Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2151	9.8	緊急 Network	オラクル	Oracle Hospitality OPERA 5 Property Services	オラクルのOracle Hospitality OPERA 5 Property Servicesにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-34311	2026-06-3 17:02	2026-05-28	Show	GitHub Exploit DB Packet Storm

2152	9.8	緊急 Network	IBM	Engineering Lifecycle Management	IBMのEngineering Lifecycle Managementにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-3660	2026-06-3 17:02	2026-05-26	Show	GitHub Exploit DB Packet Storm

2153	7.5	重要 Network	FRRouting Project	FRRouting	FRRouting ProjectのFRRoutingにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-37457	2026-06-3 17:02	2026-05-1	Show	GitHub Exploit DB Packet Storm

2154	7.2	重要 Network	devcode	openstamanager	DevcodeのOpenSTAManagerにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2026-38751	2026-06-3 17:02	2026-05-4	Show	GitHub Exploit DB Packet Storm

2155	5.5	警告 Local	GPAC	GPAC	GPACにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-39103	2026-06-3 17:02	2026-05-5	Show	GitHub Exploit DB Packet Storm

2156	6.1	警告 Network	heartcombo	devise	heartcomboのdeviseにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-40295	2026-06-3 17:02	2026-05-22	Show	GitHub Exploit DB Packet Storm

2157	5.5	警告 Local	BentoML	BentoML	BentoMLにおけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2026-40610	2026-06-3 17:02	2026-05-22	Show	GitHub Exploit DB Packet Storm

2158	4.3	警告 Network	Apache Software Foundation	Apache ActiveMQ Artemis Apache Artemis	Apache Software FoundationのApache ActiveMQ Artemis等の複数製品における不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-40914	2026-06-3 17:02	2026-05-28	Show	GitHub Exploit DB Packet Storm

2159	7.1	重要 Adjacent	free5gc	free5gc	free5GCにおけるセキュリティチェックに関する脆弱性	CWE-358 不適切に実装されたセキュリティチェック	CVE-2026-42081	2026-06-3 17:02	2026-05-27	Show	GitHub Exploit DB Packet Storm

2160	5.4	警告 Network	Elasticsearch B.V.	Kibana	Elasticsearch B.V.のKibanaにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42401	2026-06-3 17:01	2026-05-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
310571	-		linux suse	linux_kernel linux_enterprise_server	The aun_incoming function in net/econet/af_econet.c in the Linux kernel before 2.6.37-rc6, when Econet is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and O…	CWE-476 NULL Pointer Dereference	CVE-2010-4342	2024-11-21 10:20	2010-12-31	Show	GitHub Exploit DB Packet Storm

310572	-		novell	iprint_client	Stack-based buffer overflow in an ActiveX control in ienipp.ocx in Novell iPrint Client 5.52 allows remote attackers to execute arbitrary code via a long argument to (1) the GetDriverSettings2 method…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-4321	2024-11-21 10:20	2010-12-31	Show	GitHub Exploit DB Packet Storm

310573	-		livezilla	livezilla	Cross-site scripting (XSS) vulnerability in the lz_tracking_set_sessid function in templates/jscript/jstrack.tpl in LiveZilla 3.2.0.2 allows remote attackers to inject arbitrary web script or HTML vi…	CWE-79 Cross-site Scripting	CVE-2010-4276	2024-11-21 10:20	2010-12-31	Show	GitHub Exploit DB Packet Storm

310574	-		linux redhat	linux_kernel enterprise_linux	The udp_queue_rcv_skb function in net/ipv4/udp.c in a certain Red Hat build of the Linux kernel 2.6.18 in Red Hat Enterprise Linux (RHEL) 5 allows attackers to cause a denial of service (deadlock and…	CWE-399 Resource Management Errors	CVE-2010-4161	2024-11-21 10:20	2010-12-31	Show	GitHub Exploit DB Packet Storm

310575	-		linux fedoraproject suse opensuse	linux_kernel fedora linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit linux_enterprise_real_time_extension	The do_exit function in kernel/exit.c in the Linux kernel before 2.6.36.2 does not properly handle a KERNEL_DS get_fs value, which allows local users to bypass intended access_ok restrictions, overwr…	CWE-269 Improper Privilege Management	CVE-2010-4258	2024-11-21 10:20	2010-12-31	Show	GitHub Exploit DB Packet Storm

310576	-		linux fedoraproject suse opensuse	linux_kernel fedora linux_enterprise_server linux_enterprise_desktop opensuse linux_enterprise_software_development_kit linux_enterprise_real_time_extension	The sk_run_filter function in net/core/filter.c in the Linux kernel before 2.6.36.2 does not check whether a certain memory location has been initialized before executing a (1) BPF_S_LD_MEM or (2) BP…	CWE-200 Information Exposure	CVE-2010-4158	2024-11-21 10:20	2010-12-31	Show	GitHub Exploit DB Packet Storm

310577	5.5	MEDIUM Local	linux vmware	linux_kernel esx	drivers/scsi/bfa/bfa_core.c in the Linux kernel before 2.6.35 does not initialize a certain port data structure, which allows local users to cause a denial of service (system crash) via read operatio…	CWE-665 Improper Initialization	CVE-2010-4343	2024-11-21 10:20	2010-12-30	Show	GitHub Exploit DB Packet Storm

310578	-		linux opensuse suse	linux_kernel opensuse linux_enterprise_real_time_extension	The ACPI subsystem in the Linux kernel before 2.6.36.2 uses 0222 permissions for the debugfs custom_method file, which allows local users to gain privileges by placing a custom ACPI method in the ACP…	CWE-269 Improper Privilege Management	CVE-2010-4347	2024-11-21 10:20	2010-12-23	Show	GitHub Exploit DB Packet Storm

310579	-		linux	linux_kernel	The install_special_mapping function in mm/mmap.c in the Linux kernel before 2.6.37-rc6 does not make an expected security_file_mmap function call, which allows local users to bypass intended mmap_mi…	CWE-476 NULL Pointer Dereference	CVE-2010-4346	2024-11-21 10:20	2010-12-23	Show	GitHub Exploit DB Packet Storm

310580	-		jovelstefan	embedded-video	Cross-site scripting (XSS) vulnerability in lembedded-video.php in the Embedded Video plugin 4.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the content parameter…	CWE-79 Cross-site Scripting	CVE-2010-4277	2024-11-21 10:20	2010-12-23	Show	GitHub Exploit DB Packet Storm