Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225231 5 警告 LightSpeed Gaming - MumbleKit および Mumble for iOS のクライアントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-1916 2014-02-12 16:46 2014-01-25 Show GitHub Exploit DB Packet Storm
225232 7.5 危険 LightSpeed Gaming - 複数の Mumble 製品のクライアントの AudioOutputSpeech.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2014-0045 2014-02-12 16:46 2014-01-25 Show GitHub Exploit DB Packet Storm
225233 5 警告 LightSpeed Gaming - Mumble のクライアントの opus_packet_get_samples_per_frame 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2014-0044 2014-02-12 16:45 2014-01-25 Show GitHub Exploit DB Packet Storm
225234 4.4 警告 Michael Rash. - fwsnort における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2014-0039 2014-02-12 16:01 2014-02-1 Show GitHub Exploit DB Packet Storm
225235 4.3 警告 Novell
python-bugzilla Project
Fedora Project		 - python-bugzilla における Bugzilla サーバになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2191 2014-02-12 16:00 2013-06-19 Show GitHub Exploit DB Packet Storm
225236 5 警告 Roundcube.net - Roundcube Webmail の steps/mail/sendmail.inc における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-1904 2014-02-12 15:59 2013-03-27 Show GitHub Exploit DB Packet Storm
225237 4.3 警告 Gajim.org - Gajim の tls_nb.py の _ssl_verify_callback 関数における中間者攻撃を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-5524 2014-02-12 15:58 2012-12-23 Show GitHub Exploit DB Packet Storm
225238 5.8 警告 Ubuntu Developers - obby におけるサーバになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4092 2014-02-12 15:47 2011-11-1 Show GitHub Exploit DB Packet Storm
225239 4.3 警告 The Perl Foundation - Perl の Perl_reg_numbered_buff_fetch 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4777 2014-02-12 15:47 2010-07-16 Show GitHub Exploit DB Packet Storm
225240 4.3 警告 GuppYTeam - GuppY におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5983 2014-02-12 14:15 2013-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
141 4.9 MEDIUM
Network 		- - A flaw was found in KubeVirt's network annotation generator. When a tenant creates a VirtualMachineInstance with a Multus network configuration, the supplied networkName value is written verbatim int… New CWE-20
 Improper Input Validation  		CVE-2026-13434 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
142 8.4 HIGH
Local 		- - Broken Access Control in the devLXDInstancePatchHandler component of Canonical LXD allows an untrusted guest to mount, read, and overwrite another guest's custom storage volume via a crafted device P… New CWE-639
CWE-862
 Authorization Bypass Through User-Controlled Key
 Missing Authorization 		CVE-2026-12411 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
143 7.5 HIGH
Network 		- - Bytes::Random::Secure::Tiny versions through 1.011 for Perl share internal state across forked processes. When an object is initialised before forking, then the internal state for the PRNG is shared… New CWE-335
 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) 		CVE-2026-11702 2026-06-27 02:16 2026-06-26 Show GitHub Exploit DB Packet Storm
144 7.5 HIGH
Network 		- - Bytes::Random::Secure versions through 0.29 for Perl share internal state across forked processes. When an object is initialised before forking, or when the functional interface is used, then the in… New CWE-335
 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) 		CVE-2026-11625 2026-06-27 02:16 2026-06-26 Show GitHub Exploit DB Packet Storm
145 7.5 HIGH
Network 		wolfssl wolfssl wolfSSL's AVX2-optimized ML-KEM implementation (mlkem_cmp_avx2) compares only 1536 of the 1568 ciphertext bytes during the Fujisaki-Okamoto re-encryption check in ML-KEM-1024 decapsulation. Ciphertex… New CWE-697
 Incorrect Comparison 		CVE-2026-10097 2026-06-27 02:16 2026-06-26 Show GitHub Exploit DB Packet Storm
146 - - - An observable timing discrepancy in the ASP could allow a privileged attacker to perform a brute-force attack against the hash message authentication code, allowing the input of an arbitrary message,… New CWE-208
 Information Exposure Through Timing Discrepancy 		CVE-2023-20572 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
147 - - - An observable timing discrepancy in the ASP could allow a privileged attacker to perform a brute-force attack against the hash message authentication code, allowing arbitrary message input, potential… New CWE-208
 Information Exposure Through Timing Discrepancy 		CVE-2023-20540 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
148 8.8 HIGH
Network 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.0, Langflow's /api/v1/monitor router exposes 7 endpoints that perform read, write, and delete operations on… New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-33760 2026-06-27 02:10 2026-06-24 Show GitHub Exploit DB Packet Storm
149 6.5 MEDIUM
Network 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.0, Langflow is vulnerable to Path Traversal in the Knowledge Bases API (POST /api/v1/knowledge_bases). This… New CWE-22
Path Traversal 		CVE-2026-42867 2026-06-27 02:09 2026-06-24 Show GitHub Exploit DB Packet Storm
150 9.6 CRITICAL
Network 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.2, the "Shareable Playground" (or "Public Flows" in code) contains a critical RCE vulnerability. Shareable … New CWE-94
Code Injection 		CVE-2026-48519 2026-06-27 02:07 2026-06-24 Show GitHub Exploit DB Packet Storm