Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2551	7.3	重要 Local	アクシスコミュニケーションズ	AXIS OS	アクシスコミュニケーションズのAXIS OSにおける指定されたタイプの入力に対する不適切な検証に関する脆弱性	CWE-1287 指定されたタイプの入力に対する不適切な検証	CVE-2026-0802	2026-05-21 10:54	2026-05-12	Show	GitHub Exploit DB Packet Storm

2552	7.3	重要 Local	アクシスコミュニケーションズ	AXIS OS	アクシスコミュニケーションズのAXIS OSにおけるパストラバーサルの脆弱性	CWE-35 パストラバーサル	CVE-2026-0804	2026-05-21 10:54	2026-05-12	Show	GitHub Exploit DB Packet Storm

2553	8.8	重要 Network	アクシスコミュニケーションズ	AXIS OS	アクシスコミュニケーションズのAXIS OSにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性	CWE-732 重要なリソースに対する不適切なパーミッションの割り当て	CVE-2026-1185	2026-05-21 10:54	2026-05-12	Show	GitHub Exploit DB Packet Storm

2554	6.5	警告 Local	Xen プロジェクト	Xen	Xen プロジェクトのXenにおける到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-23557	2026-05-21 10:54	2026-05-19	Show	GitHub Exploit DB Packet Storm

2555	7.8	重要 Local	Xen プロジェクト	Xen	Xen プロジェクトのXenにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-23558	2026-05-21 10:54	2026-05-19	Show	GitHub Exploit DB Packet Storm

2556	4.3	警告 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc.のMattermost Serverにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-28732	2026-05-21 10:54	2026-05-18	Show	GitHub Exploit DB Packet Storm

2557	6.5	警告 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおけるテンプレートエンジンで使用される特殊な要素の不適切な無効化に関する脆弱性	CWE-1336 テンプレートエンジンで使用される特殊な要素の不適切な無効化	CVE-2026-29207	2026-05-21 10:54	2026-05-19	Show	GitHub Exploit DB Packet Storm

2558	6.5	警告 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-29220	2026-05-21 10:53	2026-05-19	Show	GitHub Exploit DB Packet Storm

2559	7.3	重要 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-29226	2026-05-21 10:53	2026-05-19	Show	GitHub Exploit DB Packet Storm

2560	7.5	重要 Network	HSC	MailInspector	HSCのMailInspectorにおけるファイル名やパス名の外部制御に関する脆弱性	CWE-73 ファイル名やパス名の外部制御	CVE-2026-29962	2026-05-21 10:53	2026-05-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311661	-		linux canonical suse	linux_kernel ubuntu_linux suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_high_availability_extension	The pppol2tp_xmit function in drivers/net/pppol2tp.c in the L2TP implementation in the Linux kernel before 2.6.34 does not properly validate certain values associated with an interface, which allows …	CWE-476 NULL Pointer Dereference	CVE-2010-2495	2024-11-21 10:16	2010-09-9	Show	GitHub Exploit DB Packet Storm

311662	7.8	HIGH Local	linux vmware avaya	linux_kernel esx aura_system_manager aura_communication_manager aura_system_platform aura_session_manager aura_presence_services iq aura_voice_portal	Buffer overflow in the ecryptfs_uid_hash macro in fs/ecryptfs/messaging.c in the eCryptfs subsystem in the Linux kernel before 2.6.35 might allow local users to gain privileges or cause a denial of s…	CWE-120 Classic Buffer Overflow	CVE-2010-2492	2024-11-21 10:16	2010-09-9	Show	GitHub Exploit DB Packet Storm

311663	7.8	HIGH Local	linux vmware canonical suse	linux_kernel esx ubuntu_linux suse_linux_enterprise_server suse_linux_enterprise_desktop	The DNS resolution functionality in the CIFS implementation in the Linux kernel before 2.6.35, when CONFIG_CIFS_DFS_UPCALL is enabled, relies on a user's keyring for the dns_resolver upcall in the ci…	NVD-CWE-noinfo	CVE-2010-2524	2024-11-21 10:16	2010-09-9	Show	GitHub Exploit DB Packet Storm

311664	-		linux	linux_kernel	Multiple buffer overflows in fs/nfsd/nfs4xdr.c in the XDR implementation in the NFS server in the Linux kernel before 2.6.34-rc6 allow remote attackers to cause a denial of service (panic) or possibl…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-2521	2024-11-21 10:16	2010-09-8	Show	GitHub Exploit DB Packet Storm

311665	-		linux	linux_kernel	fs/cifs/cifssmb.c in the CIFS implementation in the Linux kernel before 2.6.34-rc4 allows remote attackers to cause a denial of service (panic) via an SMB response packet with an invalid CountHigh va…	CWE-20 Improper Input Validation	CVE-2010-2248	2024-11-21 10:16	2010-09-8	Show	GitHub Exploit DB Packet Storm

311666	-		opensuse	opensuse	lxsession-logout in lxsession in LXDE, as used on SUSE openSUSE 11.3 and other platforms, does not lock the screen when the Suspend or Hibernate button is pressed, which might make it easier for phys…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-2532	2024-11-21 10:16	2010-09-4	Show	GitHub Exploit DB Packet Storm

311667	-		linux	linux_kernel	The do_anonymous_page function in mm/memory.c in the Linux kernel before 2.6.27.52, 2.6.32.x before 2.6.32.19, 2.6.34.x before 2.6.34.4, and 2.6.35.x before 2.6.35.2 does not properly separate the st…	CWE-94 Code Injection	CVE-2010-2240	2024-11-21 10:16	2010-09-4	Show	GitHub Exploit DB Packet Storm

311668	-		linux suse debian canonical	linux_kernel linux_enterprise_server linux_enterprise_desktop linux_enterprise_software_development_kit debian_linux ubuntu_linux	The xfs_swapext function in fs/xfs/xfs_dfrag.c in the Linux kernel before 2.6.35 does not properly check the file descriptors passed to the SWAPEXT ioctl, which allows local users to leverage write a…	CWE-200 Information Exposure	CVE-2010-2226	2024-11-21 10:16	2010-09-4	Show	GitHub Exploit DB Packet Storm

311669	-		common1	moobbs2	Cross-site scripting (XSS) vulnerability in Free CGI Moo moobbs2 before 1.03 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2010-2365	2024-11-21 10:16	2010-09-1	Show	GitHub Exploit DB Packet Storm

311670	-		common1	moobbs	Cross-site scripting (XSS) vulnerability in Free CGI Moo moobbs before 1.03 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2010-2364	2024-11-21 10:16	2010-09-1	Show	GitHub Exploit DB Packet Storm