Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226221 5 警告 アップル
VMware
OpenSSL Project		 - OpenSSL の Server Gated Cryptography の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-4619 2013-06-7 11:26 2012-01-4 Show GitHub Exploit DB Packet Storm
226222 4.3 警告 アップル
VMware
OpenSSL Project		 - OpenSSL におけるサービス運用妨害 (表明違反) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-4577 2013-06-7 11:21 2012-01-4 Show GitHub Exploit DB Packet Storm
226223 9.3 危険 アップル
VMware
OpenSSL Project		 - OpenSSL におけるメモリ二重開放の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-4109 2013-06-7 11:15 2012-01-4 Show GitHub Exploit DB Packet Storm
226224 5 警告 アップル
OpenSSL Project		 - OpenSSL の ephemeral ECDH ciphersuite におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3210 2013-06-7 11:07 2011-09-6 Show GitHub Exploit DB Packet Storm
226225 5 警告 アップル
OpenSSL Project
レッドハット		 - OpenSSL の crypto/x509/x509_vfy.c における CRL 確認を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3207 2013-06-7 10:58 2011-09-6 Show GitHub Exploit DB Packet Storm
226226 2.6 注意 アップル
OpenSSL Project		 - OpenSSL の ECC サブシステムにおける秘密鍵を特定される脆弱性 CWE-310
暗号の問題 		CVE-2011-1945 2013-06-7 10:54 2011-05-31 Show GitHub Exploit DB Packet Storm
226227 10 危険 アドビシステムズ
Google		 - Google Chrome 上で稼働する Adobe Flash Player におけるサービス運用妨害 (メモリ破損) の脆弱性 CWE-119
バッファエラー 		CVE-2012-0724 2013-06-6 18:10 2012-03-28 Show GitHub Exploit DB Packet Storm
226228 6.8 警告 アップル - Apple Safari などの製品で使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-1023 2013-06-6 16:57 2013-06-4 Show GitHub Exploit DB Packet Storm
226229 4.3 警告 アップル - Apple Safari などの製品で使用される WebKit の XSS Auditor における意図しないフォームサブミッションを誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1013 2013-06-6 16:56 2013-06-4 Show GitHub Exploit DB Packet Storm
226230 6.8 警告 アップル - Apple Safari などの製品で使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-1009 2013-06-6 16:55 2013-06-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3811 7.8 HIGH
Local 		- - NVIDIA Transformers4Rec for Linux contains a vulnerability where an attacker could cause improper deserialization of untrusted data. A successful exploit of this vulnerability might lead to code exec… CWE-502
 Deserialization of Untrusted Data 		CVE-2026-24162 2026-05-27 02:16 2026-05-27 Show GitHub Exploit DB Packet Storm
3812 5.3 MEDIUM
Network 		concretecms concrete_cms Concrete CMS 9.5.0 and below is vulnerable to IDOR in surveys. To be vulnerable, a site would have to be configured in such a way that both public and private surveys are present on the site. An unau… CWE-565
CWE-639
 Reliance on Cookies without Validation and Integrity Checking
 Authorization Bypass Through User-Controlled Key 		CVE-2026-8337 2026-05-27 02:13 2026-05-22 Show GitHub Exploit DB Packet Storm
3813 9.8 CRITICAL
Network 		- - A vulnerability has been found in Totolink N300RH 6.1c.1353_B20190305. Affected is the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipul… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-9543 2026-05-27 01:16 2026-05-26 Show GitHub Exploit DB Packet Storm
3814 3.3 LOW
Local 		- - A weakness has been identified in GNU LibreDWG up to 0.14. The impacted element is the function read_2004_compressed_section of the file src/decode.c of the component Dwgbmp Utility. Executing a mani… CWE-119
CWE-125
Incorrect Access of Indexable Resource ('Range Error') 
Out-of-bounds Read 		CVE-2026-9530 2026-05-27 01:16 2026-05-26 Show GitHub Exploit DB Packet Storm
3815 3.3 LOW
Local 		- - A weakness has been identified in GNU LibreDWG up to 0.14. Affected is the function bit_convert_TU of the file programs/dwggrep.c of the component Dwggrep Utility. This manipulation causes out-of-bou… CWE-119
CWE-125
Incorrect Access of Indexable Resource ('Range Error') 
Out-of-bounds Read 		CVE-2026-9504 2026-05-27 01:16 2026-05-26 Show GitHub Exploit DB Packet Storm
3816 - - - IEC 60870-5-104 used in bidirectional mode in RTU500 is vulnerable for a NULL pointer dereferencing, if a specially crafted sequence of messages is sent for a certain time, causing Denial of Service … CWE-476
 NULL Pointer Dereference 		CVE-2026-8479 2026-05-27 01:16 2026-05-26 Show GitHub Exploit DB Packet Storm
3817 - - - FastNetMon Community Edition through 1.2.9 contains an out-of-bounds read vulnerability in the NetFlow v9 data flowset processor. In src/netflow_plugin/netflow_v9_collector.cpp, the Data template bra… - CVE-2026-48683 2026-05-27 01:16 2026-05-27 Show GitHub Exploit DB Packet Storm
3818 7.6 HIGH
Network 		- - Karakeep is a elf-hostable bookmark-everything app. A Server-Side Request Forgery (SSRF) protection bypass vulnerability was identified in versions prior to 0.32.0 affecting redirect-following proces… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-45082 2026-05-27 01:16 2026-05-27 Show GitHub Exploit DB Packet Storm
3819 6.2 MEDIUM
Local 		- - In Arm ArmNN through 2026-03-27, an integer overflow in TensorShape::GetNumElements() in armnn/Tensor.cpp allows a crafted TFLite model file to bypass buffer size validation and trigger a heap-based … CWE-190
 Integer Overflow or Wraparound 		CVE-2026-42627 2026-05-27 01:16 2026-05-23 Show GitHub Exploit DB Packet Storm
3820 - - - An Insecure Direct Object Reference (IDOR) vulnerability was discovered in ONLYOFFICE DocSpace before 3.2.1. The flaw exists in multiple REST API endpoints. This allows authenticated users with low-l… - CVE-2026-38587 2026-05-27 01:16 2026-05-27 Show GitHub Exploit DB Packet Storm