Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4171	6.5	警告 Adjacent	シスコシステムズ	Cisco Firepower Threat Defense ソフトウェア Adaptive Security Appliance (ASA) Software	シスコシステムズのAdaptive Security Appliance (ASA) Software等の複数製品における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-20023	2026-05-7 11:28	2026-03-4	Show	GitHub Exploit DB Packet Storm

4172	5.7	警告 Adjacent	シスコシステムズ	Cisco Firepower Threat Defense ソフトウェア Adaptive Security Appliance (ASA) Software	シスコシステムズのAdaptive Security Appliance (ASA) Software等の複数製品におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-20024	2026-05-7 11:28	2026-03-4	Show	GitHub Exploit DB Packet Storm

4173	8.6	重要 Network	シスコシステムズ	Adaptive Security Appliance (ASA) Software	シスコシステムズのAdaptive Security Appliance (ASA) Softwareにおける有効なライフタイム後のリソースの解放の欠如に関する脆弱性	CWE-772 有効なライフタイム後のリソースの解放の欠如	CVE-2026-20082	2026-05-7 11:28	2026-03-4	Show	GitHub Exploit DB Packet Storm

4174	5	警告 Network	Cloud Foundry, Inc.	routing release cf-deployment	Cloud Foundry, Inc.のCf-deployment等の複数製品における意図するエンドポイントとの通信チャネルの制限に関する脆弱性	CWE-923 意図するエンドポイントとの通信チャネルの不適切な制限	CVE-2026-22726	2026-05-7 11:28	2026-05-1	Show	GitHub Exploit DB Packet Storm

4175	6.5	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-22740	2026-05-7 11:28	2026-04-29	Show	GitHub Exploit DB Packet Storm

4176	3.1	低 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける重要な情報を含むキャッシュの使用に関する脆弱性	CWE-524 重要な情報を含むキャッシュの使用	CVE-2026-22741	2026-05-7 11:28	2026-04-29	Show	GitHub Exploit DB Packet Storm

4177	5.3	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-22745	2026-05-7 11:28	2026-04-29	Show	GitHub Exploit DB Packet Storm

4178	8.8	重要 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおける二重解放に関する脆弱性	CWE-415 二重解放	CVE-2026-23918	2026-05-7 11:28	2026-05-4	Show	GitHub Exploit DB Packet Storm

4179	8.8	重要 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-24072	2026-05-7 11:28	2026-05-4	Show	GitHub Exploit DB Packet Storm

4180	9.8	緊急 Network	NVIDIA	nvflare	NVIDIAのnvflareにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-24178	2026-05-7 11:28	2026-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314421	6.1	MEDIUM Network	jetbrains	youtrack	In JetBrains YouTrack before 2024.3.47707 reflected XSS was possible in Widget API	CWE-79 Cross-site Scripting	CVE-2024-50575	2024-10-30 02:18	2024-10-28	Show	GitHub Exploit DB Packet Storm

314422	7.5	HIGH Network	informatik.hu-berlin	flair	A vulnerability, which was classified as critical, was found in flairNLP flair 0.14.0. Affected is the function ClusteringModel of the file flair\models\clustering.py of the component Mode File Loade…	CWE-94 Code Injection	CVE-2024-10073	2024-10-30 02:18	2024-10-18	Show	GitHub Exploit DB Packet Storm

314423	5.4	MEDIUM Network	jetbrains	youtrack	In JetBrains YouTrack before 2024.3.47707 improper HTML sanitization could lead to XSS attack via comment tag	CWE-79 Cross-site Scripting	CVE-2024-50581	2024-10-30 02:17	2024-10-28	Show	GitHub Exploit DB Packet Storm

314424	5.4	MEDIUM Network	jetbrains	youtrack	In JetBrains YouTrack before 2024.3.47707 multiple XSS were possible due to insecure markdown parsing and custom rendering rule	CWE-79 Cross-site Scripting	CVE-2024-50580	2024-10-30 02:17	2024-10-28	Show	GitHub Exploit DB Packet Storm

314425	6.1	MEDIUM Network	jetbrains	youtrack	In JetBrains YouTrack before 2024.3.47707 reflected XSS due to insecure link sanitization was possible	CWE-79 Cross-site Scripting	CVE-2024-50579	2024-10-30 02:17	2024-10-28	Show	GitHub Exploit DB Packet Storm

314426	5.4	MEDIUM Network	jetbrains	youtrack	In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via sprint value on agile boards page	CWE-79 Cross-site Scripting	CVE-2024-50578	2024-10-30 02:17	2024-10-28	Show	GitHub Exploit DB Packet Storm

314427	5.4	MEDIUM Network	jetbrains	youtrack	In JetBrains YouTrack before 2024.3.47707 stored XSS was possible due to improper HTML sanitization in markdown elements	CWE-79 Cross-site Scripting	CVE-2024-50582	2024-10-30 02:16	2024-10-28	Show	GitHub Exploit DB Packet Storm

314428	7.5	HIGH Network	jetbrains	youtrack	In JetBrains YouTrack before 2024.3.47707 potential ReDoS exploit was possible via email header parsing in Helpdesk functionality	CWE-1333 Inefficient Regular Expression Complexity	CVE-2024-50574	2024-10-30 02:16	2024-10-28	Show	GitHub Exploit DB Packet Storm

314429	5.4	MEDIUM Network	jetbrains	hub	In JetBrains Hub before 2024.3.47707 improper access control allowed users to generate permanent tokens for unauthorized services	CWE-862 Missing Authorization	CVE-2024-50573	2024-10-30 02:12	2024-10-28	Show	GitHub Exploit DB Packet Storm

314430	5.4	MEDIUM Network	tiandiyoyo	flat_ui_button	The Flat UI Button plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's flatbtn shortcode in version 1.0 due to insufficient input sanitization and output escaping on us…	CWE-79 Cross-site Scripting	CVE-2024-10014	2024-10-30 01:58	2024-10-18	Show	GitHub Exploit DB Packet Storm