Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5361 5.3 警告
Network 		HCL Technologies Limited HCL BigFix Service Management (SM) HCL Technologies LimitedのHCL BigFix Service Management (SM)におけるエラーメッセージによる情報漏えいに関する脆弱性 CWE-209
エラーメッセージによる情報漏えい 		CVE-2025-31960 2026-05-11 11:02 2026-05-6 Show GitHub Exploit DB Packet Storm
5362 5.3 警告
Network 		HCL Technologies Limited HCL BigFix Service Management (SM) HCL Technologies LimitedのHCL BigFix Service Management (SM)における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2025-31975 2026-05-11 11:02 2026-05-6 Show GitHub Exploit DB Packet Storm
5363 5.4 警告
Network 		HCL Technologies Limited HCL BigFix Service Management (SM) HCL Technologies LimitedのHCL BigFix Service Management (SM)における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2025-31984 2026-05-11 11:02 2026-05-6 Show GitHub Exploit DB Packet Storm
5364 7.2 重要
Network 		デル data domain operating system デルのdata domain operating systemにおけるセッションの固定化の脆弱性 CWE-384
セッションの固定化 		CVE-2025-46605 2026-05-11 11:02 2026-04-17 Show GitHub Exploit DB Packet Storm
5365 7.2 重要
Network 		デル data domain operating system デルのdata domain operating systemにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2025-46606 2026-05-11 11:01 2026-04-17 Show GitHub Exploit DB Packet Storm
5366 8.8 重要
Network 		HCL Technologies Limited HCL BigFix Service Management (SM) HCL Technologies LimitedのHCL BigFix Service Management (SM)における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2025-52613 2026-05-11 11:01 2026-05-6 Show GitHub Exploit DB Packet Storm
5367 9.8 緊急
Network 		Palo Alto Networks PAN-OS Palo Alto NetworksのPAN-OSにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-0300 2026-05-11 11:01 2026-05-6 Show GitHub Exploit DB Packet Storm
5368 3.3
Local 		HCL Technologies Limited sametime HCL Technologies Limitedのsametimeにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-21791 2026-05-11 11:01 2026-03-10 Show GitHub Exploit DB Packet Storm
5369 7.5 重要
Network 		マイクロソフト Microsoft .NET Framework .NET Framework のサービス拒否の脆弱性 CWE-755
例外的な状態における不適切な処理 		CVE-2026-23666 2026-05-11 11:01 2026-04-14 Show GitHub Exploit DB Packet Storm
5370 5.1 警告
Local 		The GIFLIB project giflib The GIFLIB projectのgiflibにおける二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2026-23868 2026-05-11 11:01 2026-03-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314401 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() I got a syzbot report without a repro [1] crashing in nf_send_… NVD-CWE-noinfo
CVE-2024-50256 2024-11-15 03:11 2024-11-9 Show GitHub Exploit DB Packet Storm
314402 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs Fix __hci_cmd_sync_sk() to return not NULL for unknown opcodes. … CWE-476
 NULL Pointer Dereference 		CVE-2024-50255 2024-11-15 03:10 2024-11-9 Show GitHub Exploit DB Packet Storm
314403 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: bpf: Free dynamically allocated bits in bpf_iter_bits_destroy() bpf_iter_bits_destroy() uses "kit->nr_bits <= 64" to check whethe… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2024-50254 2024-11-15 03:09 2024-11-9 Show GitHub Exploit DB Packet Storm
314404 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: bpf: Check the validity of nr_words in bpf_iter_bits_new() Check the validity of nr_words in bpf_iter_bits_new(). Without this ch… NVD-CWE-noinfo
CVE-2024-50253 2024-11-15 03:09 2024-11-9 Show GitHub Exploit DB Packet Storm
314405 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_ipip: Fix memory leak when changing remote IPv6 address The device stores IPv6 addresses that are used for encaps… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2024-50252 2024-11-15 03:08 2024-11-9 Show GitHub Exploit DB Packet Storm
314406 5.3 MEDIUM
Network 		sap s\/4_hana Fields which are in 'read only' state in Bank Statement Draft in Manage Bank Statements application, could be modified by MERGE method. The property of an OData entity representing assumably immutabl… CWE-650
 Trusting HTTP Permission Methods on the Server Side 		CVE-2024-45282 2024-11-15 02:56 2024-10-8 Show GitHub Exploit DB Packet Storm
314407 4.3 MEDIUM
Network 		sap hana-client The SAP HANA Node.js client package versions from 2.0.0 before 2.21.31 is impacted by Prototype Pollution vulnerability allowing an attacker to add arbitrary properties to global object prototypes. T… CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2024-45277 2024-11-15 02:54 2024-10-8 Show GitHub Exploit DB Packet Storm
314408 6.5 MEDIUM
Network 		sap businessobjects_business_intelligence SAP BusinessObjects Business Intelligence Platform allows an authenticated user to send a specially crafted request to the Web Intelligence Reporting Server to download any file from the machine host… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-37179 2024-11-15 02:35 2024-10-8 Show GitHub Exploit DB Packet Storm
314409 5.4 MEDIUM
Network 		sap commerce_backoffice SAP Commerce Backoffice does not sufficiently encode user controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. After successful exploitation, an attacker can cause limited impact… CWE-79
Cross-site Scripting 		CVE-2024-45278 2024-11-15 02:17 2024-10-8 Show GitHub Exploit DB Packet Storm
314410 4.8 MEDIUM
Network 		mattermost mattermost_server Mattermost versions 9.11.x <= 9.11.2, and 9.5.x <= 9.5.10 fail to protect the mfa code against replay attacks, which allows an attacker to reuse the MFA code within ~30 seconds CWE-294
Authentication Bypass by Capture-replay  		CVE-2024-36250 2024-11-15 02:11 2024-11-10 Show GitHub Exploit DB Packet Storm