Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2531 9.6 緊急
Network 		lfprojects mlflow lfprojectsのmlflowにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-2611 2026-05-28 14:43 2026-05-19 Show GitHub Exploit DB Packet Storm
2532 5.4 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-28735 2026-05-28 14:43 2026-05-22 Show GitHub Exploit DB Packet Storm
2533 6.5 警告
Network 		OpenPLC Project OpenPLC_v3 ファームウェア OpenPLC ProjectのOpenPLC_v3 ファームウェアにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-31156 2026-05-28 14:42 2026-05-13 Show GitHub Exploit DB Packet Storm
2534 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-31390 2026-05-28 14:42 2026-04-3 Show GitHub Exploit DB Packet Storm
2535 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-Other
その他 		CVE-2026-31391 2026-05-28 14:42 2026-04-3 Show GitHub Exploit DB Packet Storm
2536 8.1 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-31392 2026-05-28 14:42 2026-04-3 Show GitHub Exploit DB Packet Storm
2537 8.1 重要
Adjacent 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-31393 2026-05-28 14:42 2026-04-3 Show GitHub Exploit DB Packet Storm
2538 8.8 重要
Network 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-31433 2026-05-28 14:42 2026-04-22 Show GitHub Exploit DB Packet Storm
2539 9.8 緊急
Network 		lizardbyte sunshine lizardbyteのsunshineにおける複数の脆弱性 CWE-287
CWE-295
CVE-2026-32253 2026-05-28 14:42 2026-05-22 Show GitHub Exploit DB Packet Storm
2540 7.1 重要
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-3473 2026-05-28 14:42 2026-05-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311301 - linux-pam linux-pam The run_coprocess function in pam_xauth.c in the pam_xauth module in Linux-PAM (aka pam) before 1.1.2 does not check the return values of the setuid, setgid, and setgroups system calls, which might a… NVD-CWE-Other
CVE-2010-3316 2024-11-21 10:18 2011-01-25 Show GitHub Exploit DB Packet Storm
311302 - oracle fusion_middleware Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 9.0, 9.1, 9.2.3, 10.0.2, 10.3.2, and 10.3.3 allows remote attackers to affect confidentiality, integrity,… NVD-CWE-noinfo
CVE-2010-3510 2024-11-21 10:18 2011-01-20 Show GitHub Exploit DB Packet Storm
311303 - oracle supply_chain_products_suite Unspecified vulnerability in the Agile Core component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote authenticated users to affect confidentiality via unknown vectors related t… NVD-CWE-noinfo
CVE-2010-3505 2024-11-21 10:18 2011-01-20 Show GitHub Exploit DB Packet Storm
311304 - linux linux_kernel include/asm-x86/futex.h in the Linux kernel before 2.6.25 does not properly implement exception fixup, which allows local users to cause a denial of service (panic) via an invalid application that tr… NVD-CWE-Other
CVE-2010-3086 2024-11-21 10:18 2011-01-15 Show GitHub Exploit DB Packet Storm
311305 - fribidi
kobi_zamir 		gnu_fribidi
pyfribidi 		Buffer overflow in the log2vis_utf8 function in pyfribidi.c in GNU FriBidi 0.19.1, 0.19.2, and possibly other versions, as used in PyFriBidi 0.10.1, allows remote attackers to cause a denial of servi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3444 2024-11-21 10:18 2011-01-11 Show GitHub Exploit DB Packet Storm
311306 - freetype freetype Integer overflow in base/ftstream.c in libXft (aka the X FreeType library) in FreeType before 2.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrar… CWE-189
Numeric Errors 		CVE-2010-3311 2024-11-21 10:18 2011-01-8 Show GitHub Exploit DB Packet Storm
311307 - netwin surgemail Cross-site scripting (XSS) vulnerability in NetWin Surgemail before 4.3g allows remote attackers to inject arbitrary web script or HTML via the username_ex parameter to the surgeweb program. CWE-79
Cross-site Scripting 		CVE-2010-3201 2024-11-21 10:18 2011-01-8 Show GitHub Exploit DB Packet Storm
311308 - linux linux_kernel drivers/platform/x86/thinkpad_acpi.c in the Linux kernel before 2.6.34 on ThinkPad devices, when the X.Org X server is used, does not properly restrict access to the video output control state, which… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-3448 2024-11-21 10:18 2011-01-4 Show GitHub Exploit DB Packet Storm
311309 - intel
symantec 		intel_alert_management_system
antivirus
endpoint_protection 		The GetStringAMSHandler function in prgxhndl.dll in hndlrsvc.exe in the Intel Alert Handler service (aka Symantec Intel Handler service) in Intel Alert Management System (AMS), as used in Symantec An… CWE-20
 Improper Input Validation  		CVE-2010-3268 2024-11-21 10:18 2010-12-23 Show GitHub Exploit DB Packet Storm
311310 - microsoft internet_explorer Microsoft Internet Explorer 6, 7, and 8 does not prevent rendering of cached content as HTML, which allows remote attackers to access content from a different (1) domain or (2) zone via unspecified s… CWE-200
Information Exposure 		CVE-2010-3348 2024-11-21 10:18 2010-12-17 Show GitHub Exploit DB Packet Storm