Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 19, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 4931 | 7 |
重要
Local |
sandboxie-plus | Sandboxie | sandboxie-plusのSandboxieにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 |
CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 |
CVE-2026-34596 | 2026-05-11 10:58 | 2026-05-5 | Show | GitHub Exploit DB Packet Storm |
| 4932 | 6.5 |
警告
Network |
Django Software Foundation | Django | Django Software FoundationのDjangoにおける重要情報を含む永続 Cookie の使用に関する脆弱性 |
CWE-539
重要情報を含む永続 Cookie の使用 |
CVE-2026-35192 | 2026-05-11 10:58 | 2026-05-5 | Show | GitHub Exploit DB Packet Storm |
| 4933 | 5 |
警告
Network |
Linux Containers | Incus | Linux ContainersのIncusにおけるサーバサイドのリクエストフォージェリの脆弱性 |
CWE-918
サーバサイドリクエストフォージェリ |
CVE-2026-35527 | 2026-05-11 10:58 | 2026-05-5 | Show | GitHub Exploit DB Packet Storm |
| 4934 | 4.8 |
警告
Network |
Broadcom | symantec siteminder | Broadcomのsymantec siteminderにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-3862 | 2026-05-11 10:58 | 2026-03-10 | Show | GitHub Exploit DB Packet Storm |
| 4935 | 2.7 |
低
Network |
レッドハット | build of keycloak | レッドハットのbuild of keycloakにおける認可されていない行為者への個人情報の漏えいに関する脆弱性 |
CWE-359 CWE-noinfo |
CVE-2026-3911 | 2026-05-11 10:58 | 2026-03-11 | Show | GitHub Exploit DB Packet Storm |
| 4936 | 6.5 |
警告
Network |
Linux Containers | Incus | Linux ContainersのIncusにおけるNULL ポインタデリファレンスに関する脆弱性 |
CWE-476
NULL ポインタデリファレンス |
CVE-2026-40195 | 2026-05-11 10:58 | 2026-05-6 | Show | GitHub Exploit DB Packet Storm |
| 4937 | 6.5 |
警告
Network |
Linux Containers | Incus | Linux ContainersのIncusにおけるNULL ポインタデリファレンスに関する脆弱性 |
CWE-476
NULL ポインタデリファレンス |
CVE-2026-40197 | 2026-05-11 10:58 | 2026-05-6 | Show | GitHub Exploit DB Packet Storm |
| 4938 | 6.5 |
警告
Network |
Linux Containers | Incus | Linux ContainersのIncusにおける配列インデックスの検証に関する脆弱性 |
CWE-129
配列インデックスの不適切な検証 |
CVE-2026-40251 | 2026-05-11 10:58 | 2026-05-6 | Show | GitHub Exploit DB Packet Storm |
| 4939 | 7.2 |
重要
Network |
NocoBase | NocoBase | NocoBaseにおける複数の脆弱性 |
CWE-284 CWE-89 |
CVE-2026-41641 | 2026-05-11 10:58 | 2026-05-7 | Show | GitHub Exploit DB Packet Storm |
| 4940 | 7.5 |
重要
Network |
osrg | GoBGP | osrgのGoBGPにおけるNULL ポインタデリファレンスに関する脆弱性 |
CWE-476
NULL ポインタデリファレンス |
CVE-2026-41642 | 2026-05-11 10:58 | 2026-05-7 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 19, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 349061 | - | secure_elements | class_5_enterprise_vulnerability_management | Secure Elements Class 5 AVR client (aka C5 EVM) before 2.8.1 allows remote attackers to read portions of process memory via a modified size for (1) EM_GET_CE_PARAMETER and (2) EM_SET_CE_PARAMETER mes… |
NVD-CWE-Other
|
CVE-2006-2708 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349062 | - | secure_elements | class_5_enterprise_vulnerability_management | Upgrade to version 2.8.1 |
NVD-CWE-Other
|
CVE-2006-2708 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349063 | - | secure_elements | class_5_enterprise_vulnerability_management | Secure Elements Class 5 AVR (aka C5 EVM) before 2.8.1 do not validate the source address of a message, which allows remote attackers to (1) execute arbitrary code on a client or (2) forge messages to… |
NVD-CWE-Other
|
CVE-2006-2709 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349064 | - | secure_elements | class_5_enterprise_vulnerability_management | Upgrade to version 2.8.1 |
NVD-CWE-Other
|
CVE-2006-2709 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349065 | - | secure_elements | class_5_enterprise_vulnerability_management | Secure Elements Class 5 AVR (aka C5 EVM) before 2.8.1 uses the same invariant RSA key for all installations, which allows remote attackers with the key to decrypt communications. |
NVD-CWE-Other
|
CVE-2006-2710 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349066 | - | secure_elements | class_5_enterprise_vulnerability_management | Upgrade to 2.8.1 |
NVD-CWE-Other
|
CVE-2006-2710 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349067 | - | secure_elements | class_5_enterprise_vulnerability_management | Secure Elements Class 5 AVR (aka C5 EVM) 2.8.1 and earlier, and possibly later 2.8.x releases, uses the same initialization vector and key for each message session, which allows remote attackers to o… |
NVD-CWE-Other
|
CVE-2006-2711 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349068 | - | secure_elements | class_5_enterprise_vulnerability_management | Upgrade to 2.8.1 |
NVD-CWE-Other
|
CVE-2006-2711 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349069 | - | secure_elements | class_5_enterprise_vulnerability_management | Secure Elements Class 5 AVR (aka C5 EVM) client and server before 2.8.1 do not verify the integrity of a message digest, which allows remote attackers to modify and replay messages. |
NVD-CWE-Other
|
CVE-2006-2712 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm | |
| 349070 | - | secure_elements | class_5_enterprise_vulnerability_management | Upgrade to version 2.8.1 |
NVD-CWE-Other
|
CVE-2006-2712 | 2017-07-20 10:31 | 2006-06-1 | Show | GitHub Exploit DB Packet Storm |