Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
260821 4.7 警告 サイバートラスト株式会社
Linux
レッドハット		 - x86_64 および amd64 プラットフォーム上 Linux Kernel におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-4271 2010-05-10 18:25 2010-03-16 Show GitHub Exploit DB Packet Storm
260822 5 警告 VMware - VMware Authorization Service の VMware Authentication Daemon におけるサービス運用妨害 (DoS) の脆弱性 CWE-134
書式文字列の問題 		CVE-2009-3707 2010-05-7 17:26 2009-10-16 Show GitHub Exploit DB Packet Storm
260823 9.3 危険 VMware - VMnc メディアコーデックおよびムービーデコーダにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-1565 2010-05-7 17:26 2010-04-9 Show GitHub Exploit DB Packet Storm
260824 9.3 危険 VMware - VMnc メディアコーデックおよびムービーデコーダにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1564 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
260825 10 危険 VMware - VMware Remote Console の vmware-vmrc.exe build 158248 における任意のコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2009-3732 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
260826 7.2 危険 VMware - 複数の VMware 製品の vmrun における権限昇格の脆弱性 CWE-134
書式文字列の問題 		CVE-2010-1139 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
260827 5 警告 VMware - 複数の VMware 製品の仮想ネットワークスタックにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1138 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
260828 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1142 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
260829 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1141 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
260830 5 警告 アップル
サイバートラスト株式会社
レッドハット
ターボリナックス
CUPS		 - CUPS の ippReadIO 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0949 2010-05-7 16:55 2009-06-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
931 7.5 HIGH
Network 		- - Bytes::Random::Secure versions through 0.29 for Perl share internal state across forked processes. When an object is initialised before forking, or when the functional interface is used, then the in… CWE-335
 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) 		CVE-2026-11625 2026-06-27 02:16 2026-06-26 Show GitHub Exploit DB Packet Storm
932 7.5 HIGH
Network 		wolfssl wolfssl wolfSSL's AVX2-optimized ML-KEM implementation (mlkem_cmp_avx2) compares only 1536 of the 1568 ciphertext bytes during the Fujisaki-Okamoto re-encryption check in ML-KEM-1024 decapsulation. Ciphertex… CWE-697
 Incorrect Comparison 		CVE-2026-10097 2026-06-27 02:16 2026-06-26 Show GitHub Exploit DB Packet Storm
933 - - - An observable timing discrepancy in the ASP could allow a privileged attacker to perform a brute-force attack against the hash message authentication code, allowing the input of an arbitrary message,… CWE-208
 Information Exposure Through Timing Discrepancy 		CVE-2023-20572 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
934 - - - An observable timing discrepancy in the ASP could allow a privileged attacker to perform a brute-force attack against the hash message authentication code, allowing arbitrary message input, potential… CWE-208
 Information Exposure Through Timing Discrepancy 		CVE-2023-20540 2026-06-27 02:16 2026-06-27 Show GitHub Exploit DB Packet Storm
935 8.8 HIGH
Network 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.0, Langflow's /api/v1/monitor router exposes 7 endpoints that perform read, write, and delete operations on… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-33760 2026-06-27 02:10 2026-06-24 Show GitHub Exploit DB Packet Storm
936 6.5 MEDIUM
Network 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.0, Langflow is vulnerable to Path Traversal in the Knowledge Bases API (POST /api/v1/knowledge_bases). This… CWE-22
Path Traversal 		CVE-2026-42867 2026-06-27 02:09 2026-06-24 Show GitHub Exploit DB Packet Storm
937 9.6 CRITICAL
Network 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.2, the "Shareable Playground" (or "Public Flows" in code) contains a critical RCE vulnerability. Shareable … CWE-94
Code Injection 		CVE-2026-48519 2026-06-27 02:07 2026-06-24 Show GitHub Exploit DB Packet Storm
938 6.1 MEDIUM
Network 		langflow langflow Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.10.0, the "Shareable Playground" (or "Public Flows" in code) contains a potential arbitrary file-read vulnera… CWE-73
 External Control of File Name or Path 		CVE-2026-48520 2026-06-27 02:06 2026-06-24 Show GitHub Exploit DB Packet Storm
939 10.0 CRITICAL
Network 		traefik traefik Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.48, 3.6.19, and 3.7.3, there is a high severity vulnerability in Traefik's StripPrefix middleware that allows an unauthenticated atta… CWE-288
Authentication Bypass Using an Alternate Path or Channel 		CVE-2026-48020 2026-06-27 02:04 2026-06-24 Show GitHub Exploit DB Packet Storm
940 10.0 CRITICAL
Network 		traefik traefik Traefik is an HTTP reverse proxy and load balancer. From 3.7.0 until 3.7.3, there is a high severity vulnerability in Traefik's domain-fronting protection (SNICheck) that allows an unauthenticated cl… CWE-288
Authentication Bypass Using an Alternate Path or Channel 		CVE-2026-48491 2026-06-27 02:02 2026-06-24 Show GitHub Exploit DB Packet Storm