16	2026-06-4	Show	GitHub Exploit DB Packet Storm

78	7.4	HIGH Local	-	-	A privilege escalation vulnerability exists in PlayStation 4 firmware versions 13.00 through 13.02. The BD-J (Blu-ray Disc Java) sandbox can be escaped through a malformed JAR file. New	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2025-64390	2026-06-4 03:16	2026-06-3	Show	GitHub Exploit DB Packet Storm

79	5.0	MEDIUM Local	-	-	A NULL pointer dereference in the gf_filter_pid_resolve_file_template_ex function (/filter_core/filter_pid.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS)… New	CWE-476 NULL Pointer Dereference	CVE-2025-60477	2026-06-4 03:16	2026-06-3	Show	GitHub Exploit DB Packet Storm

80	7.6	HIGH Adjacent	-	-	Dräger SC Monitoring devices (SC 6002XL, SC 6802XL, SC 7000, SC 8000, SC 9000 XL) contain hard-coded plaintext credentials in source code and a denial-of-service vulnerability that allows local and r… New	CWE-798 Use of Hard-coded Credentials	CVE-2019-25722	2026-06-4 03:16	2026-06-3	Show	GitHub Exploit DB Packet Storm