Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1891 9.8 緊急
Network 		Linux Linux Kernel LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-31436 2026-05-21 10:53 2026-04-22 Show GitHub Exploit DB Packet Storm
1892 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-31437 2026-05-21 10:53 2026-04-22 Show GitHub Exploit DB Packet Storm
1893 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-31438 2026-05-21 10:53 2026-04-22 Show GitHub Exploit DB Packet Storm
1894 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-31439 2026-05-21 10:53 2026-04-22 Show GitHub Exploit DB Packet Storm
1895 6.1 警告
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-31906 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
1896 7.5 重要
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-31909 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
1897 7.5 重要
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-31910 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
1898 9.1 緊急
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるハードコードされた暗号鍵の使用に関する脆弱性 CWE-321
ハードコードされた暗号鍵の使用 		CVE-2026-31986 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
1899 4.8 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-3495 2026-05-21 10:53 2026-05-18 Show GitHub Exploit DB Packet Storm
1900 6.5 警告
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-35086 2026-05-21 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345211 - apple quicktime Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted BMP image. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-0536 2017-09-19 10:30 2010-04-1 Show GitHub Exploit DB Packet Storm
345212 - apple quicktime Per: http://lists.apple.com/archives/security-announce/2010//Mar/msg00002.html ' This issue does not affect Mac OS X systems.' CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-0536 2017-09-19 10:30 2010-04-1 Show GitHub Exploit DB Packet Storm
345213 - apple safari
webkit 		Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary w… CWE-79
Cross-site Scripting 		CVE-2010-0544 2017-09-19 10:30 2010-06-12 Show GitHub Exploit DB Packet Storm
345214 - cisco ios Cisco IOS 12.1 through 12.4, when Cisco Unified Communications Manager Express (CME) or Cisco Unified Survivable Remote Site Telephony (SRST) is enabled, allows remote attackers to cause a denial of … NVD-CWE-noinfo
CVE-2010-0586 2017-09-19 10:30 2010-03-26 Show GitHub Exploit DB Packet Storm
345215 - google chrome Google Chrome before 4.0.249.89 attempts to make direct connections to web sites when all configured proxy servers are unavailable, which allows remote HTTP servers to obtain potentially sensitive in… CWE-200
Information Exposure 		CVE-2010-0643 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
345216 - google chrome Google Chrome before 4.0.249.89, when a SOCKS 5 proxy server is configured, sends DNS queries directly, which allows remote DNS servers to obtain potentially sensitive information about the identity … CWE-200
Information Exposure 		CVE-2010-0644 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
345217 - google chrome Multiple integer overflows in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow remote attackers to execute arbitrary code in the Chrome sandbox via crafted use … CWE-189
Numeric Errors 		CVE-2010-0645 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
345218 - google chrome Multiple integer signedness errors in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow remote attackers to execute arbitrary code in the Chrome sandbox via craf… CWE-189
Numeric Errors 		CVE-2010-0646 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
345219 - apple
google 		webkit
chrome 		WebKit before r53525, as used in Google Chrome before 4.0.249.89, allows remote attackers to execute arbitrary code in the Chrome sandbox via a malformed RUBY element, as demonstrated by a <ruby>><ta… CWE-94
Code Injection 		CVE-2010-0647 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
345220 - mozilla firefox Mozilla Firefox, possibly before 3.6, allows remote attackers to discover a redirect's target URL, for the session of a specific user of a web site, by placing the site's URL in the HREF attribute of… CWE-200
Information Exposure 		CVE-2010-0648 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm