Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
191 8.1 重要
Network 		flowiseai flowise flowiseaiのflowiseにおける複数の脆弱性 CWE-284
CWE-639
CWE-915
CVE-2026-42863 2026-06-12 14:52 2026-06-8 Show GitHub Exploit DB Packet Storm
192 6.5 警告
Network 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		Windows Kerberos のサービス拒否の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-42903 2026-06-12 14:52 2026-06-9 Show GitHub Exploit DB Packet Storm
193 9.6 緊急
Adjacent 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows 11 26h1
Microsoft Windows 11 24h2
Microsoft Wind… 		Windows TCP/IP の特権昇格の脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-42904 2026-06-12 14:52 2026-06-9 Show GitHub Exploit DB Packet Storm
194 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		Windows DWM Core ライブラリの特権の昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-42905 2026-06-12 14:52 2026-06-9 Show GitHub Exploit DB Packet Storm
195 5.5 警告
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows 11 26h1
Microsoft Windows 11 24h2
Microsoft Wind… 		Windows シェルの情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2026-42906 2026-06-12 14:52 2026-06-9 Show GitHub Exploit DB Packet Storm
196 6.5 警告
Network 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 11 26h1
Microsoft … 		Windows シェルの情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2026-42907 2026-06-12 14:52 2026-06-9 Show GitHub Exploit DB Packet Storm
197 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2025
Microsoft Windows 11 25h2
Microsoft Windows 11 26h1
Microsoft Windows 11 24h2 		Windows ホットパッチ監視サービスの特権昇格の脆弱性 CWE-787
境界外書き込み 		CVE-2026-42910 2026-06-12 14:52 2026-06-9 Show GitHub Exploit DB Packet Storm
198 7 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-42911 2026-06-12 14:52 2026-06-9 Show GitHub Exploit DB Packet Storm
199 7 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		Windows テレフォニー サービスの特権昇格の脆弱性 CWE-362
競合状態 		CVE-2026-42912 2026-06-12 14:52 2026-06-9 Show GitHub Exploit DB Packet Storm
200 5.3 警告
Network 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		Windows Kerberos のサービス拒否の脆弱性 CWE-125
境界外読み取り 		CVE-2026-42914 2026-06-12 14:52 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344451 - nulllogic null_httpd Cross-site scripting (XSS) vulnerability in Null HTTP Server 0.5.0 and earlier allows remote attackers to insert arbitrary HTML into a "404 Not Found" response. NVD-CWE-Other
CVE-2002-1497 2018-05-3 10:29 2003-04-2 Show GitHub Exploit DB Packet Storm
344452 - microsoft remote_desktop_connection
windows_terminal_services_using_rdp 		Microsoft Terminal Server using Remote Desktop Protocol (RDP) 5.2 stores an RSA private key in mstlsapi.dll and uses it to sign a certificate, which allows remote attackers to spoof public keys of le… NVD-CWE-Other
CVE-2005-1794 2018-03-28 10:29 2005-06-1 Show GitHub Exploit DB Packet Storm
344453 - easy_software_products cups The Internet Printing Protocol (IPP) implementation in CUPS before 1.1.21 allows remote attackers to cause a denial of service (service hang) via a certain UDP packet to the IPP port. NVD-CWE-Other
CVE-2004-0558 2018-03-13 10:29 2004-09-28 Show GitHub Exploit DB Packet Storm
344454 - wikyblog wikyblog Cross-site scripting (XSS) vulnerability in index.php/Special/Main/Templates in WikyBlog 1.7.2 and 1.7.3 rc2 allows remote attackers to inject arbitrary web script or HTML via the which parameter in … CWE-79
Cross-site Scripting 		CVE-2010-0754 2018-01-13 11:29 2010-02-27 Show GitHub Exploit DB Packet Storm
344455 - microsoft internet_information_server Microsoft IIS for Far East editions 4.0 and 5.0 allows remote attackers to read source code for parsed pages via a malformed URL that uses the lead-byte of a double-byte character. NVD-CWE-Other
CVE-2000-1090 2018-01-12 01:57 2001-02-12 Show GitHub Exploit DB Packet Storm
344456 - mysql mysql The mysql_uninstall_plugin function in sql/sql_plugin.cc in MySQL 5.1 before 5.1.46 does not check privileges before uninstalling a plugin, which allows remote attackers to uninstall arbitrary plugin… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-1621 2018-01-5 11:29 2010-05-15 Show GitHub Exploit DB Packet Storm
344457 - realnetworks helix_universal_server Multiple buffer overflows in RealNetworks Helix Universal Server 9.0 (9.0.2.768) allow remote attackers to execute arbitrary code via (1) a long Transport field in a SETUP RTSP request, (2) a DESCRIB… NVD-CWE-Other
CVE-2002-1643 2017-12-23 11:29 2002-12-19 Show GitHub Exploit DB Packet Storm
344458 - ramp_networks webramp WebRamp M3 router does not disable remote telnet or HTTP access to itself, even when access has been explicitly disabled. NVD-CWE-Other
CVE-1999-1264 2017-12-20 11:29 1999-01-21 Show GitHub Exploit DB Packet Storm
344459 - linux linux_kernel The Linux 2.2.x kernel does not restrict the number of Unix domain sockets as defined by the wmem_max parameter, which allows local users to cause a denial of service by requesting a large number of … NVD-CWE-Other
CVE-2000-0227 2017-12-20 11:29 2000-03-23 Show GitHub Exploit DB Packet Storm
344460 - goahead_software goahead_webserver Directory traversal vulnerability in GoAhead web server 2.1 and earlier allows remote attackers to read arbitrary files via a .. attack in an HTTP GET request. NVD-CWE-Other
CVE-2001-0228 2017-12-20 11:29 2001-05-3 Show GitHub Exploit DB Packet Storm