Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2991	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Windows Win32k の特権の昇格の脆弱性	CWE-843 型の取り違え	CVE-2026-35417	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

2992	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Windows Cloud Files Mini Filter ドライバーの特権の昇格の脆弱性	CWE-367 CWE-416	CVE-2026-35418	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

2993	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025	Windows DWM Core ライブラリの情報漏えいの脆弱性	CWE-125 境界外読み取り	CVE-2026-35419	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

2994	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft Windows Server 2012 Microso…	Windows カーネルの特権の昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-35420	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

2995	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows GDI のリモートでコードが実行される脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-35421	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

2996	6.5	警告 Network	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows TCP/IP ドライバーのセキュリティ機能のバイパスの脆弱性	CWE-288 代替パスまたはチャネルを使用した認証回避	CVE-2026-35422	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

2997	5.4	警告 Network	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows 11 Telnet クライアントの情報漏えいの脆弱性	CWE-125 境界外読み取り	CVE-2026-35423	2026-05-18 12:15	2026-05-12	Show	GitHub Exploit DB Packet Storm

2998	7.5	重要 Network	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	インターネットキー交換 (IKE) プロトコルのサービス拒否の脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-35424	2026-05-18 12:15	2026-05-12	Show	GitHub Exploit DB Packet Storm

2999	5.4	警告 Network	Frappe	Frappe	Frappeにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-3837	2026-05-18 12:15	2026-04-22	Show	GitHub Exploit DB Packet Storm

3000	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025	Windows カーネルの特権の昇格の脆弱性	CWE-822 信頼性のないポインタデリファレンス	CVE-2026-40369	2026-05-18 12:15	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311981	-		standards_based_linux_instrumentation	sblim-sfcb	Integer overflow in httpAdapter.c in httpAdapter in SBLIM SFCB 1.3.4 through 1.3.7, when the configuration sets httpMaxContentLength to a zero value, allows remote attackers to cause a denial of serv…	CWE-189 Numeric Errors	CVE-2010-2054	2024-11-21 10:15	2010-06-15	Show	GitHub Exploit DB Packet Storm

311982	-		standards_based_linux_instrumentation	sblim-sfcb	Heap-based buffer overflow in httpAdapter.c in httpAdapter in SBLIM SFCB before 1.3.8 might allow remote attackers to execute arbitrary code via a Content-Length HTTP header that specifies a value to…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-1937	2024-11-21 10:15	2010-06-15	Show	GitHub Exploit DB Packet Storm

311983	-		unrealircd	unrealircd	UnrealIRCd 3.2.8.1, as distributed on certain mirror sites from November 2009 through June 2010, contains an externally introduced modification (Trojan Horse) in the DEBUG3_DOLOG_SYSTEM macro, which …	CWE-20 Improper Input Validation	CVE-2010-2075	2024-11-21 10:15	2010-06-15	Show	GitHub Exploit DB Packet Storm

311984	9.8	CRITICAL Network	joomla	joomla\!	Joomla! Core is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently retrieve password reset tokens from the da…	-	CVE-2010-1435	2024-11-21 10:14	2021-06-22	Show	GitHub Exploit DB Packet Storm

311985	7.5	HIGH Network	joomla	joomla\!	Joomla! Core is prone to a session fixation vulnerability. An attacker may leverage this issue to hijack an arbitrary session and gain access to sensitive information, which may help in launching fur…	-	CVE-2010-1434	2024-11-21 10:14	2021-06-22	Show	GitHub Exploit DB Packet Storm

311986	9.8	CRITICAL Network	joomla	joomla\!	Joomla! Core is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to properly verify user-supplied input. An attacker can exploit this vulnerability to…	-	CVE-2010-1433	2024-11-21 10:14	2021-06-22	Show	GitHub Exploit DB Packet Storm

311987	7.5	HIGH Network	joomla	joomla\!	Joomla! Core is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. Joomla! Core versions 1.…	-	CVE-2010-1432	2024-11-21 10:14	2021-06-22	Show	GitHub Exploit DB Packet Storm

311988	6.1	MEDIUM Network	ikiwiki	ikiwiki	A cross-site scripting (XSS) vulnerability in ikiwiki before 3.20101112 allows remote attackers to inject arbitrary web script or HTML via a comment.	CWE-79 Cross-site Scripting	CVE-2010-1673	2024-11-21 10:14	2019-10-31	Show	GitHub Exploit DB Packet Storm

311989	7.5	HIGH Network	osgeo	mapserver	Mapserver 5.2, 5.4 and 5.6 before 5.6.5-2 improperly validates symbol index values during Mapfile parsing.	CWE-20 Improper Input Validation	CVE-2010-1678	2024-11-21 10:14	2019-10-30	Show	GitHub Exploit DB Packet Storm

311990	-		videolan	vlc_media_player	Heap-based buffer overflow in VideoLAN VLC media player before 1.0.6 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted byte str…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-1445	2024-11-21 10:14	2014-12-27	Show	GitHub Exploit DB Packet Storm