Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3301 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける整数アンダーフローの脆弱性 CWE-191
整数アンダーフロー 		CVE-2026-43171 2026-05-15 10:58 2026-05-6 Show GitHub Exploit DB Packet Storm
3302 8.8 重要
Adjacent 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-43172 2026-05-15 10:58 2026-05-6 Show GitHub Exploit DB Packet Storm
3303 6.2 警告
Local 		アップル tvOS
iOS
iPadOS 		アップルのiPadOS等の複数製品におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-43653 2026-05-15 10:58 2026-05-11 Show GitHub Exploit DB Packet Storm
3304 7.3 重要
Network 		アップル tvOS
iOS
iPadOS
watchOS 		アップルのiPadOS等の複数製品における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-43655 2026-05-15 10:58 2026-05-11 Show GitHub Exploit DB Packet Storm
3305 7.3 重要
Network 		アップル iOS
iPadOS 		アップルのiPadOS等の複数製品における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-43656 2026-05-15 10:58 2026-05-11 Show GitHub Exploit DB Packet Storm
3306 7.5 重要
Network 		アップル tvOS
iOS
watchOS
visionos
iPadOS 		アップルのiPadOS等の複数製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-43658 2026-05-15 10:58 2026-05-11 Show GitHub Exploit DB Packet Storm
3307 6.2 警告
Local 		アップル tvOS
iOS
watchOS
visionos
iPadOS 		アップルのiPadOS等の複数製品における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-43666 2026-05-15 10:58 2026-05-11 Show GitHub Exploit DB Packet Storm
3308 7.5 重要
Network 		アップル tvOS
iOS
watchOS
visionos
iPadOS 		アップルのiPadOS等の複数製品における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-43668 2026-05-15 10:58 2026-05-11 Show GitHub Exploit DB Packet Storm
3309 5.5 警告
Local 		jqlang jq jqlangのjqにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-43894 2026-05-15 10:58 2026-05-11 Show GitHub Exploit DB Packet Storm
3310 4.4 警告
Local 		jqlang jq jqlangのjqにおける複数の脆弱性 CWE-158
CWE-20
CVE-2026-43895 2026-05-15 10:58 2026-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
318201 8.0 HIGH
Network 		ibm aspera_console IBM Aspera Console 3.4.0 through 3.4.4 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a CSV injection vulnerability. By persuading a victim to open a s… CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2021-38963 2024-10-1 00:48 2024-09-25 Show GitHub Exploit DB Packet Storm
318202 6.8 MEDIUM
Physics 		sony xav-ax5500_firmware Sony XAV-AX5500 USB Configuration Descriptor Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installa… CWE-120
Classic Buffer Overflow 		CVE-2024-23972 2024-10-1 00:37 2024-09-24 Show GitHub Exploit DB Packet Storm
318203 6.8 MEDIUM
Physics 		sony xav-ax5500_firmware Sony XAV-AX5500 Insufficient Firmware Update Validation Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2024-23922 2024-10-1 00:37 2024-09-24 Show GitHub Exploit DB Packet Storm
318204 8.8 HIGH
Network 		checkmk checkmk Bypass of two factor authentication in RestAPI in Checkmk < 2.3.0p16 and < 2.2.0p34 allows authenticated users to bypass two factor authentication CWE-863
 Incorrect Authorization 		CVE-2024-8606 2024-10-1 00:32 2024-09-23 Show GitHub Exploit DB Packet Storm
318205 9.8 CRITICAL
Network 		riello-ups netman_204_firmware Improper neutralization of special elements results in a SQL Injection vulnerability in Riello Netman 204. It is only limited to the SQLite database of measurement data.This issue affects Netman 204:… CWE-89
SQL Injection 		CVE-2024-8877 2024-10-1 00:31 2024-09-25 Show GitHub Exploit DB Packet Storm
318206 5.4 MEDIUM
Network 		stirlingpdf stirling_pdf A vulnerability was found in Stirling-Tools Stirling-PDF up to 0.28.3. It has been declared as problematic. This vulnerability affects unknown code of the component Markdown-to-PDF. The manipulation … CWE-79
Cross-site Scripting 		CVE-2024-9075 2024-10-1 00:27 2024-09-22 Show GitHub Exploit DB Packet Storm
318207 9.8 CRITICAL
Network 		riello-ups netman_204_firmware The password recovery mechanism for the forgotten password in Riello Netman 204 allows an attacker to reset the admin password and take over control of the device.This issue affects Netman 204: throu… CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2024-8878 2024-10-1 00:21 2024-09-25 Show GitHub Exploit DB Packet Storm
318208 4.6 MEDIUM
Physics 		proges sensor_net_connect_firmware_v2 A “CWE-256: Plaintext Storage of a Password” affecting the administrative account allows an attacker with physical access to the machine to retrieve the password in cleartext unless specific security… CWE-522
 Insufficiently Protected Credentials 		CVE-2024-3082 2024-10-1 00:15 2024-07-31 Show GitHub Exploit DB Packet Storm
318209 5.5 MEDIUM
Local 		proges thermoscan_ip A “CWE-121: Stack-based Buffer Overflow” in the wd210std.dll dynamic library packaged with the ThermoscanIP installer allows a local attacker to possibly trigger a Denial-of-Service (DoS) condition o… CWE-787
 Out-of-bounds Write 		CVE-2024-31203 2024-10-1 00:15 2024-07-31 Show GitHub Exploit DB Packet Storm
318210 7.8 HIGH
Local 		proges thermoscan_ip A “CWE-732: Incorrect Permission Assignment for Critical Resource” in the ThermoscanIP installation folder allows a local attacker to perform a Local Privilege Escalation. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2024-31202 2024-10-1 00:15 2024-07-31 Show GitHub Exploit DB Packet Storm