Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3491 7.8 重要
Local 		アドビシステムズ Adobe Substance 3D Painter アドビのAdobe Substance 3D Painterにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-34675 2026-05-14 10:20 2026-05-12 Show GitHub Exploit DB Packet Storm
3492 7.8 重要
Local 		アドビシステムズ Adobe Substance 3D Painter アドビのAdobe Substance 3D Painterにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-34676 2026-05-14 10:20 2026-05-12 Show GitHub Exploit DB Packet Storm
3493 7.8 重要
Local 		アドビシステムズ Adobe Illustrator アドビのAdobe Illustratorにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-34687 2026-05-14 10:20 2026-05-12 Show GitHub Exploit DB Packet Storm
3494 8.2 重要
Local 		デル insightiq デルのinsightiqにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-35071 2026-05-14 10:20 2026-05-12 Show GitHub Exploit DB Packet Storm
3495 9.8 緊急
Network 		デル Dell ObjectScale
elastic cloud storage 		デルのelastic cloud storage等の複数製品におけるCSV ファイル内の数式要素の中和に関する脆弱性 CWE-1236
CSV ファイル内の数式要素の不適切な中和 		CVE-2026-35157 2026-05-14 10:20 2026-05-11 Show GitHub Exploit DB Packet Storm
3496 5.4 警告
Network 		Frappe Frappe Frappeにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-3673 2026-05-14 10:20 2026-04-22 Show GitHub Exploit DB Packet Storm
3497 9.8 緊急
Network 		Grokability, Inc. Snipe-IT Grokability, Inc.のSnipe-ITにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-37709 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
3498 6.5 警告
Local 		Linux Containers LXC Linux ContainersのLXCにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-39402 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
3499 8.8 重要
Network 		Pi-hole FTLDNS Pi-holeのFTLDNSにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-39849 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
3500 7.5 重要
Network 		- アップルのmacOSにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2026-39871 2026-05-14 10:19 2026-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312611 7.8 HIGH
Local 		microsoft excel
office
365_apps
office_long_term_servicing_channel 		Microsoft Excel Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-49028 2024-11-19 05:34 2024-11-13 Show GitHub Exploit DB Packet Storm
312612 7.8 HIGH
Local 		microsoft office
365_apps
office_long_term_servicing_channel 		Microsoft Office Graphics Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-49032 2024-11-19 05:31 2024-11-13 Show GitHub Exploit DB Packet Storm
312613 7.8 HIGH
Local 		microsoft office
365_apps
office_long_term_servicing_channel 		Microsoft Office Graphics Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-49031 2024-11-19 05:31 2024-11-13 Show GitHub Exploit DB Packet Storm
312614 4.8 MEDIUM
Network 		mayurik hospital_management_system A vulnerability was found in SourceCodester Hospital Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /vm/doctor/edit-doc.php.… CWE-79
Cross-site Scripting 		CVE-2024-11102 2024-11-19 05:00 2024-11-12 Show GitHub Exploit DB Packet Storm
312615 7.8 HIGH
Local 		dell smartfabric_os10 Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with local access could… NVD-CWE-noinfo
CVE-2024-48837 2024-11-19 04:48 2024-11-12 Show GitHub Exploit DB Packet Storm
312616 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Add a check for memory allocation __alloc_pbl() can return error when memory allocation fails. Driver is not checki… NVD-CWE-noinfo
CVE-2024-50209 2024-11-19 04:44 2024-11-8 Show GitHub Exploit DB Packet Storm
312617 - - - SOCIFI Socifi Guest wifi as SAAS is affected by Cross Site Request Forgery (CSRF) via the Socifi wifi portal. The application does not contain a CSRF token and request validation. An attacker can Add… - CVE-2021-27701 2024-11-19 04:35 2024-11-13 Show GitHub Exploit DB Packet Storm
312618 - - - SOCIFI Socifi Guest wifi as SAAS wifi portal is affected by Insecure Permissions. Any authorized customer with partner mode can switch to another customer dashboard and perform actions like modify us… - CVE-2021-27700 2024-11-19 04:35 2024-11-13 Show GitHub Exploit DB Packet Storm
312619 8.8 HIGH
Network 		microsoft sql_server_2016
sql_server_2017
sql_server_2019 		SQL Server Native Client Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-38255 2024-11-19 04:35 2024-11-13 Show GitHub Exploit DB Packet Storm
312620 - - - In Advanced Custom Fields (ACF) before 6.3.9 and Secure Custom Fields before 6.3.6.3 (plugins for WordPress), using the Field Group editor to edit one of the plugin's fields can result in execution o… - CVE-2024-49593 2024-11-19 04:35 2024-10-17 Show GitHub Exploit DB Packet Storm