Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2301	6.1	警告 Network	ヒューレット・パッカード・エンタープライズ	HPE Aruba Networking AOS-CX	ヒューレット・パッカード・エンタープライズのHPE Aruba Networking AOS-CXにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-23817	2026-05-15 10:53	2026-03-11	Show	GitHub Exploit DB Packet Storm

2302	5.4	警告 Network	アップル	iOS iPadOS	アップルのiPadOS等の複数製品における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-28819	2026-05-15 10:53	2026-05-11	Show	GitHub Exploit DB Packet Storm

2303	7.5	重要 Network	アップル	tvOS iOS watchOS visionos iPadOS	アップルのiPadOS等の複数製品におけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-28846	2026-05-15 10:53	2026-05-11	Show	GitHub Exploit DB Packet Storm

2304	7.5	重要 Network	アップル	iOS iPadOS	アップルのiPadOS等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-28872	2026-05-15 10:52	2026-05-11	Show	GitHub Exploit DB Packet Storm

2305	4.3	警告 Network	アップル	tvOS iOS watchOS visionos iPadOS	アップルのiPadOS等の複数製品におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-28901	2026-05-15 10:52	2026-05-11	Show	GitHub Exploit DB Packet Storm

2306	7.5	重要 Network	アップル	visionos iOS iPadOS	アップルのiPadOS等の複数製品における認可されていない行為者への個人情報の漏えいに関する脆弱性	CWE-359 認可されていないアクターへの個人情報の漏えい	CVE-2026-28906	2026-05-15 10:52	2026-05-11	Show	GitHub Exploit DB Packet Storm

2307	3.3	低 Local		-	アップルのmacOSにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-28910	2026-05-15 10:52	2026-05-11	Show	GitHub Exploit DB Packet Storm

2308	4.3	警告 Network	アップル	tvOS iOS watchOS visionos iPadOS	アップルのiPadOS等の複数製品における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-28917	2026-05-15 10:52	2026-05-11	Show	GitHub Exploit DB Packet Storm

2309	6.5	警告 Network	アップル	tvOS iOS watchOS visionos iPadOS	アップルのiPadOS等の複数製品における複数の脆弱性	CWE-125 CWE-787	CVE-2026-28918	2026-05-15 10:52	2026-05-11	Show	GitHub Exploit DB Packet Storm

2310	-	-	クアルコム	(複数の製品)	Intel製品に対するアップデート（2026年5月）	-	-	2026-05-14 17:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311761	5.4	MEDIUM Network	siemens	ozw672_firmware ozw772_firmware	A vulnerability has been identified in OZW672 (All versions < V5.2), OZW772 (All versions < V5.2). The user accounts tab of affected devices is vulnerable to stored cross-site scripting (XSS) attacks…	CWE-79 Cross-site Scripting	CVE-2024-36140	2024-11-16 07:53	2024-11-12	Show	GitHub Exploit DB Packet Storm

311762	4.8	MEDIUM Network	publiccms	publiccms	A vulnerability was found in Public CMS 5.202406.d and classified as problematic. This issue affects some unknown processing of the file /admin/cmsVote/save of the component Voting Management. The ma…	CWE-79 Cross-site Scripting	CVE-2024-11175	2024-11-16 07:50	2024-11-14	Show	GitHub Exploit DB Packet Storm

311763	7.8	HIGH Local	siemens	spectrum_power_7	A vulnerability has been identified in Spectrum Power 7 (All versions < V24Q3). The affected product contains several root-owned SUID binaries that could allow an authenticated local attacker to esca…	NVD-CWE-noinfo	CVE-2024-29119	2024-11-16 07:50	2024-11-12	Show	GitHub Exploit DB Packet Storm

311764	7.2	HIGH Network	timgeyssens	ui-o-matic	A vulnerability has been found in TimGeyssens UIOMatic 5 and classified as critical. This vulnerability affects unknown code of the file /src/UIOMatic/wwwroot/backoffice/resources/uioMaticObject.r. T…	CWE-89 SQL Injection	CVE-2024-11124	2024-11-16 07:47	2024-11-12	Show	GitHub Exploit DB Packet Storm

311765	-		-	-	Sercomm Model Etisalat Model S3- AC2100 is affected by Cross Site Scripting (XSS) via the firmware update page.	-	CVE-2021-27703	2024-11-16 07:35	2024-11-13	Show	GitHub Exploit DB Packet Storm

311766	-		-	-	Sercomm Router Etisalat Model S3- AC2100 is affected by Incorrect Access Control via the diagnostic utility in the router dashboard.	-	CVE-2021-27702	2024-11-16 07:35	2024-11-13	Show	GitHub Exploit DB Packet Storm

311767	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: udf: fix uninit-value use in udf_get_fileshortad Check for overflow when computing alen in udf_current_aext to mitigate later uni…	CWE-908 Use of Uninitialized Resource	CVE-2024-50143	2024-11-16 07:22	2024-11-7	Show	GitHub Exploit DB Packet Storm

311768	-		-	-	Bluetooth LE and BR/EDR Secure Connections pairing and Secure Simple Pairing using the Passkey entry protocol in Bluetooth Core Specifications 2.1 through 5.3 may permit an unauthenticated man-in-the…	-	CVE-2021-37577	2024-11-16 06:35	2024-10-2	Show	GitHub Exploit DB Packet Storm

311769	-		-	-	Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS Command Injection.This issue affects: ?Product Affected Versions LoadMaster Fro…	CWE-20 Improper Input Validation	CVE-2024-8755	2024-11-16 06:15	2024-10-12	Show	GitHub Exploit DB Packet Storm

311770	5.5	MEDIUM Local	cysoft168	super_easy_enterprise_management_system	An issue in Super easy enterprise management system v.1.0.0 and before allows a local attacker to obtain the server absolute path by entering a single quotation mark.	CWE-22 Path Traversal	CVE-2024-42680	2024-11-16 06:15	2024-08-15	Show	GitHub Exploit DB Packet Storm