Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224671 7.6 危険 マイクロソフト - 複数の Microsoft Windows 製品の WinVerifyTrust 機能における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3900 2013-12-12 16:13 2013-12-10 Show GitHub Exploit DB Packet Storm
224672 9.3 危険 マイクロソフト - Microsoft Internet Explorer 7 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-5052 2013-12-12 16:11 2013-12-10 Show GitHub Exploit DB Packet Storm
224673 9.3 危険 マイクロソフト - Microsoft Internet Explorer 10 および 11 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-5051 2013-12-12 16:10 2013-12-10 Show GitHub Exploit DB Packet Storm
224674 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 9 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-5049 2013-12-12 16:10 2013-12-10 Show GitHub Exploit DB Packet Storm
224675 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 11 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-5048 2013-12-12 16:09 2013-12-10 Show GitHub Exploit DB Packet Storm
224676 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 11 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-5047 2013-12-12 16:07 2013-12-10 Show GitHub Exploit DB Packet Storm
224677 6.2 警告 マイクロソフト - Microsoft Internet Explorer 7 から 11 における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-5046 2013-12-12 16:07 2013-12-10 Show GitHub Exploit DB Packet Storm
224678 6.2 警告 マイクロソフト - Microsoft Internet Explorer 10 および 11 における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-5045 2013-12-12 16:06 2013-12-10 Show GitHub Exploit DB Packet Storm
224679 4 警告 Quassel IRC - Quassel IRC の Quassel core における他のユーザのバックログを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6404 2013-12-11 19:53 2013-11-26 Show GitHub Exploit DB Packet Storm
224680 7.2 危険 libvirt.org - libvirt の virt-login-shell における任意のファイルを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4400 2013-12-11 19:53 2013-11-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2831 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 contains a reachable assertion in e2ap_recv_sctp_msg() (src/lib/ep/e2ap_ep.c). The function allocates a fixed 32KB receive buffer and enforces assert(rc < len) on the sctp_recvmsg() re… CWE-617
 Reachable Assertion 		CVE-2026-37228 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
2832 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 contains a reachable assertion in e2ap_create_pdu() triggered when ASN.1 PER decoding fails. A remote unauthenticated attacker can send any non-PER byte sequence (e.g., a single 0x00 b… CWE-617
 Reachable Assertion 		CVE-2026-37229 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
2833 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 crashes when the near-RT RIC receives a RIC_INDICATION message with a ran_func_id that does not exist in its registry. The lookup returns NULL, triggering assert() in Debug builds (SIG… CWE-476
 NULL Pointer Dereference 		CVE-2026-37230 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
2834 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 uses a uint16_t counter for xapp_id assignment but stores the value in uint32_t message fields. After 65,530+ E42_SETUP_REQUESTs, the 16-bit counter wraps around and produces duplicate… CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-37231 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
2835 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 contains an authorization bypass in the iApp's xApp isolation mechanism. The equality function eq_xapp_ric_gen_id() in src/ric/iApp/xapp_ric_id.c compares m0->xapp_id against itself (m… CWE-617
 Reachable Assertion 		CVE-2026-37233 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
2836 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 trusts the xapp_id field from E42 message payloads without binding it to the sender's SCTP association. The validation function valid_xapp_id() only checks that the value is within the… CWE-284
Improper Access Control 		CVE-2026-37235 2026-06-4 02:15 2026-06-2 Show GitHub Exploit DB Packet Storm
2837 6.5 MEDIUM
Network 		nextcloud nextcloud_server Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 31.0.0 to before 31.0.14, and 32.0.0 to before 32.0.4, if {lang} is used in the template directory config… CWE-22
Path Traversal 		CVE-2026-45279 2026-06-4 02:15 2026-06-2 Show GitHub Exploit DB Packet Storm
2838 8.1 HIGH
Network 		nextcloud nextcloud_server Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, with the knowledge of other users’ principal URL an… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-45281 2026-06-4 02:11 2026-06-2 Show GitHub Exploit DB Packet Storm
2839 8.1 HIGH
Network 		jupyter jupyter_server A path traversal vulnerability exists in jupyter-server version 2.17.0 due to an incorrect root directory boundary check in the _get_os_path() function within jupyter_server/services/contents/fileio.… CWE-23
 Relative Path Traversal 		CVE-2026-5422 2026-06-4 02:09 2026-06-2 Show GitHub Exploit DB Packet Storm
2840 6.5 MEDIUM
Network 		nextcloud nextcloud_server Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, an authenticated attacker can access attachments of… CWE-284
NVD-CWE-noinfo
Improper Access Control 		CVE-2026-45282 2026-06-4 02:09 2026-06-2 Show GitHub Exploit DB Packet Storm