Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2131	2.6	低 Network	Devolutions	Devolutions Server	DevolutionsのDevolutions Serverにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-9248	2026-05-28 14:35	2026-05-22	Show	GitHub Exploit DB Packet Storm

2132	3.1	低 Network	Devolutions	Devolutions Server	DevolutionsのDevolutions Serverにおける未検証のパスワード変更に関する脆弱性	CWE-620 未検証のパスワード変更	CVE-2026-9249	2026-05-28 14:35	2026-05-22	Show	GitHub Exploit DB Packet Storm

2133	5.4	警告 Network	Devolutions	Devolutions Server	DevolutionsのDevolutions Serverにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-9251	2026-05-28 14:35	2026-05-22	Show	GitHub Exploit DB Packet Storm

2134	9.8	緊急 Network	LiteSpeed Technologies	LiteSpeed cPanel Plugin LiteSpeed WHM Plugin (previously cPanel/WHM Plugin)	LiteSpeed TechnologiesのLiteSpeed cPanel Plugin等の複数製品における不適切な権限設定に関する脆弱性	CWE-266 不適切な権限設定	CVE-2026-48172	2026-05-28 14:34	2026-05-21	Show	GitHub Exploit DB Packet Storm

2135	9.8	緊急 Network	Apache Software Foundation	Apache Fory	Apache Software FoundationのApache Foryにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-48207	2026-05-28 14:34	2026-05-21	Show	GitHub Exploit DB Packet Storm

2136	9.8	緊急 Network	FastNetMon	FastNetMon	Pavel OdintsovのFastNetMonにおける複数の脆弱性	CWE-122 CWE-193 CWE-787	CVE-2026-48689	2026-05-28 14:34	2026-05-26	Show	GitHub Exploit DB Packet Storm

2137	9.1	緊急 Network	Honeywell International Inc.	Control Network Module Firmware	Honeywell International Inc.のControl Network Module Firmwareにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-5433	2026-05-28 14:33	2026-05-21	Show	GitHub Exploit DB Packet Storm

2138	8.2	重要 Network	デル	PowerFlex Rack PowerFlex appliance Intelligent Catalog Software PowerFlex Manager	デルのPowerFlex appliance Intelligent Catalog Software等の複数製品におけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2025-26483	2026-05-28 14:33	2026-05-22	Show	GitHub Exploit DB Packet Storm

2139	6.5	警告 Adjacent	デル	PowerFlex Rack PowerFlex appliance Intelligent Catalog Software PowerFlex Manager	デルのPowerFlex appliance Intelligent Catalog Software等の複数製品における証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2025-32745	2026-05-28 14:33	2026-05-22	Show	GitHub Exploit DB Packet Storm

2140	5.5	警告 Local	デル	PowerFlex Rack PowerFlex appliance Intelligent Catalog Software PowerFlex Manager	デルのPowerFlex appliance Intelligent Catalog Software等の複数製品における重要な情報のセキュアでない格納に関する脆弱性	CWE-922 重要な情報のセキュアでない格納	CVE-2025-32746	2026-05-28 14:33	2026-05-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311221	-		linux suse opensuse canonical	linux_kernel linux_enterprise_desktop opensuse linux_enterprise_server linux_enterprise_real_time_extension ubuntu_linux	Double free vulnerability in the snd_seq_oss_open function in sound/core/seq/oss/seq_oss_init.c in the Linux kernel before 2.6.36-rc4 might allow local users to cause a denial of service or possibly …	CWE-415 Double Free	CVE-2010-3080	2024-11-21 10:17	2010-09-22	Show	GitHub Exploit DB Packet Storm

311222	5.5	MEDIUM Local	linux opensuse suse canonical vmware	linux_kernel opensuse suse_linux_enterprise_server suse_linux_enterprise_desktop ubuntu_linux esx	The xfs_ioc_fsgetxattr function in fs/xfs/linux-2.6/xfs_ioctl.c in the Linux kernel before 2.6.36-rc4 does not initialize a certain structure member, which allows local users to obtain potentially se…	CWE-200 Information Exposure	CVE-2010-3078	2024-11-21 10:17	2010-09-22	Show	GitHub Exploit DB Packet Storm

311223	-		linux suse opensuse debian canonical	linux_kernel linux_enterprise_server opensuse linux_enterprise_desktop linux_enterprise_software_development_kit linux_enterprise_real_time_extension debian_linux ubuntu_linux	Integer overflow in the do_io_submit function in fs/aio.c in the Linux kernel before 2.6.36-rc4-next-20100915 allows local users to cause a denial of service or possibly have unspecified other impact…	CWE-190 Integer Overflow or Wraparound	CVE-2010-3067	2024-11-21 10:17	2010-09-22	Show	GitHub Exploit DB Packet Storm

311224	5.5	MEDIUM Local	linux canonical opensuse suse avaya vmware	linux_kernel ubuntu_linux opensuse suse_linux_enterprise_server suse_linux_enterprise_desktop aura_system_manager aura_communication_manager voice_portal aura_system_platform<…	The actions implementation in the network queueing functionality in the Linux kernel before 2.6.36-rc2 does not properly initialize certain structure members when performing dump operations, which al…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2010-2942	2024-11-21 10:17	2010-09-22	Show	GitHub Exploit DB Packet Storm

311225	-		squid-cache	squid	The string-comparison functions in String.cci in Squid 3.x before 3.1.8 and 3.2.x before 3.2.0.2 allow remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a …	NVD-CWE-Other	CVE-2010-3072	2024-11-21 10:17	2010-09-21	Show	GitHub Exploit DB Packet Storm

311226	-		hp	system_management_homepage	Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this issue wa…	CWE-79 Cross-site Scripting	CVE-2010-3012	2024-11-21 10:17	2010-09-18	Show	GitHub Exploit DB Packet Storm

311227	-		arg0	encfs	EncFS before 1.7.0 encrypts multiple blocks by means of the CFB cipher mode with the same initialization vector, which makes it easier for local users to obtain sensitive information via calculations…	CWE-310 Cryptographic Issues	CVE-2010-3075	2024-11-21 10:17	2010-09-18	Show	GitHub Exploit DB Packet Storm

311228	-		arg0	encfs	SSL_Cipher.cpp in EncFS before 1.7.0 uses an improper combination of an AES cipher and a CBC cipher mode for encrypted filesystems, which allows local users to obtain sensitive information via a wate…	CWE-310 Cryptographic Issues	CVE-2010-3074	2024-11-21 10:17	2010-09-18	Show	GitHub Exploit DB Packet Storm

311229	-		arg0	encfs	SSL_Cipher.cpp in EncFS before 1.7.0 does not properly handle integer data sizes when constructing headers intended for randomization of initialization vectors, which makes it easier for local users …	CWE-310 Cryptographic Issues	CVE-2010-3073	2024-11-21 10:17	2010-09-18	Show	GitHub Exploit DB Packet Storm

311230	-		hp	system_management_homepage	CRLF injection vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vec…	CWE-20 Improper Input Validation	CVE-2010-3011	2024-11-21 10:17	2010-09-18	Show	GitHub Exploit DB Packet Storm