Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 2:07 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3501 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows 共通ログ ファイル システム ドライバーの特権の昇格の脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-40407 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
3502 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows WAN ARP Driver Elevation of Privilege Vulnerability CWE-416
解放済みメモリの使用 		CVE-2026-40408 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
3503 7 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows SMB クライアントの特権の昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40410 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
3504 9.6 緊急
Network 		TanStack tanstack/react-start-rsc
@tanstack/router-devtools-core
@tanstack/router-utils
@tanstack/react-router-devtools
@tanstack/valibot-adapter
@tanstack/zod-adapter
@tanstack/vue-start-se… 		TanStackの@tanstack/arktype-adapter等の複数製品における埋め込まれた悪意のあるコードに関する脆弱性 CWE-506
埋め込まれた悪意のあるコード 		CVE-2026-45321 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
3505 6.5 警告
Network 		IBM
HCL Technologies Limited		 BigFix WebUI Reports
BigFix WebUI Common
BigFix WebUI API
BigFix WebUI Framework
BigFix WebUI Profile Management
BigFix WebU… 		HCL Technologies LimitedのBigFix WebUI API等の複数製品における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2025-15633 2026-05-18 12:06 2026-05-9 Show GitHub Exploit DB Packet Storm
3506 4.3 警告
Network 		IBM
HCL Technologies Limited		 BigFix WebUI Reports
BigFix WebUI Common
BigFix WebUI API
BigFix WebUI Framework
BigFix WebUI Profile Management
BigFix WebU… 		HCL Technologies LimitedのBigFix WebUI API等の複数製品における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2025-15634 2026-05-18 12:06 2026-05-9 Show GitHub Exploit DB Packet Storm
3507 4.9 警告
Network 		Buffalo Americas, Inc. TeraStation NAS TS5400R Firmware Buffalo Americas, Inc.のTeraStation NAS TS5400R Firmwareにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2026-29516 2026-05-18 12:06 2026-03-16 Show GitHub Exploit DB Packet Storm
3508 6.5 警告
Network 		Mem0 mem0 Mem0のmem0における複数の脆弱性 CWE-306
CWE-862
CVE-2026-31241 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
3509 9.1 緊急
Network 		Mem0 mem0 Mem0のmem0における複数の脆弱性 CWE-306
CWE-862
CVE-2026-31242 2026-05-18 12:06 2026-05-12 Show GitHub Exploit DB Packet Storm
3510 6.5 警告
Network 		Mem0 mem0 Mem0のmem0における複数の脆弱性 CWE-306
CWE-862
CVE-2026-31243 2026-05-18 12:05 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312231 - apple iphone_os Application Sandbox in Apple iOS before 4 on the iPhone and iPod touch does not prevent photo-library access, which might allow remote attackers to obtain location information via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-1751 2024-11-21 10:15 2010-06-23 Show GitHub Exploit DB Packet Storm
312232 - quicksketch filefield Cross-site scripting (XSS) vulnerability in the FileField module 5.x before 5.x-2.5 and 6.x before 6.x-3.4 for Drupal allows remote authenticated users, with create or edit permissions and 'Path to F… CWE-79
Cross-site Scripting 		CVE-2010-1958 2024-11-21 10:15 2010-06-22 Show GitHub Exploit DB Packet Storm
312233 - apache http_server mod_proxy_http.c in mod_proxy_http in the Apache HTTP Server 2.2.9 through 2.2.15, 2.3.4-alpha, and 2.3.5-alpha on Windows, NetWare, and OS/2, in certain configurations involving proxy worker pools, … CWE-200
Information Exposure 		CVE-2010-2068 2024-11-21 10:15 2010-06-19 Show GitHub Exploit DB Packet Storm
312234 - apple itunes WebKit in Apple iTunes before 9.2 on Windows, and Apple iOS before 4 on the iPhone and iPod touch, accesses out-of-bounds memory during the handling of tables, which allows remote attackers to execut… NVD-CWE-noinfo
CVE-2010-1769 2024-11-21 10:15 2010-06-19 Show GitHub Exploit DB Packet Storm
312235 - apple itunes Unspecified vulnerability in WebKit in Apple iTunes before 9.2 on Windows has unknown impact and attack vectors, a different vulnerability than CVE-2010-1387 and CVE-2010-1769. NVD-CWE-noinfo
CVE-2010-1763 2024-11-21 10:15 2010-06-19 Show GitHub Exploit DB Packet Storm
312236 - samba
canonical
debian 		samba
ubuntu_linux
debian_linux 		Buffer overflow in the SMB1 packet chaining implementation in the chain_reply function in process.c in smbd in Samba 3.0.x before 3.3.13 allows remote attackers to cause a denial of service (memory c… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-2063 2024-11-21 10:15 2010-06-18 Show GitHub Exploit DB Packet Storm
312237 - hp openview_network_node_manager Buffer overflow in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unspecified parameters to jovgraph.exe, aka ZDI-CA… NVD-CWE-noinfo
CVE-2010-1964 2024-11-21 10:15 2010-06-18 Show GitHub Exploit DB Packet Storm
312238 - apple cups The cgi_initialize_string function in cgi-bin/var.c in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, does not properly ha… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-1748 2024-11-21 10:15 2010-06-18 Show GitHub Exploit DB Packet Storm
312239 - w3m w3m istream.c in w3m 0.5.2 and possibly other versions, when ssl_verify_server is enabled, does not properly handle a '\0' character in a domain name in the (1) subject's Common Name or (2) Subject Alter… CWE-20
 Improper Input Validation  		CVE-2010-2074 2024-11-21 10:15 2010-06-17 Show GitHub Exploit DB Packet Storm
312240 7.5 HIGH
Network 		debian pyftpd auth_db_config.py in Pyftpd 0.8.4 contains hard-coded usernames and passwords for the (1) test, (2) user, and (3) roxon accounts, which allows remote attackers to read arbitrary files from the FTP se… CWE-798
 Use of Hard-coded Credentials 		CVE-2010-2073 2024-11-21 10:15 2010-06-17 Show GitHub Exploit DB Packet Storm