Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2081 7.5 重要
Adjacent 		TP-LINK Technologies Tapo L535E  Firmware
Tapo P300 Firmware
Tapo D100C Firmware 		TP-LINK TechnologiesのTapo D100C Firmware等の複数製品における重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2026-34126 2026-06-5 10:44 2026-05-28 Show GitHub Exploit DB Packet Storm
2082 - - - サーバ製品におけるインテル社公表脆弱性(INTEL-SA-01171)による影響について - CVE-2025-24851
CVE-2025-27243
CVE-2025-32003 		2026-06-4 17:07 2026-05-29 Show GitHub Exploit DB Packet Storm
2083 - - (複数のベンダ) (複数の製品) Collibra Platform Agentにおける複数の脆弱性 - - 2026-06-4 11:37 2026-06-3 Show GitHub Exploit DB Packet Storm
2084 - - (複数のベンダ) (複数の製品) Appsmithにおけるクロスサイトスクリプティングの脆弱性 - - 2026-06-4 11:37 2026-06-3 Show GitHub Exploit DB Packet Storm
2085 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年06月02日) - - 2026-06-4 11:37 2026-06-3 Show GitHub Exploit DB Packet Storm
2086 - - - サーバ製品におけるインテル社公表脆弱性(INTEL-SA-01234)による影響について - CVE-2025-20027
CVE-2025-20028
CVE-2025-20064
CVE-2025-20068
CVE-2025-20073
CVE-2025-20105
CVE-2025-22444
CVE-2025-22850 		2026-06-3 17:42 2026-04-24 Show GitHub Exploit DB Packet Storm
2087 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-23268 2026-06-3 17:05 2026-03-18 Show GitHub Exploit DB Packet Storm
2088 7.1 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-23269 2026-06-3 17:05 2026-03-18 Show GitHub Exploit DB Packet Storm
2089 9.8 緊急
Network 		InHand Networks ir302 ファームウェア
IR615 ファームウェア
IR315 Firmware
IR305 Firmware 		InHand Networksのir302 ファームウェア等の複数製品におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-38702 2026-06-3 17:05 2026-05-28 Show GitHub Exploit DB Packet Storm
2090 9.8 緊急
Network 		InHand Networks ir302 ファームウェア
IR615 ファームウェア
IR315 Firmware
IR305 Firmware 		InHand Networksのir302 ファームウェア等の複数製品におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-38703 2026-06-3 17:05 2026-05-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
319951 - - - runofast Indoor Security Camera for Baby Monitor has a default password of password for the root account. This allows access to the /stream1 URI via the rtsp:// protocol to receive the video and audi… - CVE-2024-46959 2024-09-20 23:35 2024-09-19 Show GitHub Exploit DB Packet Storm
319952 - - - An issue was discovered in Bravura Security Fabric versions 12.3.x before 12.3.5.32784, 12.4.x before 12.4.3.35110, 12.5.x before 12.5.2.35950, 12.6.x before 12.6.2.37183, and 12.7.x before 12.7.1.38… - CVE-2024-45523 2024-09-20 23:35 2024-09-19 Show GitHub Exploit DB Packet Storm
319953 - - - Victure PC420 1.1.39 was discovered to use a weak encryption key for the file enabled_telnet.dat on the Micro SD card. - CVE-2023-41612 2024-09-20 23:35 2024-09-19 Show GitHub Exploit DB Packet Storm
319954 6.5 MEDIUM
Network 		syscomgo omflow OMFLOW from The SYSCOM Group does not properly restrict the query range of its data query functionality, allowing remote attackers with regular privileges to obtain accounts and password hashes of ot… NVD-CWE-noinfo
CVE-2024-8780 2024-09-20 23:35 2024-09-16 Show GitHub Exploit DB Packet Storm
319955 6.5 MEDIUM
Network 		syscomgo omflow OMFLOW from The SYSCOM Group does not properly validate user input of the download functionality, allowing remote attackers with regular privileges to read arbitrary system files. CWE-22
Path Traversal 		CVE-2024-8778 2024-09-20 23:23 2024-09-16 Show GitHub Exploit DB Packet Storm
319956 7.5 HIGH
Network 		syscomgo omflow OMFLOW from The SYSCOM Group has an information leakage vulnerability, allowing unauthorized remote attackers to read arbitrary system configurations. If LDAP authentication is enabled, attackers can… CWE-522
 Insufficiently Protected Credentials 		CVE-2024-8777 2024-09-20 23:22 2024-09-16 Show GitHub Exploit DB Packet Storm
319957 6.5 MEDIUM
Network 		ibm aspera_shares IBM Aspera Shares 1.0 through 1.10.0 PL3 does not invalidate session after a password reset which could allow an authenticated user to impersonate another user on the system. CWE-613
 Insufficient Session Expiration 		CVE-2024-38315 2024-09-20 23:09 2024-09-17 Show GitHub Exploit DB Packet Storm
319958 7.8 HIGH
Local 		mattermost mattermost_desktop Mattermost Desktop App versions <=5.8.0 fail to specify an absolute path when searching the cmd.exe file, which allows a local attacker who is able to put an cmd.exe file in the Downloads folder of … CWE-427
 Uncontrolled Search Path Element 		CVE-2024-39613 2024-09-20 22:59 2024-09-16 Show GitHub Exploit DB Packet Storm
319959 5.3 MEDIUM
Physics 		rfideas micard_plus_ci_firmware
micard_plus_ble_firmware 		The MiCard PLUS Ci and MiCard PLUS BLE reader products developed by rf IDEAS and rebranded by NT-ware have a firmware fault that may result in characters randomly being dropped from some ID card read… NVD-CWE-noinfo
CVE-2024-1578 2024-09-20 22:53 2024-09-16 Show GitHub Exploit DB Packet Storm
319960 6.1 MEDIUM
Network 		jetbrains intellij_idea In JetBrains IntelliJ IDEA before 2024.1 hTML injection via the project name was possible CWE-79
Cross-site Scripting 		CVE-2024-46970 2024-09-20 22:23 2024-09-16 Show GitHub Exploit DB Packet Storm