Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2811 5.5 警告
Local 		GNU Project
レッドハット		 Red Hat Hardened Images
Red Hat OpenShift Container Platform
Red Hat Enterprise Linux
GNU Binutils 		GNU Project等の複数ベンダの製品におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-6844 2026-05-22 10:52 2026-04-22 Show GitHub Exploit DB Packet Storm
2812 5 警告
Local 		GNU Project
レッドハット		 Red Hat Hardened Images
Red Hat OpenShift Container Platform
Red Hat Enterprise Linux
GNU Binutils 		GNU Project等の複数ベンダの製品におけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-6845 2026-05-22 10:52 2026-04-22 Show GitHub Exploit DB Packet Storm
2813 7.8 重要
Local 		GNU Project
レッドハット		 Red Hat Hardened Images
Red Hat OpenShift Container Platform
Red Hat Enterprise Linux
GNU Binutils 		GNU Project等の複数ベンダの製品におけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-6846 2026-05-22 10:52 2026-04-22 Show GitHub Exploit DB Packet Storm
2814 8.1 重要
Network 		レッドハット Quay レッドハットのQuayにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2026-6848 2026-05-22 10:52 2026-04-22 Show GitHub Exploit DB Packet Storm
2815 7.1 重要
Local 		レッドハット Red Hat Enterprise Linux AI
InstructLab 		レッドハットのRed Hat Enterprise Linux AI等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-6855 2026-05-22 10:52 2026-04-22 Show GitHub Exploit DB Packet Storm
2816 6.5 警告
Adjacent 		Mozilla Foundation Mozilla Firefox Mozilla FoundationのMozilla Firefoxにおける複数の脆弱性 CWE-200
CWE-306
CVE-2026-8706 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
2817 3.1
Network 		EMQX emqx EMQXのemqxにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2026-8741 2026-05-22 10:52 2026-05-17 Show GitHub Exploit DB Packet Storm
2818 9.1 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における過度に許容されるクロスドメインホワイトリストに関する脆弱性 CWE-942
過度に許容されるクロスドメインホワイトリスト 		CVE-2026-8948 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
2819 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-8949 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
2820 9.3 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-8950 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311761 - oracle database_server
fusion_middleware 		Unspecified vulnerability in the Perl component in Oracle Database Server 11.2.0.1, 11.1.0.7, 10.2.0.3, 10.2.0.4, and 10.1.0.5; and Fusion Middleware 11.1.1.1.0 and 11.1.1.2.0; allows local users to … NVD-CWE-noinfo
CVE-2010-2389 2024-11-21 10:16 2010-10-14 Show GitHub Exploit DB Packet Storm
311762 - oracle e-business_suite Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect confidentiality and integrity via unknown vectors. NVD-CWE-noinfo
CVE-2010-2388 2024-11-21 10:16 2010-10-14 Show GitHub Exploit DB Packet Storm
311763 - norenz ad-edit2 Cross-site scripting (XSS) vulnerability in search.cgi in AD-EDIT2 before 3.0.9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2010-2367 2024-11-21 10:16 2010-10-7 Show GitHub Exploit DB Packet Storm
311764 - joomla joomla\! Multiple cross-site scripting (XSS) vulnerabilities in the Back End in Joomla! 1.5.x before 1.5.20 allow remote authenticated users to inject arbitrary web script or HTML via administrator screens. CWE-79
Cross-site Scripting 		CVE-2010-2535 2024-11-21 10:16 2010-10-6 Show GitHub Exploit DB Packet Storm
311765 5.5 MEDIUM
Local 		linux
canonical
suse 		linux_kernel
ubuntu_linux
linux_enterprise_desktop
linux_enterprise_server
linux_enterprise_high_availability_extension 		Integer overflow in the btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the Linux kernel before 2.6.35 might allow local users to obtain sensitive information via a BTRFS_IOC_CLONE_RANGE ioctl call. CWE-200
Information Exposure 		CVE-2010-2538 2024-11-21 10:16 2010-10-1 Show GitHub Exploit DB Packet Storm
311766 7.1 HIGH
Local 		linux
canonical
suse 		linux_kernel
ubuntu_linux
suse_linux_enterprise_server
suse_linux_enterprise_desktop
linux_enterprise_high_availability_extension 		The btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the Linux kernel before 2.6.35 allows local users to overwrite an append-only file via a (1) BTRFS_IOC_CLONE or (2) BTRFS_IOC_CLONE_RANGE ioctl c… NVD-CWE-noinfo
CVE-2010-2537 2024-11-21 10:16 2010-10-1 Show GitHub Exploit DB Packet Storm
311767 - netbsd
freebsd
apple 		netbsd
freebsd
mac_os_x 		Multiple integer signedness errors in smb_subr.c in the netsmb module in the kernel in NetBSD 5.0.2 and earlier, FreeBSD, and Apple Mac OS X allow local users to cause a denial of service (panic) via… CWE-189
Numeric Errors 		CVE-2010-2530 2024-11-21 10:16 2010-09-30 Show GitHub Exploit DB Packet Storm
311768 - linux
canonical
suse 		linux_kernel
ubuntu_linux
linux_enterprise_desktop
linux_enterprise_server 		Integer overflow in the ethtool_get_rxnfc function in net/core/ethtool.c in the Linux kernel before 2.6.33.7 on 32-bit platforms allows local users to cause a denial of service or possibly have unspe… CWE-190
 Integer Overflow or Wraparound 		CVE-2010-2478 2024-11-21 10:16 2010-09-30 Show GitHub Exploit DB Packet Storm
311769 - synology dsm Multiple cross-site scripting (XSS) vulnerabilities in Synology Disk Station 2.x before DSM3.0-1337 allow remote attackers to inject arbitrary web script or HTML by connecting to the FTP server and p… CWE-79
Cross-site Scripting 		CVE-2010-2453 2024-11-21 10:16 2010-09-30 Show GitHub Exploit DB Packet Storm
311770 - roundup-tracker roundup Cross-site scripting (XSS) vulnerability in cgi/client.py in Roundup before 1.4.14 allows remote attackers to inject arbitrary web script or HTML via the template argument to the /issue program. CWE-79
Cross-site Scripting 		CVE-2010-2491 2024-11-21 10:16 2010-09-25 Show GitHub Exploit DB Packet Storm