Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2801 7.8 重要
Local 		アドビシステムズ Adobe Substance 3D Painter アドビのAdobe Substance 3D Painterにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-34676 2026-05-14 10:20 2026-05-12 Show GitHub Exploit DB Packet Storm
2802 7.8 重要
Local 		アドビシステムズ Adobe Illustrator アドビのAdobe Illustratorにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-34687 2026-05-14 10:20 2026-05-12 Show GitHub Exploit DB Packet Storm
2803 8.2 重要
Local 		デル insightiq デルのinsightiqにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-35071 2026-05-14 10:20 2026-05-12 Show GitHub Exploit DB Packet Storm
2804 9.8 緊急
Network 		デル Dell ObjectScale
elastic cloud storage 		デルのelastic cloud storage等の複数製品におけるCSV ファイル内の数式要素の中和に関する脆弱性 CWE-1236
CSV ファイル内の数式要素の不適切な中和 		CVE-2026-35157 2026-05-14 10:20 2026-05-11 Show GitHub Exploit DB Packet Storm
2805 5.4 警告
Network 		Frappe Frappe Frappeにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-3673 2026-05-14 10:20 2026-04-22 Show GitHub Exploit DB Packet Storm
2806 9.8 緊急
Network 		Grokability, Inc. Snipe-IT Grokability, Inc.のSnipe-ITにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-37709 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
2807 6.5 警告
Local 		Linux Containers LXC Linux ContainersのLXCにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-39402 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
2808 8.8 重要
Network 		Pi-hole FTLDNS Pi-holeのFTLDNSにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-39849 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
2809 7.5 重要
Network 		- アップルのmacOSにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2026-39871 2026-05-14 10:19 2026-05-11 Show GitHub Exploit DB Packet Storm
2810 8.8 重要
Network 		Anthropic PBC Claude Code Anthropic PBCのClaude Codeにおける複数の脆弱性 CWE-20
CWE-77
CWE-noinfo
CVE-2026-40068 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312111 - - - Cleartext transmission of sensitive information for some BigDL software maintained by Intel(R) before version 2.5.0 may allow an authenticated user to potentially enable denial of service via adjacen… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2024-28169 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312112 - - - Out-of-bounds read in some Intel(R) VPL software before version 24.1.4 may allow an authenticated user to potentially enable information disclosure via local access. CWE-125
Out-of-bounds Read 		CVE-2024-28051 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312113 - - - Improper input validation in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi wireless products before version 23.40 may allow an unauthenticated user to enable denia… - CVE-2024-28049 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312114 - - - NULL pointer dereference in some Intel(R) VPL software before version 24.1.4 may allow an authenticated user to potentially enable denial of service via local access. CWE-395
 Use of NullPointerException Catch to Detect NULL Pointer Dereference 		CVE-2024-28030 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312115 - - - Improper input validation in some Intel(R) Neural Compressor software before version v3.0 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. - CVE-2024-28028 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312116 - - - Improper access control in some Intel(R) Granulate(TM) software before version 4.30.1 may allow a authenticated user to potentially enable escalation of privilege via local access. CWE-284
Improper Access Control 		CVE-2024-27200 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312117 - - - Uncontrolled search path in some Intel(R) Rendering Toolkit software before version 2024.1.0 may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-427
 Uncontrolled Search Path Element 		CVE-2024-26017 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312118 - - - Incorrect default permissions for some Intel(R) Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via l… CWE-276
Incorrect Default Permissions  		CVE-2024-25647 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312119 - - - Insufficient control flow management in UEFI firmware for some Intel(R) Xeon(R) Processors may allow an authenticated user to enable denial of service via local access. CWE-691
 Insufficient Control Flow Management 		CVE-2024-25565 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312120 - - - Improper initialization in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi before version 23.40 may allow a privileged user to potentially enable information disclos… CWE-665
 Improper Initialization 		CVE-2024-25563 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm