Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2851	9.1	緊急 Network	OPNsense project	OPNsense	OPNsenseにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-44194	2026-05-18 11:25	2026-05-13	Show	GitHub Exploit DB Packet Storm

2852	6.5	警告 Network	OPNsense project	OPNsense	OPNsenseにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-44195	2026-05-18 11:25	2026-05-13	Show	GitHub Exploit DB Packet Storm

2853	9.8	緊急 Network	フォーティネット	FortiAuthenticator	フォーティネットのFortiAuthenticatorにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-44277	2026-05-18 11:25	2026-05-12	Show	GitHub Exploit DB Packet Storm

2854	5.5	警告 Local	フォーティネット	FortiClient	フォーティネットのFortiClientにおけるハードコードされた暗号鍵の使用に関する脆弱性	CWE-321 ハードコードされた暗号鍵の使用	CVE-2026-44278	2026-05-18 11:25	2026-05-12	Show	GitHub Exploit DB Packet Storm

2855	5.5	警告 Local	フォーティネット	FortiToken Mobile	フォーティネットのFortiToken MobileにおけるAndroid アプリケーションコンポーネントの不適切なエクスポートの脆弱性	CWE-926 Android アプリケーションコンポーネントの不適切なエクスポート	CVE-2026-44279	2026-05-18 11:25	2026-05-12	Show	GitHub Exploit DB Packet Storm

2856	4.3	警告 Network	etcd	etcd	etcd-ioのetcdにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-44283	2026-05-18 11:25	2026-05-14	Show	GitHub Exploit DB Packet Storm

2857	5.3	警告 Network	MISP	MISP	MISPにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-44379	2026-05-18 11:25	2026-05-13	Show	GitHub Exploit DB Packet Storm

2858	7.2	重要 Network	MISP	MISP	MISPにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-44380	2026-05-18 11:25	2026-05-13	Show	GitHub Exploit DB Packet Storm

2859	5.3	警告 Network	MISP	MISP	MISPにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-44381	2026-05-18 11:25	2026-05-13	Show	GitHub Exploit DB Packet Storm

2860	6.5	警告 Network	Frappe	ERPNext	FrappeのERPNextにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-44448	2026-05-18 11:25	2026-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312041	-		x.org	x11	Race condition in xterm allows local users to modify arbitrary files via the logging option.	NVD-CWE-Other	CVE-1999-0965	2024-11-20 05:37	1997-09-19	Show	GitHub Exploit DB Packet Storm

312042	-		-	-	Powerjob >= 3.20 is vulnerable to SQL injection via the version parameter.	-	CVE-2024-44546	2024-11-20 05:35	2024-11-12	Show	GitHub Exploit DB Packet Storm

312043	-		-	-	In Faust 2.23.1, an input file with the lines "// r visualisation tCst" and "//process = +: L: abM-^Q;" and "process = route(3333333333333333333,2,1,2,3,1) : *;" leads to stack consumption.	-	CVE-2021-41737	2024-11-20 05:35	2024-11-11	Show	GitHub Exploit DB Packet Storm

312044	-		-	-	An issue was discovered in LemonLDAP::NG before 2.0.12. There is a missing expiration check in the OAuth2.0 handler, i.e., it does not verify access token validity. An attacker can use a expired acce…	-	CVE-2021-35473	2024-11-20 05:35	2024-11-11	Show	GitHub Exploit DB Packet Storm

312045	8.8	HIGH Network	microsoft	sql_server_2016 sql_server_2017 sql_server_2019	SQL Server Native Client Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43462	2024-11-20 05:18	2024-11-13	Show	GitHub Exploit DB Packet Storm

312046	-		-	-	Rejected reason: This CVE was previously published at https://bugzilla.redhat.com/show_bug.cgi?id=2262978 but later rejected for the following reason: The flaw requires an attacker to have superuser …	-	CVE-2024-1271	2024-11-20 05:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

312047	9.8	CRITICAL Network	microsoft	.net visual_studio_2022	.NET and Visual Studio Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43498	2024-11-20 05:01	2024-11-13	Show	GitHub Exploit DB Packet Storm

312048	7.5	HIGH Network	microsoft	.net visual_studio_2022	.NET and Visual Studio Denial of Service Vulnerability	NVD-CWE-noinfo	CVE-2024-43499	2024-11-20 04:59	2024-11-13	Show	GitHub Exploit DB Packet Storm

312049	6.7	MEDIUM Local	intel	server_board_m70klp2sb_firmware	Improper Access Control in UEFI firmware for some Intel(R) Server Board M70KLP may allow a privileged user to potentially enable escalation of privilege via local access.	CWE-284 Improper Access Control	CVE-2024-39609	2024-11-20 04:58	2024-11-14	Show	GitHub Exploit DB Packet Storm

312050	6.7	MEDIUM Local	intel	m10jnp2sb_firmware	Improper input validation in UEFI firmware in some Intel(R) Server Board M10JNP2SB Family may allow a privileged user to potentially enable escalation of privilege via local access.	NVD-CWE-noinfo	CVE-2024-41167	2024-11-20 04:45	2024-11-14	Show	GitHub Exploit DB Packet Storm