Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2431 4.7 警告
Local 		NVIDIA gpu display driver NVIDIAのgpu display driverにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2026-24199 2026-05-29 11:18 2026-05-26 Show GitHub Exploit DB Packet Storm
2432 9.8 緊急
Network 		NVIDIA Isaac Launchable NVIDIAのIsaac Launchableにおける重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2026-24212 2026-05-29 11:18 2026-05-26 Show GitHub Exploit DB Packet Storm
2433 6.1 警告
Network 		Joomla! Joomla! Joomla!におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-25900 2026-05-29 11:18 2026-05-26 Show GitHub Exploit DB Packet Storm
2434 6.1 警告
Network 		Joomla! Joomla! Joomla!におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-25901 2026-05-29 11:18 2026-05-26 Show GitHub Exploit DB Packet Storm
2435 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-2601 2026-05-29 11:18 2026-05-27 Show GitHub Exploit DB Packet Storm
2436 7.5 重要
Network 		lfprojects mlflow lfprojectsのmlflowにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-2614 2026-05-29 11:17 2026-05-11 Show GitHub Exploit DB Packet Storm
2437 7.7 重要
Network 		マイクロソフト Azure Stack HCI Azure Stack HCI の情報漏えいの脆弱性 CWE-20
不適切な入力確認 		CVE-2026-26147 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
2438 8.8 重要
Network 		NervesHub NervesHub NervesHubにおける複数の脆弱性 CWE-285
CWE-668
CVE-2026-28806 2026-05-29 11:17 2026-03-10 Show GitHub Exploit DB Packet Storm
2439 7.5 重要
Network 		Gleam-wisp Wisp Gleam-wispのWispにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-28807 2026-05-29 11:17 2026-03-10 Show GitHub Exploit DB Packet Storm
2440 6.1 警告
Network 		Joomla! Joomla! Joomla!におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-30894 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311461 - microsoft word
office 		Microsoft Word 2002 SP3 and Office 2004 for Mac allow remote attackers to execute arbitrary code via a crafted Word document containing bookmarks that trigger use of an invalid pointer and memory cor… CWE-94
Code Injection 		CVE-2010-3216 2024-11-21 10:18 2010-10-14 Show GitHub Exploit DB Packet Storm
311462 - microsoft word
office 		Microsoft Word 2002 SP3 and Office 2004 for Mac do not properly handle unspecified return values during parsing of a Word document, which allows remote attackers to execute arbitrary code via a craft… CWE-94
Code Injection 		CVE-2010-3215 2024-11-21 10:18 2010-10-14 Show GitHub Exploit DB Packet Storm
311463 - microsoft word
open_xml_file_format_converter
office
office_web_apps
office_compatibility_pack
word_viewer
word_web_app 		Stack-based buffer overflow in Microsoft Word 2002 SP3, 2003 SP3, 2007 SP2, and 2010; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Compatibility Pack for Word, Excel, … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3214 2024-11-21 10:18 2010-10-14 Show GitHub Exploit DB Packet Storm
311464 - david_shadoff mednafen The network-play implementation in Mednafen before 0.8.D might allow remote servers to execute arbitrary code via unspecified vectors, related to "stack manipulation" issues. CWE-94
Code Injection 		CVE-2010-3085 2024-11-21 10:18 2010-10-13 Show GitHub Exploit DB Packet Storm
311465 - novell
opensuse 		suse_linux
opensuse 		Multiple buffer overflows in the Novell Client novfs module for the Linux kernel in SUSE Linux Enterprise 11 SP1 and openSUSE 11.3 allow local users to gain privileges via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3110 2024-11-21 10:18 2010-10-13 Show GitHub Exploit DB Packet Storm
311466 - jianping_yu pidgin-knotify The notify function in pidgin-knotify.c in the pidgin-knotify plugin 0.2.1 and earlier for Pidgin allows remote attackers to execute arbitrary commands via shell metacharacters in a message. CWE-94
Code Injection 		CVE-2010-3088 2024-11-21 10:18 2010-10-9 Show GitHub Exploit DB Packet Storm
311467 - rsa authentication_client RSA Authentication Client 2.0.x, 3.0, and 3.5.x before 3.5.3 does not properly handle a SENSITIVE or NON-EXTRACTABLE tag on a secret key object that is stored on a SecurID 800 authenticator, which al… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-3321 2024-11-21 10:18 2010-10-8 Show GitHub Exploit DB Packet Storm
311468 - postgresql postgresql The PL/perl and PL/Tcl implementations in PostgreSQL 7.4 before 7.4.30, 8.0 before 8.0.26, 8.1 before 8.1.22, 8.2 before 8.2.18, 8.3 before 8.3.12, 8.4 before 8.4.5, and 9.0 before 9.0.1 do not prope… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-3433 2024-11-21 10:18 2010-10-7 Show GitHub Exploit DB Packet Storm
311469 - xelerance openswan Buffer overflow in programs/pluto/xauth.c in the client in Openswan 2.6.26 through 2.6.28 might allow remote authenticated gateways to execute arbitrary code or cause a denial of service via a long c… CWE-94
Code Injection 		CVE-2010-3308 2024-11-21 10:18 2010-10-6 Show GitHub Exploit DB Packet Storm
311470 - mantisbt mantisbt Multiple cross-site scripting (XSS) vulnerabilities in MantisBT before 1.2.3 allow remote authenticated administrators to inject arbitrary web script or HTML via (1) a plugin name, related to manage_… CWE-79
Cross-site Scripting 		CVE-2010-3303 2024-11-21 10:18 2010-10-6 Show GitHub Exploit DB Packet Storm