Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
133211	9.8	緊急 Network	Spark Development Network	Rock RMS	Rock RMS における危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2019-18643	2021-09-15 13:53	2019-11-5	Show	GitHub Exploit DB Packet Storm

133212	9.8	緊急 Network	Spark Development Network	Rock RMS	Rock RMS における脆弱性	CWE-noinfo 情報不足	CVE-2019-18642	2021-09-15 13:53	2019-02-19	Show	GitHub Exploit DB Packet Storm

133213	7.8	重要 Local	Eaton	easySoft	Eaton's easySoft ソフトウェアにおける型の取り違えに関する脆弱性	CWE-843 型の取り違え	CVE-2020-6656	2021-09-15 13:53	2020-01-9	Show	GitHub Exploit DB Packet Storm

133214	7.8	重要 Local	Eaton	easySoft	Eaton's easySoft ソフトウェアにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2020-6655	2021-09-15 13:53	2020-01-9	Show	GitHub Exploit DB Packet Storm

133215	5.5	警告 Local	PyO3	PyO3	Rust 用 pyo3 crate における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2020-35917	2021-09-15 13:43	2020-11-28	Show	GitHub Exploit DB Packet Storm

133216	5.5	警告 Local	Hakobyte	Branca	Rust 用 branca crate における脆弱性	CWE-noinfo 情報不足	CVE-2020-35918	2021-09-15 12:28	2020-11-29	Show	GitHub Exploit DB Packet Storm

133217	5.5	警告 Local	net2 プロジェクト	net2	Rust 用 net2 crate における脆弱性	CWE-noinfo 情報不足	CVE-2020-35919	2021-09-15 12:21	2020-11-7	Show	GitHub Exploit DB Packet Storm

133218	5.5	警告 Local	The Rust Programming Language	Socket2	Rust 用 socket2 crate における脆弱性	CWE-noinfo 情報不足	CVE-2020-35920	2021-09-15 11:48	2020-11-6	Show	GitHub Exploit DB Packet Storm

133219	5.5	警告 Local	miow プロジェクト	miow	Rust 用 miow crate における脆弱性	CWE-noinfo 情報不足	CVE-2020-35921	2021-09-15 11:22	2020-11-13	Show	GitHub Exploit DB Packet Storm

133220	5.5	警告 Local	mio プロジェクト	mio	Rust 用 mio crate における脆弱性	CWE-noinfo 情報不足	CVE-2020-35922	2021-09-15 11:08	2020-11-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
31	3.6	LOW Local	lfprojects	mlflow	A flaw has been found in MLflow up to 3.10.0. This issue affects the function mlflow.data.digest_utils of the file mlflow/data/digest_utils.py of the component Dataset Digest Computation. This manipu… New	CWE-327 CWE-328 Use of a Broken or Risky Cryptographic Algorithm Use of Weak Hash	CVE-2026-10803	2026-06-5 03:24	2026-06-4	Show	GitHub Exploit DB Packet Storm

32	7.5	HIGH Network	-	-	Version 3.0.7 of the Securly Chrome Extension uses EVP_BytesToKey key derivation with MD5 and a single iteration for AES encryption. MD5 has been broken since 2004 and a single iteration provides no … New	-	CVE-2026-8881	2026-06-5 03:16	2026-06-4	Show	GitHub Exploit DB Packet Storm

33	7.4	HIGH Local	-	-	In libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-group unescaped phys output can inject udev properties leading to arbitrary root code execution New	CWE-93 CRLF Injection	CVE-2026-50292	2026-06-5 03:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

34	2.2	LOW Network	-	-	In OpenStack Neutron before 28.0.1, a project manager can create or update a port on a shared network owned by another project and set device_owner to a value that has "network:" at the beginning ("n… New	CWE-863 Incorrect Authorization	CVE-2026-50266	2026-06-5 03:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

35	9.1	CRITICAL Network	-	-	Deserialization of Untrusted Data in the Java replace-resolve path in Apache Fory fory-core Java SDK before 1.1.0 on Java/JVM platforms allows a remote attacker to bypass class registration, TypeChec… New	CWE-502 Deserialization of Untrusted Data	CVE-2026-50076	2026-06-5 03:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

36	6.5	MEDIUM Network	-	-	Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One (U+0661) were accepted but not properly parsed as numbers. This… New	CWE-1289 Improper Validation of Unsafe Equivalence in Input	CVE-2026-49940	2026-06-5 03:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

37	-		-	-	The netty incubator codec.bhttp is a java language binary http parser. The library implements Oblivious HTTP (RFC 9458) using BoringSSL's HPKE C library via JNI. When deriving native memory addresses… New	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2026-48040	2026-06-5 03:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

38	7.4	HIGH Network	-	-	An issue was discovered in OpenStack oslo.messaging 1.0.0 through 17.3.0. The oslo.messaging RabbitMQ driver does not perform TLS hostname verification when connecting to the message broker. When ssl… New	CWE-297 Improper Validation of Certificate with Host Mismatch	CVE-2026-44393	2026-06-5 03:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

39	9.9	CRITICAL Network	-	-	Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose a public `/image/<hash>` route that resolves attacker-controlled entries from `image_has… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-43986	2026-06-5 03:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

40	8.9	HIGH Network	-	-	Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose `log_js_errors` to any authenticated user, including guest users when guest access is en… New	CWE-79 Cross-site Scripting	CVE-2026-43984	2026-06-5 03:16	2026-06-5	Show	GitHub Exploit DB Packet Storm