Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2741 7.5 重要
Network 		Mtrudel Bandit MtrudelのBanditにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-39803 2026-05-25 10:25 2026-05-13 Show GitHub Exploit DB Packet Storm
2742 7.5 重要
Network 		Mtrudel Bandit MtrudelのBanditにおける無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2026-39806 2026-05-25 10:25 2026-05-13 Show GitHub Exploit DB Packet Storm
2743 7.5 重要
Network 		Quarkiverse Hub Quarkus OpenAPI Generator Quarkiverse HubのQuarkus OpenAPI Generatorにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40180 2026-05-25 10:25 2026-04-10 Show GitHub Exploit DB Packet Storm
2744 8.8 重要
Network 		OWASP OWASP BLT OWASPのOWASP BLTにおける複数の脆弱性 CWE-94
CWE-95
CVE-2026-40316 2026-05-25 10:25 2026-04-15 Show GitHub Exploit DB Packet Storm
2745 7.5 重要
Network 		WebOnyx graphql-php WebOnyxのgraphql-phpにおけるアルゴリズムの複雑さに関する脆弱性 CWE-407
アルゴリズムの複雑性 		CVE-2026-40476 2026-05-25 10:25 2026-04-17 Show GitHub Exploit DB Packet Storm
2746 5.9 警告
Network 		Jeffrey Stedfast (jstedfast) MailKit Jeffrey Stedfast (jstedfast)のMailKitにおけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2026-41319 2026-05-25 10:25 2026-04-24 Show GitHub Exploit DB Packet Storm
2747 9.8 緊急
Network 		pgx project pgx JackcのpgxにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-41889 2026-05-25 10:25 2026-05-8 Show GitHub Exploit DB Packet Storm
2748 5.4 警告
Network 		reconurge Flowsint Flowsintにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42159 2026-05-25 10:25 2026-05-14 Show GitHub Exploit DB Packet Storm
2749 8.6 重要
Network 		MagicMirror MagicMirror MagicMirrorにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-42281 2026-05-25 10:25 2026-05-14 Show GitHub Exploit DB Packet Storm
2750 6.1 警告
Network 		Absinthe-graphql Absinthe.Plug (absinthe plug) Absinthe-graphqlのAbsinthe.Plug (absinthe plug)におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42794 2026-05-25 10:25 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311751 - linux linux_kernel Race condition in the hvc_close function in drivers/char/hvc_console.c in the Linux kernel before 2.6.34 allows local users to cause a denial of service or possibly have unspecified other impact by c… CWE-362
Race Condition 		CVE-2010-2653 2024-11-21 10:17 2010-10-6 Show GitHub Exploit DB Packet Storm
311752 5.5 MEDIUM
Local 		linux
canonical
suse 		linux_kernel
ubuntu_linux
linux_enterprise_server
linux_enterprise_high_availability_extension
linux_enterprise_desktop 		kernel/trace/ftrace.c in the Linux kernel before 2.6.35.5, when debugfs is enabled, does not properly handle interaction between mutex possession and llseek operations, which allows local users to ca… CWE-476
 NULL Pointer Dereference 		CVE-2010-3079 2024-11-21 10:17 2010-10-1 Show GitHub Exploit DB Packet Storm
311753 8.1 HIGH
Network 		linux
canonical
vmware
avaya 		linux_kernel
ubuntu_linux
esx
aura_system_manager
aura_communication_manager
aura_system_platform
aura_session_manager
aura_presence_services
iq
aura_voice_portal 		The xfs implementation in the Linux kernel before 2.6.35 does not look up inode allocation btrees before reading inode buffers, which allows remote authenticated users to read unlinked files, or read… CWE-200
Information Exposure 		CVE-2010-2943 2024-11-21 10:17 2010-10-1 Show GitHub Exploit DB Packet Storm
311754 - linux
canonical 		linux_kernel
ubuntu_linux 		Buffer overflow in the niu_get_ethtool_tcam_all function in drivers/net/niu.c in the Linux kernel before 2.6.36-rc4 allows local users to cause a denial of service or possibly have unspecified other … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3084 2024-11-21 10:17 2010-09-30 Show GitHub Exploit DB Packet Storm
311755 - linux
canonical 		linux_kernel
ubuntu_linux 		fs/jfs/xattr.c in the Linux kernel before 2.6.35.2 does not properly handle a certain legacy format for storage of extended attributes, which might allow local users by bypass intended xattr namespac… CWE-20
 Improper Input Validation  		CVE-2010-2946 2024-11-21 10:17 2010-09-30 Show GitHub Exploit DB Packet Storm
311756 - dietrich_ayala nusoap Cross-site scripting (XSS) vulnerability in NuSOAP 0.9.5, as used in MantisBT and other products, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to an arbitrary PHP … CWE-79
Cross-site Scripting 		CVE-2010-3070 2024-11-21 10:17 2010-09-29 Show GitHub Exploit DB Packet Storm
311757 - php php Format string vulnerability in stream.c in the phar extension in PHP 5.3.x through 5.3.3 allows context-dependent attackers to obtain sensitive information (memory contents) and possibly execute arbi… CWE-134
Use of Externally-Controlled Format String 		CVE-2010-2950 2024-11-21 10:17 2010-09-29 Show GitHub Exploit DB Packet Storm
311758 7.8 HIGH
Local 		linux
vmware
suse 		linux_kernel
esx
suse_linux_enterprise_server
suse_linux_enterprise_desktop 		The compat_alloc_user_space functions in include/asm/compat.h files in the Linux kernel before 2.6.36-rc4-git2 on 64-bit platforms do not properly allocate the userspace memory required for the 32-bi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3081 2024-11-21 10:17 2010-09-25 Show GitHub Exploit DB Packet Storm
311759 - cisco ios Memory leak in the SSL VPN feature in Cisco IOS 12.4, 15.0, and 15.1, when HTTP port redirection is enabled, allows remote attackers to cause a denial of service (memory consumption) by improperly di… CWE-399
 Resource Management Errors 		CVE-2010-2836 2024-11-21 10:17 2010-09-24 Show GitHub Exploit DB Packet Storm
311760 - cisco ios
ios_xe
unified_communications_manager 		Cisco IOS 12.2 through 12.4 and 15.0 through 15.1, Cisco IOS XE 2.5.x and 2.6.x before 2.6.1, and Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x before 6.1(5), 7.0 before 7… NVD-CWE-noinfo
CVE-2010-2835 2024-11-21 10:17 2010-09-24 Show GitHub Exploit DB Packet Storm