Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5331 8.8 重要
Network 		langflow Langflow Desktop langflowのLangflow Desktopにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-6543 2026-05-13 10:26 2026-04-30 Show GitHub Exploit DB Packet Storm
5332 7.8 重要
Local 		ウォッチガード・テクノロジー WatchGuard Agent ウォッチガード・テクノロジーのWatchGuard Agentにおけるハードコードされた暗号鍵の使用に関する脆弱性 CWE-321
ハードコードされた暗号鍵の使用 		CVE-2026-6787 2026-05-13 10:26 2026-05-6 Show GitHub Exploit DB Packet Storm
5333 7.8 重要
Local 		ウォッチガード・テクノロジー WatchGuard Agent ウォッチガード・テクノロジーのWatchGuard Agentにおける制御されていない検索パスの要素に関する脆弱性 CWE-427
制御されていない検索パスの要素 		CVE-2026-6788 2026-05-13 10:26 2026-05-6 Show GitHub Exploit DB Packet Storm
5334 7.5 重要
Network 		Thales Group Ercom Cryptobox Thales GroupのErcom Cryptoboxにおける不十分なパーミッションまたは特権の不適切な処理に関する脆弱性 CWE-280
CWE-noinfo
CVE-2026-6805 2026-05-13 10:26 2026-05-7 Show GitHub Exploit DB Packet Storm
5335 6.5 警告
Network 		Apache Software Foundation CloudStack Apache Software FoundationのCloudStackにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2025-66170 2026-05-13 10:26 2026-05-8 Show GitHub Exploit DB Packet Storm
5336 7.5 重要
Network 		Google Android GoogleのAndroidにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-71251 2026-05-13 10:26 2026-05-6 Show GitHub Exploit DB Packet Storm
5337 7.5 重要
Network 		Google Android GoogleのAndroidにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-71252 2026-05-13 10:26 2026-05-6 Show GitHub Exploit DB Packet Storm
5338 6.5 警告
Network 		Vsevolod Stakhov libucl API Vsevolod Stakhovのlibucl APIにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-0708 2026-05-13 10:26 2026-03-17 Show GitHub Exploit DB Packet Storm
5339 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-31765 2026-05-13 10:26 2026-05-1 Show GitHub Exploit DB Packet Storm
5340 7.1 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-31766 2026-05-13 10:25 2026-05-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314021 - - - wac commit 385e1 was discovered to contain a heap overflow. - CVE-2024-35420 2024-11-19 00:35 2024-11-9 Show GitHub Exploit DB Packet Storm
314022 - - - wac commit 385e1 was discovered to contain a heap overflow via the setup_call function at /wac-asan/wa.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted wasm fil… - CVE-2024-35418 2024-11-19 00:35 2024-11-9 Show GitHub Exploit DB Packet Storm
314023 - - - wac commit 385e1 was discovered to contain a heap overflow via the interpret function at /wac-asan/wa.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted wasm file. - CVE-2024-35410 2024-11-19 00:35 2024-11-9 Show GitHub Exploit DB Packet Storm
314024 - - - wasm3 139076a contains a Use-After-Free in ForEachModule. - CVE-2024-27530 2024-11-19 00:35 2024-11-9 Show GitHub Exploit DB Packet Storm
314025 - - - wasm3 139076a contains memory leaks in Read_utf8. - CVE-2024-27529 2024-11-19 00:35 2024-11-9 Show GitHub Exploit DB Packet Storm
314026 - - - wasm3 139076a suffers from Invalid Memory Read, leading to DoS and potential Code Execution. - CVE-2024-27528 2024-11-19 00:35 2024-11-9 Show GitHub Exploit DB Packet Storm
314027 - - - 07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component http://erp.07fly.net:80/oa/OaSchedule/add.html. - CVE-2024-51157 2024-11-19 00:35 2024-11-9 Show GitHub Exploit DB Packet Storm
314028 7.8 HIGH
Local 		ivanti secure_access_client Insufficient validation in Ivanti Secure Access Client before 22.7R4 allows a local authenticated attacker to escalate their privileges. NVD-CWE-noinfo
CVE-2024-37398 2024-11-19 00:23 2024-11-13 Show GitHub Exploit DB Packet Storm
314029 4.9 MEDIUM
Network 		ivanti connect_secure
policy_secure 		A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.2 allows a remote authenticated attacker with admin privileges to cause a… CWE-787
 Out-of-bounds Write 		CVE-2024-47909 2024-11-19 00:09 2024-11-13 Show GitHub Exploit DB Packet Storm
314030 7.5 HIGH
Network 		ivanti connect_secure A stack-based buffer overflow in IPsec of Ivanti Connect Secure before version 22.7R2.3 allows a remote unauthenticated attacker to cause a denial of service. CWE-787
 Out-of-bounds Write 		CVE-2024-47907 2024-11-19 00:09 2024-11-13 Show GitHub Exploit DB Packet Storm