Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2611 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2026-43096 2026-05-21 10:51 2026-05-6 Show GitHub Exploit DB Packet Storm
2612 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-43378 2026-05-21 10:51 2026-05-8 Show GitHub Exploit DB Packet Storm
2613 9.8 緊急
Network 		Linux Linux Kernel LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-43379 2026-05-21 10:51 2026-05-8 Show GitHub Exploit DB Packet Storm
2614 7.1 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-43380 2026-05-21 10:51 2026-05-8 Show GitHub Exploit DB Packet Storm
2615 5.3 警告
Network 		protobufjs project protobufjs protobufjs projectのprotobufjsにおけるUnicode エンコーディングの処理に関する脆弱性 CWE-176
Unicode エンコーディングの不適切な処理 		CVE-2026-44288 2026-05-21 10:51 2026-05-13 Show GitHub Exploit DB Packet Storm
2616 8.7 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-44549 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
2617 8.1 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-44565 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
2618 9.8 緊急
Network 		openwebui open webui openwebuiのopen webuiにおける複数の脆弱性 CWE-22
CWE-434
CVE-2026-44566 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
2619 7.3 重要
Network 		openwebui open webui openwebuiのopen webuiにおける複数の脆弱性 CWE-602
CWE-863
CVE-2026-44567 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
2620 7.1 重要
Network 		openwebui open webui openwebuiのopen webuiにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-44569 2026-05-21 10:51 2026-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311691 - libvirt libvirt Red Hat libvirt, possibly 0.6.0 through 0.8.2, creates new images without setting the user-defined backing-store format, which allows guest OS users to read arbitrary files on the host OS via unspeci… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-2239 2024-11-21 10:16 2010-08-20 Show GitHub Exploit DB Packet Storm
311692 - libvirt libvirt Red Hat libvirt, possibly 0.7.2 through 0.8.2, recurses into disk-image backing stores without extracting the defined disk backing-store format, which might allow guest OS users to read arbitrary fil… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-2238 2024-11-21 10:16 2010-08-20 Show GitHub Exploit DB Packet Storm
311693 - libvirt libvirt Red Hat libvirt, possibly 0.6.1 through 0.8.2, looks up disk backing stores without referring to the user-defined main disk format, which might allow guest OS users to read arbitrary files on the hos… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-2237 2024-11-21 10:16 2010-08-20 Show GitHub Exploit DB Packet Storm
311694 - redhat directory_server The (1) setup-ds.pl and (2) setup-ds-admin.pl setup scripts for Red Hat Directory Server 8 before 8.2 use world-readable permissions when creating cache files, which allows local users to obtain sens… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-2241 2024-11-21 10:16 2010-08-18 Show GitHub Exploit DB Packet Storm
311695 - opera opera_browser Opera before 10.61 does not properly suppress clicks on download dialogs that became visible after a recent tab change, which allows remote attackers to conduct clickjacking attacks, and consequently… CWE-94
Code Injection 		CVE-2010-2576 2024-11-21 10:16 2010-08-17 Show GitHub Exploit DB Packet Storm
311696 - pligg pligg_cms Multiple SQL injection vulnerabilities in Pligg before 1.1.1 allow remote attackers to execute arbitrary SQL commands via the title parameter to (1) storyrss.php or (2) story.php. CWE-89
SQL Injection 		CVE-2010-2577 2024-11-21 10:16 2010-08-17 Show GitHub Exploit DB Packet Storm
311697 - microsoft windows_xp
windows_server_2003
windows_2003_server 		The Secure Channel (aka SChannel) security package in Microsoft Windows XP SP2 and SP3, and Windows Server 2003 SP2, does not properly validate certificate request messages from TLS and SSL servers, … CWE-20
 Improper Input Validation  		CVE-2010-2566 2024-11-21 10:16 2010-08-12 Show GitHub Exploit DB Packet Storm
311698 - microsoft windows_movie_maker Buffer overflow in Microsoft Windows Movie Maker (WMM) 2.1, 2.6, and 6.0 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted project file,… CWE-94
Code Injection 		CVE-2010-2564 2024-11-21 10:16 2010-08-12 Show GitHub Exploit DB Packet Storm
311699 - microsoft open_xml_file_format_converter
office
excel 		Microsoft Office Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly parse the Excel file format, which allows remote attackers to ex… CWE-94
Code Injection 		CVE-2010-2562 2024-11-21 10:16 2010-08-12 Show GitHub Exploit DB Packet Storm
311700 - microsoft xml_core_services Microsoft XML Core Services (aka MSXML) 3.0 does not properly handle HTTP responses, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a cra… CWE-94
Code Injection 		CVE-2010-2561 2024-11-21 10:16 2010-08-12 Show GitHub Exploit DB Packet Storm