Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1541 6.5 警告
Network 		Google Android GoogleのAndroidにおける複数の脆弱性 CWE-120
CWE-125
CVE-2026-0136 2026-06-22 11:31 2026-06-16 Show GitHub Exploit DB Packet Storm
1542 7.8 重要
Local 		Google Android GoogleのAndroidにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-0137 2026-06-22 11:31 2026-06-16 Show GitHub Exploit DB Packet Storm
1543 7.8 重要
Local 		Google Android GoogleのAndroidにおける複数の脆弱性 CWE-120
CWE-787
CVE-2026-0138 2026-06-22 11:31 2026-06-16 Show GitHub Exploit DB Packet Storm
1544 8.8 重要
Network 		Google Android GoogleのAndroidにおけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-0139 2026-06-22 11:30 2026-06-16 Show GitHub Exploit DB Packet Storm
1545 4.3 警告
Network 		Google Android GoogleのAndroidにおける複数の脆弱性 CWE-125
CWE-190
CVE-2026-0140 2026-06-22 11:30 2026-06-16 Show GitHub Exploit DB Packet Storm
1546 4.3 警告
Network 		Google Android GoogleのAndroidにおける複数の脆弱性 CWE-120
CWE-125
CVE-2026-0141 2026-06-22 11:30 2026-06-16 Show GitHub Exploit DB Packet Storm
1547 3.3
Local 		Google Android GoogleのAndroidにおける複数の脆弱性 CWE-125
CWE-20
CVE-2026-0142 2026-06-22 11:30 2026-06-16 Show GitHub Exploit DB Packet Storm
1548 - - (複数のベンダ) (複数の製品) SignalRGBカーネルドライバにおける不適切なアクセス制御およびIOCTLの脆弱性 - - 2026-06-19 11:02 2026-06-18 Show GitHub Exploit DB Packet Storm
1549 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年06月16日) - - 2026-06-18 11:35 2026-06-17 Show GitHub Exploit DB Packet Storm
1550 8.1 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2026-12328 2026-06-17 15:46 2026-06-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
881 7.5 HIGH
Network 		- - Insecure Permissions vulnerability in MSI NBFoundation Service v.2.0.2506.1201 allows a remote attacker to obtain sensitive information via the 3DES-ECB encryption New CWE-200
Information Exposure 		CVE-2026-37454 2026-06-27 00:16 2026-06-26 Show GitHub Exploit DB Packet Storm
882 7.5 HIGH
Network 		- - Insecure Permissions vulnerability in MSI NBFoundation Service v.2.0.2506.1201 allows a remote attacker to obtain sensitive information via the MSI_SERVICE_2 pipe New CWE-200
Information Exposure 		CVE-2026-37453 2026-06-27 00:16 2026-06-26 Show GitHub Exploit DB Packet Storm
883 7.5 HIGH
Network 		- - Insecure Permissions vulnerability in MSI NBFoundation Service v.2.0.2506.1201 allows a remote attacker to obtain sensitive information via the MSIAPService.exe component New CWE-200
Information Exposure 		CVE-2026-37452 2026-06-27 00:16 2026-06-26 Show GitHub Exploit DB Packet Storm
884 7.7 HIGH
Local 		- - GROCERY-STORE-MANAGEMENT-SYSTEM-USING-PHP-AND-MYSQL-PHPMYADMIN v1.0 was discovered to contain a SQL injection vulnerability in the scost parameter in /grocery/search_products.php. This vulnerability … New CWE-89
SQL Injection 		CVE-2026-37149 2026-06-27 00:16 2026-06-26 Show GitHub Exploit DB Packet Storm
885 - - - FOSSBilling is a free, open-source billing and client management system. In versions 0.7.2 and prior, a query-construction flaw in client list endpoints allowed authenticated clients to bypass tenant… New CWE-863
 Incorrect Authorization 		CVE-2026-23513 2026-06-27 00:16 2026-06-24 Show GitHub Exploit DB Packet Storm
886 6.5 MEDIUM
Network 		- - By sending a deeply nested ASN1 structure to a Apache Kerby client or service, it's possible to trigger a StackOverFlow Exception which can lead to denial of service issues. Users are recommended to … CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-57914 2026-06-26 23:51 2026-06-26 Show GitHub Exploit DB Packet Storm
887 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 2.0.0 before 2.0.6, from 1.0.0 before 1.3.6. User… CWE-22
Path Traversal 		CVE-2025-55017 2026-06-26 23:51 2026-06-26 Show GitHub Exploit DB Packet Storm
888 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.6, from 2.0.0 before 2.0.7. User… CWE-22
Path Traversal 		CVE-2025-64152 2026-06-26 23:51 2026-06-26 Show GitHub Exploit DB Packet Storm
889 7.8 HIGH
Local 		mmaitre314 picklescan picklescan before 0.0.28 fails to detect malicious pickle files that invoke torch.utils._config_module.load_config function within reduce methods. Attackers can craft pickle files embedding arbitrary… CWE-502
 Deserialization of Untrusted Data 		CVE-2025-71348 2026-06-26 23:46 2026-06-21 Show GitHub Exploit DB Packet Storm
890 7.5 HIGH
Network 		- - Setracker2 Android Companion App com.tgelec.setracker versions 3.1.5 and prior encrypts requests between the watch and its backend with static hardcoded AES keys and initialization vectors. This allo… CWE-321
 Use of Hard-coded Cryptographic Key 		CVE-2026-9220 2026-06-26 23:17 2026-06-26 Show GitHub Exploit DB Packet Storm