Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
521	3.3	低 Local	pypdf project	pypdf	pypdf projectのpypdfにおけるアルゴリズムの複雑さに関する脆弱性	CWE-407 アルゴリズムの複雑性	CVE-2026-49460	2026-06-26 11:56	2026-06-22	Show	GitHub Exploit DB Packet Storm

522	5.5	警告 Local	pypdf project	pypdf	pypdf projectのpypdfにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-49461	2026-06-26 11:56	2026-06-22	Show	GitHub Exploit DB Packet Storm

523	9.8	緊急 Network	litellm	litellm	LiteLLMにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2026-49468	2026-06-26 11:56	2026-06-22	Show	GitHub Exploit DB Packet Storm

524	5.4	警告 Network	Eclipse Foundation	Eclipse Open VSX	Eclipse FoundationのEclipse Open VSXにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-4983	2026-06-26 11:56	2026-06-23	Show	GitHub Exploit DB Packet Storm

525	9.3	緊急 Network	Apache Software Foundation	APISIX	Apache Software FoundationのAPISIXにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-49871	2026-06-26 11:56	2026-06-19	Show	GitHub Exploit DB Packet Storm

526	8.1	重要 Network	Apache Software Foundation	APISIX	Apache Software FoundationのAPISIXにおける認証に関する脆弱性	CWE-287 不適切な認証	CVE-2026-49872	2026-06-26 11:56	2026-06-19	Show	GitHub Exploit DB Packet Storm

527	5.4	警告 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc.のMattermost Serverにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-5139	2026-06-26 11:56	2026-06-22	Show	GitHub Exploit DB Packet Storm

528	7.5	重要 Network	VoidZero Inc. vitejs	Vite+ vite	vitejs等の複数ベンダの製品における複数の脆弱性	CWE-200 CWE-22	CVE-2026-53571	2026-06-26 11:56	2026-06-22	Show	GitHub Exploit DB Packet Storm

529	7.5	重要 Network	vLLM	vLLM	vLLMにおける複数の脆弱性	CWE-200 CWE-681	CVE-2026-53923	2026-06-26 11:56	2026-06-22	Show	GitHub Exploit DB Packet Storm

530	4.3	警告 Network	openwebui	open webui	openwebuiのopen webuiにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-54006	2026-06-26 11:56	2026-06-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
551	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: batman-adv: tp_meter: avoid use of uninit sender vars batadv_tp_recv_ack() and batadv_tp_stop() are only valid for tp_vars in the… Update	-	CVE-2026-52931	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

552	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: sctp: stream: fully roll back denied add-stream state When ADD_OUT_STREAMS is denied, SCTP only shrinks the queued chunks and the… Update	-	CVE-2026-52929	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

553	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: ebtables: fix OOB read in compat_mtw_from_user Luxiao Xu says: The function compat_mtw_from_user() converts ebtables… Update	-	CVE-2026-52927	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

554	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO handling sctp_stream_update() is only invoked when the association is moved into COOKIE… Update	-	CVE-2026-52924	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

555	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: ipc: limit next_id allocation to the valid ID range The checkpoint/restore sysctl path can request the next SysV IPC id through i… Update	-	CVE-2026-52923	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

556	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: batman-adv: dat: handle forward allocation error batadv_dat_forward_data() calls pskb_copy_for_clone() to duplicate an skb for ea… Update	-	CVE-2026-52922	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

557	8.3	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_policy: fix strict mode inbound policy matching match_policy_in() walks sec_path entries from the last transform to… Update	-	CVE-2026-52920	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

558	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix tp_meter counter underflow during shutdown batadv_tp_sender_shutdown() unconditionally decrements the "sending" a… Update	-	CVE-2026-52919	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

559	8.8	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: serialize accept_q access bt_sock_poll() walks the accept queue without synchronization, while child teardown can unli… Update	-	CVE-2026-52918	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

560	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: sctp: diag: reject stale associations in dump_one path The SCTP exact sock_diag lookup can hold a transport reference, block on l… Update	-	CVE-2026-52917	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm