Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 4:11 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1471	9.8	緊急 Network	Nebuly	OptiMate	NebulyのOptiMateにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-31217	2026-05-28 14:33	2026-05-12	Show	GitHub Exploit DB Packet Storm

1472	7.5	重要 Network	Gleam-wisp	Wisp	Gleam-wispのWispにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-32145	2026-05-28 14:33	2026-04-2	Show	GitHub Exploit DB Packet Storm

1473	7.5	重要 Network	Elixir Plug	Plug.cowboy	Elixir PlugのPlug.cowboyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-32688	2026-05-28 14:33	2026-04-27	Show	GitHub Exploit DB Packet Storm

1474	8.8	重要 Network	9bis	KiTTY	KovidgoyalのKittyにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-33633	2026-05-28 14:33	2026-05-19	Show	GitHub Exploit DB Packet Storm

1475	9.8	緊急 Network	9bis	KiTTY	KovidgoyalのKittyにおける複数の脆弱性	CWE-125 CWE-190 CWE-787	CVE-2026-33642	2026-05-28 14:33	2026-05-19	Show	GitHub Exploit DB Packet Storm

1476	7.5	重要 Network	Tatsuhiro-t	Ngtcp2	Tatsuhiro-tのNgtcp2におけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-40170	2026-05-28 14:33	2026-04-16	Show	GitHub Exploit DB Packet Storm

1477	7.8	重要 Local	opentelemetry	OpenTelemetry.Exporter.OpenTelemetryProtocol	opentelemetryのOpenTelemetry.Exporter.OpenTelemetryProtocolにおけるアクセスパーミションのディレクトリの一時ファイル作成に関する脆弱性	CWE-379 不適切なアクセスパーミションのディレクトリに一時ファイル作成	CVE-2026-42191	2026-05-28 14:33	2026-05-12	Show	GitHub Exploit DB Packet Storm

1478	7.5	重要 Network	Absinthe-graphql	Absinthe	Absinthe-graphqlのAbsintheにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-42793	2026-05-28 14:32	2026-05-8	Show	GitHub Exploit DB Packet Storm

1479	7.5	重要 Network	Absinthe-graphql	Absinthe	Absinthe-graphqlのAbsintheにおけるアルゴリズムの複雑さに関する脆弱性	CWE-407 アルゴリズムの複雑性	CVE-2026-43967	2026-05-28 14:32	2026-05-8	Show	GitHub Exploit DB Packet Storm

1480	6.1	警告 Network	The Kyverno Authors	Policy-reporter-ui	The Kyverno AuthorsのPolicy-reporter-uiにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-44245	2026-05-28 14:32	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311081	5.3	MEDIUM Network	apache	juddi	Apache jUDDI before 2.0 allows attackers to spoof entries in log files via vectors related to error logging of keys from uddiget.jsp.	CWE-20 Improper Input Validation	CVE-2009-1197	2024-11-21 10:01	2017-10-31	Show	GitHub Exploit DB Packet Storm

311082	-		ibm	websphere_mq	IBM WebSphere MQ 6.0 before 6.0.2.8 and 7.0 before 7.0.1.0 does not properly handle long group names, which might allow local users to gain privileges by leveraging combinations of group names with t…	CWE-20 Improper Input Validation	CVE-2009-0905	2024-11-21 10:01	2011-10-31	Show	GitHub Exploit DB Packet Storm

311083	-		ibm	websphere_mq	Heap-based buffer overflow in the client in IBM WebSphere MQ 6.0 before 6.0.2.7 and 7.0 before 7.0.1.0 allows local users to gain privileges via crafted SSL information in a Client Channel Definition…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-0900	2024-11-21 10:01	2011-10-31	Show	GitHub Exploit DB Packet Storm

311084	-		dell	wyse_device_manager	hagent.exe in Wyse Device Manager (WDM) 4.7.x does not require authentication for commands, which allows remote attackers to obtain management access via a crafted query, as demonstrated by a V52 que…	CWE-287 Improper Authentication	CVE-2009-0695	2024-11-21 10:00	2012-06-20	Show	GitHub Exploit DB Packet Storm

311085	-		dell	wyse_device_manager	Multiple buffer overflows in Wyse Device Manager (WDM) 4.7.x allow remote attackers to execute arbitrary code via (1) the User-Agent HTTP header to hserver.dll or (2) unspecified input to hagent.exe.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-0693	2024-11-21 10:00	2012-06-20	Show	GitHub Exploit DB Packet Storm

311086	-		redhat	network_satellite_server	Red Hat Network (RHN) Satellite Server 5.3 and 5.4 does not properly rewrite unspecified URLs, which allows remote attackers to (1) obtain unspecified sensitive host information or (2) use the server…	CWE-200 Information Exposure	CVE-2009-0788	2024-11-21 10:00	2011-04-19	Show	GitHub Exploit DB Packet Storm

311087	7.5	HIGH Network	mirc	mirc	mIRC before 6.35 allows attackers to cause a denial of service (crash) via a long nickname.	CWE-400 Uncontrolled Resource Consumption	CVE-2008-7314	2024-11-21 09:58	2020-01-24	Show	GitHub Exploit DB Packet Storm

311088	7.8	HIGH Local	getfiregpg	iceweasel-firegpg	A symlink issue exists in Iceweasel-firegpg before 0.6 due to insecure tempfile handling.	CWE-59 Link Following	CVE-2008-7273	2024-11-21 09:58	2019-11-19	Show	GitHub Exploit DB Packet Storm

311089	5.5	MEDIUM Local	alsa-project	alsa	alsa-utils 1.0.19 and later versions allows local users to overwrite arbitrary files via a symlink attack via the /usr/bin/alsa-info and /usr/bin/alsa-info.sh scripts.	CWE-59 Link Following	CVE-2009-0035	2024-11-21 09:58	2019-11-9	Show	GitHub Exploit DB Packet Storm

311090	9.8	CRITICAL Network	gri_project debian	gri debian_linux	gri before 2.12.18 generates temporary files in an insecure way.	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2008-7291	2024-11-21 09:58	2019-11-8	Show	GitHub Exploit DB Packet Storm