Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4191	7.2	重要 Network	アルバネットワークス株式会社	SD-WAN ArubaOS	アルバネットワークス株式会社のArubaOS等の複数製品におけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-44872	2026-05-15 10:54	2026-05-12	Show	GitHub Exploit DB Packet Storm

4192	5.5	警告 Local	ubuntu	libefiboot	ubuntuのlibefibootにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-6862	2026-05-15 10:54	2026-04-22	Show	GitHub Exploit DB Packet Storm

4193	9.6	緊急 Network	Ivanti	Xtraction	IvantiのXtractionにおけるファイル名やパス名の外部制御に関する脆弱性	CWE-73 ファイル名やパス名の外部制御	CVE-2026-8043	2026-05-15 10:54	2026-05-12	Show	GitHub Exploit DB Packet Storm

4194	7.5	重要 Network	pillarjs	multiparty	pillarjsのmultipartyにおける非効率的な正規表現の複雑さに関する脆弱性	CWE-1333 非効率的な正規表現の複雑さ	CVE-2026-8159	2026-05-15 10:54	2026-05-12	Show	GitHub Exploit DB Packet Storm

4195	7.5	重要 Network	pillarjs	multiparty	pillarjsのmultipartyにおける複数の脆弱性	CWE-1321 CWE-248	CVE-2026-8161	2026-05-15 10:53	2026-05-12	Show	GitHub Exploit DB Packet Storm

4196	7.5	重要 Network	pillarjs	multiparty	pillarjsのmultipartyにおける例外的な状態の処理に関する脆弱性	CWE-755 例外的な状態における不適切な処理	CVE-2026-8162	2026-05-15 10:53	2026-05-12	Show	GitHub Exploit DB Packet Storm

4197	5.3	警告 Network	Leon Timmermans	Crypt::Argon2	Leon TimmermansのCrypt::Argon2における複数の脆弱性	CWE-126 CWE-191	CVE-2026-8463	2026-05-15 10:53	2026-05-13	Show	GitHub Exploit DB Packet Storm

4198	7.2	重要 Network	IBM	IBM Security Verify Directory	IBMのIBM Security Verify Directoryにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2025-36074	2026-05-15 10:53	2026-04-23	Show	GitHub Exploit DB Packet Storm

4199	8.8	重要 Local		-	アップルのmacOSにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2025-43524	2026-05-15 10:53	2026-05-12	Show	GitHub Exploit DB Packet Storm

4200	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2025-71287	2026-05-15 10:53	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312591	5.5	MEDIUM Local	linux vmware canonical suse	linux_kernel esx ubuntu_linux suse_linux_enterprise_server suse_linux_enterprise_desktop linux_enterprise_high_availability_extension	The mext_check_arguments function in fs/ext4/move_extent.c in the Linux kernel before 2.6.35 allows local users to overwrite an append-only file via a MOVE_EXT ioctl call that specifies this file as …	NVD-CWE-noinfo	CVE-2010-2066	2024-11-21 10:15	2010-09-9	Show	GitHub Exploit DB Packet Storm

312592	-		apple	quicktime	The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple QuickTime 6.x, 7.x before 7.6.8, and other versions allows remote attackers to execute arbitrary code via the _Marshaled_pUnk attribut…	CWE-824 Access of Uninitialized Pointer	CVE-2010-1818	2024-11-21 10:15	2010-09-1	Show	GitHub Exploit DB Packet Storm

312593	-		apple	apple_type_services mac_os_x mac_os_x_server	Stack-based buffer overflow in Apple Type Services (ATS) in Apple Mac OS X 10.5.8 and 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a c…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-1808	2024-11-21 10:15	2010-08-26	Show	GitHub Exploit DB Packet Storm

312594	-		apple	libsecurity mac_os_x mac_os_x_server	libsecurity in Apple Mac OS X 10.5.8 and 10.6.4 does not properly perform comparisons to domain-name strings in X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a…	CWE-287 Improper Authentication	CVE-2010-1802	2024-11-21 10:15	2010-08-26	Show	GitHub Exploit DB Packet Storm

312595	-		apple	coregraphics mac_os_x mac_os_x_server	Heap-based buffer overflow in CoreGraphics in Apple Mac OS X 10.5.8 and 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF fil…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-1801	2024-11-21 10:15	2010-08-26	Show	GitHub Exploit DB Packet Storm

312596	-		apple	cfnetwork mac_os_x mac_os_x_server	CFNetwork in Apple Mac OS X 10.6.3 and 10.6.4 supports anonymous SSL and TLS connections, which allows man-in-the-middle attackers to redirect a connection and obtain sensitive information via crafte…	CWE-200 Information Exposure	CVE-2010-1800	2024-11-21 10:15	2010-08-26	Show	GitHub Exploit DB Packet Storm

312597	-		apple	itunes	Untrusted search path vulnerability in Apple iTunes before 9.1, when running on Windows 7, Vista, and XP, allows local users and possibly remote attackers to gain privileges via a Trojan horse DLL in…	NVD-CWE-Other	CVE-2010-1795	2024-11-21 10:15	2010-08-21	Show	GitHub Exploit DB Packet Storm

312598	-		apple	itunes	Unspecified vulnerability in Apple iTunes before 9.1 allows local users to gain console privileges via vectors related to log files, "insecure file operation," and syncing an iPhone, iPad, or iPod to…	NVD-CWE-noinfo	CVE-2010-1768	2024-11-21 10:15	2010-08-21	Show	GitHub Exploit DB Packet Storm

312599	-		apple	webkit	loader/DocumentThreadableLoader.cpp in the XMLHttpRequest implementation in WebCore in WebKit before r58409 does not properly handle credentials during a cross-origin synchronous request, which has u…	CWE-255 Credentials Management	CVE-2010-1760	2024-11-21 10:15	2010-08-20	Show	GitHub Exploit DB Packet Storm

312600	9.8	CRITICAL Network	apache	cxf	Apache CXF 2.0.x before 2.0.13, 2.1.x before 2.1.10, and 2.2.x before 2.2.9, as used in Apache ServiceMix, Apache Camel, Apache Chemistry, Apache jUDDI, Apache Geronimo, and other products, does not …	CWE-829 Inclusion of Functionality from Untrusted Control Sphere	CVE-2010-2076	2024-11-21 10:15	2010-08-20	Show	GitHub Exploit DB Packet Storm