Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3071	8.8	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-8970	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

3072	6.5	警告 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-8971	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

3073	8.8	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-8972	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

3074	8.8	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-8973	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

3075	8.8	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-8974	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

3076	8.8	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-8975	2026-05-22 10:51	2026-05-19	Show	GitHub Exploit DB Packet Storm

3077	3.3	低 Local	Siber Systems Inc.	RoboForm Password Manager	Androidアプリ「パスワード管理ロボフォーム」のintent処理における検証不備の脆弱性	CWE-357 危険な操作に対する不十分な警告	CVE-2026-47782	2026-05-21 16:37	2026-05-20	Show	GitHub Exploit DB Packet Storm

3078	-	-	（複数のベンダ）	（複数の製品）	CISA ICS Advisory / ICS Medical Advisory（2026年05月19日）	-	-	2026-05-21 16:17	2026-05-20	Show	GitHub Exploit DB Packet Storm

3079	6.1	警告 Network	Northern.tech	cfengine	Northern.techのcfengineにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-24710	2026-05-21 10:55	2026-05-14	Show	GitHub Exploit DB Packet Storm

3080	5.3	警告 Network	Northern.tech	cfengine	Northern.techのcfengineにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-24711	2026-05-21 10:55	2026-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
318351	-	-	-	InvenTree is an Open Source Inventory Management System. In affected versions of InvenTree it is possible for a registered user to store javascript in markdown notes fields, which are then displayed …	CWE-79 Cross-site Scripting	CVE-2024-47610	2024-10-10 21:57	2024-10-8	Show	GitHub Exploit DB Packet Storm

318352	-	-	-	A security flaw has been discovered in Solvait version 24.4.2 that allows an attacker to elevate their privileges. By manipulating the Request ID and Action Type parameters in /AssignToMe/SetAction, …	-	CVE-2024-45919	2024-10-10 21:57	2024-10-8	Show	GitHub Exploit DB Packet Storm

318353	-	-	-	Improper error handling in firmware of some SSD DC Products may allow an attacker to enable denial of service.	-	CVE-2024-47971	2024-10-10 21:57	2024-10-8	Show	GitHub Exploit DB Packet Storm

318354	-	-	-	Meshtastic is an open source, off-grid, decentralized, mesh network built to run on affordable, low-power devices. Meshtastic firmware is an open source firmware implementation for the broader projec…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2024-47079	2024-10-10 21:57	2024-10-8	Show	GitHub Exploit DB Packet Storm

318355	-	-	-	Redis is an open source, in-memory database that persists on disk. An authenticated user may use a specially crafted Lua script to trigger a stack buffer overflow in the bit library, which may potent…	CWE-20 CWE-121 Improper Input Validation Stack-based Buffer Overflow	CVE-2024-31449	2024-10-10 21:57	2024-10-8	Show	GitHub Exploit DB Packet Storm

318356	-	-	-	Redis is an open source, in-memory database that persists on disk. Authenticated users can trigger a denial-of-service by using specially crafted, long string match patterns on supported commands suc…	CWE-674 Uncontrolled Recursion	CVE-2024-31228	2024-10-10 21:57	2024-10-8	Show	GitHub Exploit DB Packet Storm

318357	-	-	-	Redis is an open source, in-memory database that persists on disk. An authenticated with sufficient privileges may create a malformed ACL selector which, when accessed, triggers a server panic and su…	CWE-20 Improper Input Validation	CVE-2024-31227	2024-10-10 21:57	2024-10-8	Show	GitHub Exploit DB Packet Storm

318358	-	-	-	BlueCMS 1.6 suffers from Arbitrary File Deletion via the file_name parameter in an /admin/database.php?act=del request.	-	CVE-2024-45894	2024-10-10 21:57	2024-10-8	Show	GitHub Exploit DB Packet Storm

318359	-	-	-	An issue was discovered in the m2m scaler driver in Samsung Mobile Processor and Wearable Processor Exynos 9820, 9825, 980, 990, 850,and W920. A Use-After-Free in the mobile processor leads to privil…	-	CVE-2024-44068	2024-10-10 21:57	2024-10-8	Show	GitHub Exploit DB Packet Storm

318360	-	-	-	Missing Authentication - User & System Configuration	-	CVE-2024-47555	2024-10-10 21:57	2024-10-8	Show	GitHub Exploit DB Packet Storm