Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1421	7.5	重要 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-42764	2026-06-16 13:38	2026-06-9	Show	GitHub Exploit DB Packet Storm

1422	7.5	重要 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-42765	2026-06-16 13:38	2026-06-9	Show	GitHub Exploit DB Packet Storm

1423	5.9	警告 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-42766	2026-06-16 13:37	2026-06-9	Show	GitHub Exploit DB Packet Storm

1424	5.3	警告 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-42769	2026-06-16 13:37	2026-06-9	Show	GitHub Exploit DB Packet Storm

1425	7.5	重要 Network	マイクロソフト	Microsoft Windows 10 1607 Microsoft Windows 10 21h2 Microsoft Windows Server 2025 Microsoft Windows Server 2019 Microsoft …	リモートデスクトップクライアントのリモートでコードが実行される脆弱性	CWE-362 CWE-416 CWE-787	CVE-2026-42909	2026-06-16 13:37	2026-06-9	Show	GitHub Exploit DB Packet Storm

1426	8.8	重要 Network	マイクロソフト	Microsoft Windows 10 1607 Microsoft Windows 10 21h2 Microsoft Windows Server 2025 Microsoft Windows Server 2019 Microsoft …	リモートデスクトップクライアントのリモートでコードが実行される脆弱性	CWE-416 CWE-787	CVE-2026-42985	2026-06-16 13:37	2026-06-9	Show	GitHub Exploit DB Packet Storm

1427	7.5	重要 Network	マイクロソフト	Microsoft Windows 10 1607 Microsoft Windows 10 21h2 Microsoft Windows Server 2025 Microsoft Windows Server 2019 Microsoft …	リモートデスクトップクライアントのリモートでコードが実行される脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-42992	2026-06-16 13:37	2026-06-9	Show	GitHub Exploit DB Packet Storm

1428	7.5	重要 Network	マイクロソフト	Microsoft Windows 10 21h2 Microsoft Windows Server 2025 Microsoft Windows 11 24h2 Microsoft Windows 11 26h1 Microsoft Wind…	リモートデスクトップクライアントのリモートでコードが実行される脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-42993	2026-06-16 13:37	2026-06-9	Show	GitHub Exploit DB Packet Storm

1429	5.3	警告 Network	axios project	axios	axios projectのaxiosにおける複数の脆弱性	CWE-113 CWE-1321	CVE-2026-44489	2026-06-16 13:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

1430	8.2	重要 Network	axios project	axios	axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-44490	2026-06-16 13:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254691	6.5	MEDIUM Network	mediawiki debian	mediawiki debian_linux	Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where BotPasswords can bypass CentralAuth's account lock	CWE-287 Improper Authentication	CVE-2018-0505	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

254692	6.5	MEDIUM Network	mediawiki debian	mediawiki debian_linux	Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains an information disclosure flaw in the Special:Redirect/logid	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2018-0504	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

254693	4.3	MEDIUM Network	mediawiki debian	mediawiki debian_linux	Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where contrary to the documentation, $wgRateLimits entry for 'user' overrides that for 'newbie'.	CWE-269 Improper Privilege Management	CVE-2018-0503	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

254694	8.6	HIGH Network	cisco	ios ios_xe	A vulnerability in the SM-1T3/E3 firmware on Cisco Second Generation Integrated Services Routers (ISR G2) and the Cisco 4451-X Integrated Services Router (ISR4451-X) could allow an unauthenticated, r…	CWE-20 Improper Input Validation	CVE-2018-0485	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

254695	6.7	MEDIUM Local	cisco	ios_xe	A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. T…	CWE-78 OS Command	CVE-2018-0481	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

254696	6.1	MEDIUM Adjacent	cisco	ios_xe	A vulnerability in the errdisable per VLAN feature of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause the device to crash, leading to a denial of service (DoS) condit…	CWE-362 Race Condition	CVE-2018-0480	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

254697	6.7	MEDIUM Local	cisco	ios_xe	A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to execute commands on the underlying Linux shell of an affected device with root privileges. T…	CWE-78 OS Command	CVE-2018-0477	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

254698	5.9	MEDIUM Network	cisco	ios_xe	A vulnerability in the Network Address Translation (NAT) Session Initiation Protocol (SIP) Application Layer Gateway (ALG) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to …	NVD-CWE-noinfo	CVE-2018-0476	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

254699	7.4	HIGH Adjacent	cisco	ios_xe ios	A vulnerability in the implementation of the cluster feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to trigger a denial of service (DoS) con…	CWE-20 Improper Input Validation	CVE-2018-0475	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm

254700	8.6	HIGH Network	cisco	ios	A vulnerability in the Precision Time Protocol (PTP) subsystem of Cisco IOS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition of the Precision Time…	NVD-CWE-noinfo	CVE-2018-0473	2024-11-21 12:38	2018-10-5	Show	GitHub Exploit DB Packet Storm