Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2591	8.8	重要 Network	D-Link Systems, Inc.	DCS-5615 Firmware	D-Link CorporationのDCS-5615 Firmwareにおける複数の脆弱性	CWE-266 CWE-272	CVE-2026-11497	2026-06-10 14:34	2026-06-8	Show	GitHub Exploit DB Packet Storm

2592	7.5	重要 Network	D-Link Systems, Inc.	DGS-1100-08PD Firmware	D-Link CorporationのDGS-1100-08PD Firmwareにおける複数の脆弱性	CWE-266 CWE-272	CVE-2026-11555	2026-06-10 14:34	2026-06-8	Show	GitHub Exploit DB Packet Storm

2593	9.8	緊急 Network	The Perl Foundation	DBI	The Perl FoundationのDBIにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-9698	2026-06-10 14:34	2026-06-9	Show	GitHub Exploit DB Packet Storm

2594	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-71313	2026-06-10 14:34	2026-06-3	Show	GitHub Exploit DB Packet Storm

2595	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-71314	2026-06-10 14:34	2026-06-3	Show	GitHub Exploit DB Packet Storm

2596	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける複数の脆弱性	CWE-125 CWE-787	CVE-2026-10941	2026-06-10 14:34	2026-06-4	Show	GitHub Exploit DB Packet Storm

2597	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10943	2026-06-10 14:34	2026-06-4	Show	GitHub Exploit DB Packet Storm

2598	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10945	2026-06-10 14:34	2026-06-4	Show	GitHub Exploit DB Packet Storm

2599	7.5	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-10946	2026-06-10 14:34	2026-06-4	Show	GitHub Exploit DB Packet Storm

2600	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10947	2026-06-10 14:34	2026-06-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
351	5.5	MEDIUM Local	-	-	A stack overflow in the AP4_StsdAtom::AP4_StsdAtom component of axiomatic-systems Bento4 before v1.8.9allows attackers to cause a Denial of Service (DoS) via a crafted MP4 file. New	CWE-121 Stack-based Buffer Overflow	CVE-2026-36907	2026-06-29 23:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

352	9.6	CRITICAL Network	-	-	mise manages dev tools like node, python, cmake, and terraform. Prior to 2026.3.10, mise processes .tool-versions files through the Tera template engine during parsing, with the exec() function regis… New	CWE-94 Code Injection	CVE-2026-33646	2026-06-29 23:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

353	7.1	HIGH Network	-	-	The DMP-5000 file service exposes authenticated arbitrary file upload functionality. There are exposed endpoints which allows authenticated users to upload files of any type without validation. No fi… New	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2026-33560	2026-06-29 23:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

354	8.8	HIGH Network	-	-	Cudy LT300 3.0 running firmware prior to version 2.5.12 contains an OS command injection vulnerability that allows authenticated attackers to execute arbitrary commands by injecting shell metacharact… New	CWE-78 OS Command	CVE-2026-32833	2026-06-29 23:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

355	9.8	CRITICAL Network	-	-	Various versions of Daktronics Controller Firmware could allow authenticated and unauthenticated remote users to escape the intended directory and enumerate arbitrary file system paths. New	CWE-22 Path Traversal	CVE-2026-28701	2026-06-29 23:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

356	8.1	HIGH Network	-	-	The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.16.17 does not verify that the user performing a subscription act… New	-	CVE-2026-10820	2026-06-29 23:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

357	7.5	HIGH Network	-	-	The APCu Manager WordPress plugin before 4.5.0 does not escape APCu object-cache keys before rendering them in an admin-area page, leading to a Stored Cross-Site Scripting vulnerability. When a persi… New	-	CVE-2026-10083	2026-06-29 23:16	2026-06-29	Show	GitHub Exploit DB Packet Storm

358	-		-	-	AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.32, there is a DoS vulnerability in ExtractTextInformationBlock… New	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2025-32423	2026-06-29 23:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

359	7.5	HIGH Network	ollama	ollama	Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an attacker to read and exfiltrate the server's heap memory, potentially leading to sensitive … New	CWE-125 Out-of-bounds Read	CVE-2026-5757	2026-06-29 22:49	2026-06-27	Show	GitHub Exploit DB Packet Storm

360	5.3	MEDIUM Network	fasterxml	jackson-databind	jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Processor. From 2.8.0 until 2.18.9, 2.21.5, and 3.1.4, in BeanDeserializerBase.createContextua… New	CWE-915 Improperly Controlled Modification of Dynamically-Determined Object Attributes	CVE-2026-54515	2026-06-29 22:38	2026-06-24	Show	GitHub Exploit DB Packet Storm