Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3181 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows WAN ARP Driver Elevation of Privilege Vulnerability CWE-416
解放済みメモリの使用 		CVE-2026-40408 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
3182 7 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows SMB クライアントの特権の昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40410 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
3183 9.6 緊急
Network 		TanStack tanstack/react-start-rsc
@tanstack/router-devtools-core
@tanstack/router-utils
@tanstack/react-router-devtools
@tanstack/valibot-adapter
@tanstack/zod-adapter
@tanstack/vue-start-se… 		TanStackの@tanstack/arktype-adapter等の複数製品における埋め込まれた悪意のあるコードに関する脆弱性 CWE-506
埋め込まれた悪意のあるコード 		CVE-2026-45321 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
3184 6.5 警告
Network 		IBM
HCL Technologies Limited		 BigFix WebUI Reports
BigFix WebUI Common
BigFix WebUI API
BigFix WebUI Framework
BigFix WebUI Profile Management
BigFix WebU… 		HCL Technologies LimitedのBigFix WebUI API等の複数製品における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2025-15633 2026-05-18 12:06 2026-05-9 Show GitHub Exploit DB Packet Storm
3185 4.3 警告
Network 		IBM
HCL Technologies Limited		 BigFix WebUI Reports
BigFix WebUI Common
BigFix WebUI API
BigFix WebUI Framework
BigFix WebUI Profile Management
BigFix WebU… 		HCL Technologies LimitedのBigFix WebUI API等の複数製品における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2025-15634 2026-05-18 12:06 2026-05-9 Show GitHub Exploit DB Packet Storm
3186 4.9 警告
Network 		Buffalo Americas, Inc. TeraStation NAS TS5400R Firmware Buffalo Americas, Inc.のTeraStation NAS TS5400R Firmwareにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2026-29516 2026-05-18 12:06 2026-03-16 Show GitHub Exploit DB Packet Storm
3187 6.5 警告
Network 		Mem0 mem0 Mem0のmem0における複数の脆弱性 CWE-306
CWE-862
CVE-2026-31241 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
3188 9.1 緊急
Network 		Mem0 mem0 Mem0のmem0における複数の脆弱性 CWE-306
CWE-862
CVE-2026-31242 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
3189 6.5 警告
Network 		Mem0 mem0 Mem0のmem0における複数の脆弱性 CWE-306
CWE-862
CVE-2026-31243 2026-05-18 12:05 2026-05-12 Show GitHub Exploit DB Packet Storm
3190 6.5 警告
Network 		Mem0 mem0 Mem0のmem0における複数の脆弱性 CWE-306
CWE-862
CVE-2026-31244 2026-05-18 12:05 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312291 - rsa adaptive_authentication Cross-site scripting (XSS) vulnerability in an unspecified Shockwave Flash file in RSA Adaptive Authentication 2.x and 5.7.x allows remote attackers to inject arbitrary web script or HTML via unknown… CWE-79
Cross-site Scripting 		CVE-2008-7266 2024-11-21 09:58 2010-11-27 Show GitHub Exploit DB Packet Storm
312292 - proftpd proftpd The pr_data_xfer function in ProFTPD before 1.3.2rc3 allows remote authenticated users to cause a denial of service (CPU consumption) via an ABOR command during a data transfer. CWE-399
 Resource Management Errors 		CVE-2008-7265 2024-11-21 09:58 2010-11-10 Show GitHub Exploit DB Packet Storm
312293 - g.rodola pyftpdlib The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows remote authenticated users to cause a denial of service (file descriptor exhaustion and daemon outage) by sending a QUIT command… CWE-20
 Improper Input Validation  		CVE-2008-7264 2024-11-21 09:58 2010-10-20 Show GitHub Exploit DB Packet Storm
312294 - g.rodola pyftpdlib ftpserver.py in pyftpdlib before 0.5.0 does not delay its response after receiving an invalid login attempt, which makes it easier for remote attackers to obtain access via a brute-force attack. CWE-287
Improper Authentication 		CVE-2008-7263 2024-11-21 09:58 2010-10-20 Show GitHub Exploit DB Packet Storm
312295 - g.rodola pyftpdlib Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.3.0 allow remote authenticated users to access arbitrary files and directories via vectors involving a symlink in a … CWE-22
Path Traversal 		CVE-2008-7262 2024-11-21 09:58 2010-10-20 Show GitHub Exploit DB Packet Storm
312296 - ibm filenet_p8_application_engine The Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 before 3.5.1-010 records DEBUG messages containing user credentials in the log4j.xml file, which might allow local u… CWE-255
Credentials Management 		CVE-2008-7261 2024-11-21 09:58 2010-09-21 Show GitHub Exploit DB Packet Storm
312297 - anibal_monsalve_salaz ssmtp The standardise function in Anibal Monsalve Salazar sSMTP 2.61 and 2.62 allows local users to cause a denial of service (application exit) via an e-mail message containing a long line that begins wit… CWE-20
 Improper Input Validation  		CVE-2008-7258 2024-11-21 09:58 2010-08-21 Show GitHub Exploit DB Packet Storm
312298 - cisco asa_5580 CRLF injection vulnerability in +webvpn+/index.html in WebVPN on Cisco Adaptive Security Appliances (ASA) 5580 series devices with software before 8.1(2) allows remote attackers to inject arbitrary H… CWE-20
 Improper Input Validation  		CVE-2008-7257 2024-11-21 09:58 2010-06-30 Show GitHub Exploit DB Packet Storm
312299 6.5 MEDIUM
Network 		redhat jboss_operations_network In JON 2.1.x before 2.1.2 SP1, users can obtain unauthorized security information about private resources managed by JBoss ON. CWE-200
Information Exposure 		CVE-2008-5083 2024-11-21 09:53 2019-11-8 Show GitHub Exploit DB Packet Storm
312300 - symantec workspace_streaming
appstream 		Symantec AppStream 5.2.x and Symantec Workspace Streaming (SWS) 6.1.x before 6.1 SP4 do not properly perform authentication, which allows remote Workspace Streaming servers and man-in-the-middle atta… CWE-287
Improper Authentication 		CVE-2008-4389 2024-11-21 09:51 2010-06-18 Show GitHub Exploit DB Packet Storm