Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
246991 7.8 危険 dvbbs - Dvbbs におけるデータベースをダウンロードされる脆弱性 - CVE-2007-3774 2012-06-26 15:54 2007-07-15 Show GitHub Exploit DB Packet Storm
246992 9.3 危険 generic youtube clone script - Generic YouTube Clone Script の Email-Template モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-3773 2012-06-26 15:54 2007-07-15 Show GitHub Exploit DB Packet Storm
246993 5 警告 Digium - Asterisk の STUN 実装におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3765 2012-06-26 15:54 2007-07-18 Show GitHub Exploit DB Packet Storm
246994 5 警告 Digium - Asterisk の Skinny チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3764 2012-06-26 15:54 2007-07-18 Show GitHub Exploit DB Packet Storm
246995 5 警告 Digium - Asterisk の IAX2 チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3763 2012-06-26 15:54 2007-07-18 Show GitHub Exploit DB Packet Storm
246996 9.3 危険 Digium - Asterisk の IAX2 チャネルドライバにおけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-3762 2012-06-26 15:54 2007-07-18 Show GitHub Exploit DB Packet Storm
246997 5.4 警告 アップル - iChat の UPnP IGD 実装におけるバッファオーバーフローの脆弱性 - CVE-2007-3748 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
246998 6.8 警告 アップル - CoreAudio への Java インターフェースにおける任意のコードを実行される脆弱性 - CVE-2007-3747 2012-06-26 15:46 2007-07-31 Show GitHub Exploit DB Packet Storm
246999 6.8 警告 アップル - CoreAudio への Java インターフェースにおける任意のコードを実行される脆弱性 - CVE-2007-3746 2012-06-26 15:46 2007-07-31 Show GitHub Exploit DB Packet Storm
247000 6.8 警告 アップル - CoreAudio への Java インターフェースにおける任意のメモリを解放される脆弱性 - CVE-2007-3745 2012-06-26 15:46 2007-07-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
381 7.8 HIGH
Local 		google android In performPreInstallChecks of InstallRepository.kt, there is a possible way to bypass MDM policy due to a logic error in the code. This could lead to local escalation of privilege with no additional … New CWE-693
 Protection Mechanism Failure 		CVE-2025-48652 2026-06-3 03:59 2026-06-2 Show GitHub Exploit DB Packet Storm
382 5.5 MEDIUM
Local 		google android In isSameApp of NotificationManagerService.java, there is a possible persistent dos due to resource exhaustion. This could lead to local denial of service with no additional execution privileges need… New CWE-400
 Uncontrolled Resource Consumption 		CVE-2025-48648 2026-06-3 03:59 2026-06-2 Show GitHub Exploit DB Packet Storm
383 3.3 LOW
Local 		google android In multiple functions of KeyguardViewMediator.java , there is a possible way to bypass lockdown mode with screen pinning due to a logic error in the code. This could lead to local information disclos… New NVD-CWE-noinfo
CVE-2025-48616 2026-06-3 03:58 2026-06-2 Show GitHub Exploit DB Packet Storm
384 7.8 HIGH
Local 		google android In multiple functions of PipTaskOrganizer.java, there is a possible way to launch an activity from the background due to a confused deputy. This could lead to local escalation of privilege with no ad… New CWE-441
Confused Deputy 		CVE-2025-48570 2026-06-3 03:58 2026-06-2 Show GitHub Exploit DB Packet Storm
385 7.8 HIGH
Local 		google android In multiple locations, there is a possible way to reveal images across users due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges… New NVD-CWE-noinfo
CVE-2025-22424 2026-06-3 03:57 2026-06-2 Show GitHub Exploit DB Packet Storm
386 7.8 HIGH
Local 		google android In multiple locations, there is a possible background activity launch due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges neede… New NVD-CWE-noinfo
CVE-2025-32348 2026-06-3 03:50 2026-06-2 Show GitHub Exploit DB Packet Storm
387 6.5 MEDIUM
Network 		apache airflow A Dag author could either (a) create a symlink under their task's log directory pointing to an arbitrary file readable by the API server process (read-path attack — e.g. `/etc/passwd` or `airflow.cfg… New CWE-59
Link Following 		CVE-2026-40861 2026-06-3 03:49 2026-06-1 Show GitHub Exploit DB Packet Storm
388 7.2 HIGH
Network 		apache airflow A bug in the login redirect route in Apache Airflow allowed authenticated users to craft URLs that bypassed the `is_safe_url` check, enabling redirection from a trusted Airflow domain to an attacker-… New CWE-601
Open Redirect 		CVE-2026-40961 2026-06-3 03:49 2026-06-1 Show GitHub Exploit DB Packet Storm
389 4.3 MEDIUM
Network 		apache airflow The partitioned_dag_runs endpoints in the Airflow UI enforced only asset-level access control, not per-Dag authorization. An authenticated UI/API user with global Asset:read permission could enumerat… New CWE-862
 Missing Authorization 		CVE-2026-41014 2026-06-3 03:49 2026-06-1 Show GitHub Exploit DB Packet Storm
390 7.5 HIGH
Network 		apache airflow A bug in Apache Airflow's bulk Task Instances API (`PATCH/DELETE /api/v2/dags/{dag_id}/dagRuns/{dag_run_id}/taskInstances`) evaluated authorization against the `dag_id` resolved from the URL path whi… New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-41084 2026-06-3 03:49 2026-06-1 Show GitHub Exploit DB Packet Storm