Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2521 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-23460 2026-05-28 14:43 2026-04-3 Show GitHub Exploit DB Packet Storm
2522 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-23467 2026-05-28 14:43 2026-04-3 Show GitHub Exploit DB Packet Storm
2523 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-23468 2026-05-28 14:43 2026-04-3 Show GitHub Exploit DB Packet Storm
2524 4.7 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2026-23469 2026-05-28 14:43 2026-04-3 Show GitHub Exploit DB Packet Storm
2525 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおけるリソースのロックに関する脆弱性 CWE-667
不適切なロック 		CVE-2026-23470 2026-05-28 14:43 2026-04-3 Show GitHub Exploit DB Packet Storm
2526 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2026-23472 2026-05-28 14:43 2026-04-3 Show GitHub Exploit DB Packet Storm
2527 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-23474 2026-05-28 14:43 2026-04-3 Show GitHub Exploit DB Packet Storm
2528 8.1 重要
Network 		NVIDIA NVIDIA DGX OS NVIDIAのNVIDIA DGX OSにおけるハードコードされた暗号鍵の使用に関する脆弱性 CWE-321
ハードコードされた暗号鍵の使用 		CVE-2026-24218 2026-05-28 14:43 2026-05-20 Show GitHub Exploit DB Packet Storm
2529 7.5 重要
Network 		Fleet Device Management fleet Fleet Device Managementのfleetにおけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-24899 2026-05-28 14:43 2026-05-14 Show GitHub Exploit DB Packet Storm
2530 9.6 緊急
Network 		lfprojects mlflow lfprojectsのmlflowにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-2611 2026-05-28 14:43 2026-05-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311461 - microsoft word
office 		Microsoft Word 2002 SP3 and Office 2004 for Mac allow remote attackers to execute arbitrary code via a crafted Word document containing bookmarks that trigger use of an invalid pointer and memory cor… CWE-94
Code Injection 		CVE-2010-3216 2024-11-21 10:18 2010-10-14 Show GitHub Exploit DB Packet Storm
311462 - microsoft word
office 		Microsoft Word 2002 SP3 and Office 2004 for Mac do not properly handle unspecified return values during parsing of a Word document, which allows remote attackers to execute arbitrary code via a craft… CWE-94
Code Injection 		CVE-2010-3215 2024-11-21 10:18 2010-10-14 Show GitHub Exploit DB Packet Storm
311463 - microsoft word
open_xml_file_format_converter
office
office_web_apps
office_compatibility_pack
word_viewer
word_web_app 		Stack-based buffer overflow in Microsoft Word 2002 SP3, 2003 SP3, 2007 SP2, and 2010; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Compatibility Pack for Word, Excel, … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3214 2024-11-21 10:18 2010-10-14 Show GitHub Exploit DB Packet Storm
311464 - david_shadoff mednafen The network-play implementation in Mednafen before 0.8.D might allow remote servers to execute arbitrary code via unspecified vectors, related to "stack manipulation" issues. CWE-94
Code Injection 		CVE-2010-3085 2024-11-21 10:18 2010-10-13 Show GitHub Exploit DB Packet Storm
311465 - novell
opensuse 		suse_linux
opensuse 		Multiple buffer overflows in the Novell Client novfs module for the Linux kernel in SUSE Linux Enterprise 11 SP1 and openSUSE 11.3 allow local users to gain privileges via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3110 2024-11-21 10:18 2010-10-13 Show GitHub Exploit DB Packet Storm
311466 - jianping_yu pidgin-knotify The notify function in pidgin-knotify.c in the pidgin-knotify plugin 0.2.1 and earlier for Pidgin allows remote attackers to execute arbitrary commands via shell metacharacters in a message. CWE-94
Code Injection 		CVE-2010-3088 2024-11-21 10:18 2010-10-9 Show GitHub Exploit DB Packet Storm
311467 - rsa authentication_client RSA Authentication Client 2.0.x, 3.0, and 3.5.x before 3.5.3 does not properly handle a SENSITIVE or NON-EXTRACTABLE tag on a secret key object that is stored on a SecurID 800 authenticator, which al… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-3321 2024-11-21 10:18 2010-10-8 Show GitHub Exploit DB Packet Storm
311468 - postgresql postgresql The PL/perl and PL/Tcl implementations in PostgreSQL 7.4 before 7.4.30, 8.0 before 8.0.26, 8.1 before 8.1.22, 8.2 before 8.2.18, 8.3 before 8.3.12, 8.4 before 8.4.5, and 9.0 before 9.0.1 do not prope… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-3433 2024-11-21 10:18 2010-10-7 Show GitHub Exploit DB Packet Storm
311469 - xelerance openswan Buffer overflow in programs/pluto/xauth.c in the client in Openswan 2.6.26 through 2.6.28 might allow remote authenticated gateways to execute arbitrary code or cause a denial of service via a long c… CWE-94
Code Injection 		CVE-2010-3308 2024-11-21 10:18 2010-10-6 Show GitHub Exploit DB Packet Storm
311470 - mantisbt mantisbt Multiple cross-site scripting (XSS) vulnerabilities in MantisBT before 1.2.3 allow remote authenticated administrators to inject arbitrary web script or HTML via (1) a plugin name, related to manage_… CWE-79
Cross-site Scripting 		CVE-2010-3303 2024-11-21 10:18 2010-10-6 Show GitHub Exploit DB Packet Storm