Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5261	6.7	警告 Local	OpenClaw	OpenClaw	OpenClawにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-41360	2026-05-7 12:05	2026-04-23	Show	GitHub Exploit DB Packet Storm

5262	6.1	警告 Local	OpenClaw	OpenClaw	OpenClawにおける制御されていない検索パスの要素に関する脆弱性	CWE-427 制御されていない検索パスの要素	CVE-2026-41373	2026-05-7 12:05	2026-04-28	Show	GitHub Exploit DB Packet Storm

5263	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41375	2026-05-7 12:05	2026-04-28	Show	GitHub Exploit DB Packet Storm

5264	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおける同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-41376	2026-05-7 12:05	2026-04-28	Show	GitHub Exploit DB Packet Storm

5265	4.6	警告 Network	OpenClaw	OpenClaw	OpenClawにおける安全でない失敗処理に関する脆弱性	CWE-636 安全でない失敗処理	CVE-2026-41377	2026-05-7 12:04	2026-04-28	Show	GitHub Exploit DB Packet Storm

5266	8.8	重要 Network	OpenClaw	OpenClaw	OpenClawにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-41378	2026-05-7 12:04	2026-04-28	Show	GitHub Exploit DB Packet Storm

5267	7.1	重要 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41379	2026-05-7 12:04	2026-04-28	Show	GitHub Exploit DB Packet Storm

5268	7.3	重要 Local	OpenClaw	OpenClaw	OpenClawにおけるセキュリティ決定の信頼できない入力への依存に関する脆弱性	CWE-807 セキュリティ決定の信頼できない入力への依存	CVE-2026-41380	2026-05-7 12:04	2026-04-28	Show	GitHub Exploit DB Packet Storm

5269	5.4	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41381	2026-05-7 12:04	2026-04-28	Show	GitHub Exploit DB Packet Storm

5270	5.4	警告 Network	OpenClaw	OpenClaw	OpenClawにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-41382	2026-05-7 12:04	2026-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1	8.1	HIGH Network	zoom	meeting_software_development_kit workplace	Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privi… New	CWE-939 Improper Authorization in Handler for Custom URL Scheme	CVE-2026-53408	2026-06-17 03:59	2026-06-13	Show	GitHub Exploit DB Packet Storm

2	7.2	HIGH Network	mariadb	mariadb	MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.27, 10.11.1 to before 10.11.18, 11.4.1 to before 11.4.12, 11.8.1 to before 11.8.8, and 12.3.1, a high… Update	CWE-78 OS Command	CVE-2026-48165	2026-06-17 03:58	2026-06-13	Show	GitHub Exploit DB Packet Storm

3	6.1	MEDIUM Local	docker mobyproject	engine moby moby\/v2	Moby is an open source container framework. In Docker Engine prior to version 29.5.1, Docker Daemon versions 28.5.2 and prior, and Moby Daemon prior to version 2.0.0-beta.14, a race condition during … New	CWE-81 CWE-367 Improper Neutralization of Script in an Error Message Web Page Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-41568	2026-06-17 03:31	2026-06-13	Show	GitHub Exploit DB Packet Storm

4	7.2	HIGH Local	docker mobyproject	engine moby moby\/v2	Moby is an open source container framework. In Docker Engine prior to version 29.5.1, Docker Daemon versions 28.5.2 and prior, and Moby Daemon prior to version 2.0.0-beta.14, a race condition during … New	CWE-61 CWE-367 UNIX Symbolic Link (Symlink) Following Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-42306	2026-06-17 03:31	2026-06-13	Show	GitHub Exploit DB Packet Storm

5	5.5	MEDIUM Local	amd	uprof	Unrestricted resource allocation in AMD uProf may be exploitable to consume excessive system resources, potentially leading to a loss of availability. Update	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-28237	2026-06-17 03:08	2026-06-10	Show	GitHub Exploit DB Packet Storm

6	5.5	MEDIUM Local	amd	uprof	Improper access control in AMD uProf may allow a local attacker with user privileges to write to the kernel-shared memory section, potentially resulting in crash or denial of service. Update	CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere	CVE-2026-0466	2026-06-17 03:05	2026-06-10	Show	GitHub Exploit DB Packet Storm

7	5.5	MEDIUM Local	gpac	gpac	A heap use-after-free in the gf_node_get_tag function (scenegraph/base_scenegraph.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file. New	CWE-416 Use After Free	CVE-2025-55650	2026-06-17 02:39	2026-06-16	Show	GitHub Exploit DB Packet Storm

8	5.5	MEDIUM Local	gpac	gpac	A NULL pointer dereference in the gf_media_map_esd function (media_tools/isom_tools.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file. New	CWE-476 NULL Pointer Dereference	CVE-2025-55649	2026-06-17 02:39	2026-06-16	Show	GitHub Exploit DB Packet Storm

9	5.5	MEDIUM Local	gpac	gpac	A heap buffer overflow in the gf_opus_parse_packet_header function (media_tools/av_parsers.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file. New	CWE-122 Heap-based Buffer Overflow	CVE-2025-55648	2026-06-17 02:39	2026-06-16	Show	GitHub Exploit DB Packet Storm

10	5.5	MEDIUM Local	gpac	gpac	An Out-of-Memory in the mp4_mux_cenc_insert_pssh function (filters/mux_isom.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file. New	CWE-190 Integer Overflow or Wraparound	CVE-2025-55647	2026-06-17 02:38	2026-06-16	Show	GitHub Exploit DB Packet Storm