Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2101	7.9	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2012 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Wind…	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-693 保護メカニズムの不具合	CVE-2026-48570	2026-06-11 16:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

2102	7.9	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2012 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Wind…	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-1329 アップデートができないコンポーネントへの依存	CVE-2026-48573	2026-06-11 16:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

2103	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2012 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Wind…	Windows Media のリモートでコードが実行される脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-48574	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

2104	7.9	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2012 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Wind…	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-693 保護メカニズムの不具合	CVE-2026-48575	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

2105	7.9	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2012 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Wind…	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-1329 アップデートができないコンポーネントへの依存	CVE-2026-48576	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

2106	7.9	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2012 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Wind…	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-48578	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

2107	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Windows Server 2016 Microsoft Wind…	Windows カーネルの特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-48583	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

2108	7.3	重要 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-48913	2026-06-11 16:15	2026-06-8	Show	GitHub Exploit DB Packet Storm

2109	7.5	重要 Network	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Windows Server 2016 Microsoft Wind…	HTTP.sys のサービス拒否の脆弱性	CWE-400 リソースの枯渇	CVE-2026-49160	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

2110	5.3	警告 Network	FreeSWITCH	FreeSWITCH	FreeSWITCHにおけるエンコードおよびエスケープに関する脆弱性	CWE-116 不適切なエンコード、または出力のエスケープ	CVE-2026-49472	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
343811	-	squirrelmail	gpg_plugin	The G/PGP (GPG) Plugin 2.1 and earlier for Squirrelmail allow remote authenticated users to execute arbitrary commands via shell metacharacters in (1) the fpr parameter to the deleteKey function in g…	NVD-CWE-Other	CVE-2005-1924	2018-10-20 00:32	2005-12-31	Show	GitHub Exploit DB Packet Storm

343812	-	rob_flynn	gaim	Gaim before 1.3.1 allows remote attackers to cause a denial of service (crash) via a malformed MSN message that leads to a memory allocation of a large size, possibly due to an integer signedness err…	NVD-CWE-Other	CVE-2005-1934	2018-10-20 00:32	2005-05-19	Show	GitHub Exploit DB Packet Storm

343813	-	todd_miller	sudo	Race condition in sudo 1.3.1 up to 1.6.8p8, when the ALL pseudo-command is used after a user entry in the sudoers file, allows local users to gain privileges via a symlink attack.	NVD-CWE-Other	CVE-2005-1993	2018-10-20 00:32	2005-06-20	Show	GitHub Exploit DB Packet Storm

343814	-	jboss	jboss	JBOSS 3.2.2 through 3.2.7 and 4.0.2 allows remote attackers to obtain sensitive information via a GET request (1) with a "%." (percent dot), which reveals the installation path or (2) with a % (perce…	NVD-CWE-Other	CVE-2005-2006	2018-10-20 00:32	2005-06-17	Show	GitHub Exploit DB Packet Storm

343815	-	duware	duforum	Multiple SQL injection vulnerabilities in DUware DUforum 3.1, and possibly other versions, allow remote attackers to execute arbitrary SQL commands via the (1) iMsg parameter to messages.asp, iFor pa…	NVD-CWE-Other	CVE-2005-2048	2018-10-20 00:32	2005-06-22	Show	GitHub Exploit DB Packet Storm

343816	-	hosting_controller	hosting_controller	Cross-site scripting (XSS) vulnerability in error.asp for Hosting Controller allows remote attackers to inject arbitrary web script or HTML via the error parameter.	NVD-CWE-Other	CVE-2005-2077	2018-10-20 00:32	2005-06-29	Show	GitHub Exploit DB Packet Storm

343817	-	kde xpdf	kpdf xpdf	xpdf and kpdf do not properly validate the "loca" table in PDF files, which allows local users to cause a denial of service (disk consumption and hang) via a PDF file with a "broken" loca table, whic…	NVD-CWE-Other	CVE-2005-2097	2018-10-20 00:32	2005-08-16	Show	GitHub Exploit DB Packet Storm

343818	-	linux	linux_kernel	The KEYCTL_JOIN_SESSION_KEYRING operation in the Linux kernel before 2.6.12.5 contains an error path that does not properly release the session management semaphore, which allows local users or remot…	NVD-CWE-Other	CVE-2005-2098	2018-10-20 00:32	2005-08-23	Show	GitHub Exploit DB Packet Storm

343819	-	linux	linux_kernel	The Linux kernel before 2.6.12.5 does not properly destroy a keyring that is not instantiated properly, which allows local users or remote attackers to cause a denial of service (kernel oops) via a k…	CWE-399 Resource Management Errors	CVE-2005-2099	2018-10-20 00:32	2005-08-23	Show	GitHub Exploit DB Packet Storm

343820	-	rob_flynn	gaim	The AIM/ICQ module in Gaim before 1.5.0 allows remote attackers to cause a denial of service (application crash) via a filename that contains invalid UTF-8 characters.	NVD-CWE-Other	CVE-2005-2102	2018-10-20 00:32	2005-08-16	Show	GitHub Exploit DB Packet Storm