Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
531 5 警告 BB4 Big Brother BB4のBig Brotherにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-1999-1462 2026-06-23 11:22 1999-12-31 Show GitHub Exploit DB Packet Storm
532 7.2 危険 digital unix digitalのunixにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1458 2026-06-23 11:22 1999-01-25 Show GitHub Exploit DB Packet Storm
533 5 警告 thttpd thttpd HTTP server thttpdのthttpd HTTP serverにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1456 2026-06-23 11:22 1999-12-31 Show GitHub Exploit DB Packet Storm
534 7.2 危険 BMC Software Patrol Agent BMC SoftwareのPatrol Agentにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1459 2026-06-23 11:22 1998-11-2 Show GitHub Exploit DB Packet Storm
535 4.6 警告 SVGALib SVGALib SVGALibにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1483 2026-06-23 11:22 1997-06-19 Show GitHub Exploit DB Packet Storm
536 7.2 危険 SGI IRIX SGIのIRIXにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1461 2026-06-23 11:22 1997-05-7 Show GitHub Exploit DB Packet Storm
537 2.1 注意 サン・マイクロシステムズ Solaris サン・マイクロシステムズのSolarisにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1449 2026-06-23 11:22 1997-05-19 Show GitHub Exploit DB Packet Storm
538 6.2 警告 サン・マイクロシステムズ Solstice AdminSuite サン・マイクロシステムズのSolstice AdminSuiteにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1428 2026-06-23 11:22 1997-11-10 Show GitHub Exploit DB Packet Storm
539 6.2 警告 サン・マイクロシステムズ Solstice AdminSuite サン・マイクロシステムズのSolstice AdminSuiteにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1427 2026-06-23 11:22 1997-11-10 Show GitHub Exploit DB Packet Storm
540 6.2 警告 サン・マイクロシステムズ Solstice AdminSuite サン・マイクロシステムズのSolstice AdminSuiteにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1426 2026-06-23 11:22 1997-11-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
521 6.1 MEDIUM
Network 		angularjs angularjs Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 21.2.16, 20.3.24, and 19.2.25, a Cross-Site S… New CWE-79
Cross-site Scripting 		CVE-2026-50556 2026-06-27 04:33 2026-06-23 Show GitHub Exploit DB Packet Storm
522 6.1 MEDIUM
Network 		angularjs angularjs Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-next.12, 21.2.13, 20.3.21, and 19.2.22, a Server-Si… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-46417 2026-06-27 04:33 2026-06-23 Show GitHub Exploit DB Packet Storm
523 6.1 MEDIUM
Network 		angularjs angularjs Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 21.2.15, 20.3.22, and 19.2.23, a Denial of Se… New CWE-400
CWE-834
 Uncontrolled Resource Consumption
 Excessive Iteration 		CVE-2026-50171 2026-06-27 04:32 2026-06-23 Show GitHub Exploit DB Packet Storm
524 6.1 MEDIUM
Network 		angularjs angularjs Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc.2, 21.2.15, 20.3.22, and 19.2.23, an issue in th… New CWE-200
CWE-524
Information Exposure
 Use of Cache Containing Sensitive Information 		CVE-2026-50184 2026-06-27 04:31 2026-06-23 Show GitHub Exploit DB Packet Storm
525 6.1 MEDIUM
Network 		angularjs angularjs Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1, 21.2.17, and 20.3.25, an information disclosure vu… New CWE-200
CWE-359
Information Exposure
 Exposure of Private Personal Information to an Unauthorized Actor 		CVE-2026-54264 2026-06-27 04:30 2026-06-23 Show GitHub Exploit DB Packet Storm
526 7.1 HIGH
Local 		home-assistant home_assistant_companion Home Assistant is open source home automation software that puts local control and privacy first. Prior to 2026.5.3, the LocationSensorManager BroadcastReceiver is exported with no permission. Any in… New CWE-926
 Improper Export of Android Application Components 		CVE-2026-54318 2026-06-27 04:28 2026-06-24 Show GitHub Exploit DB Packet Storm
527 7.5 HIGH
Network 		aiohttp aiohttp AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, during cleanup it is possible for a compressed request body to be decompressed into memory in one chun… New CWE-409
 Improper Handling of Highly Compressed Data (Data Amplification) 		CVE-2026-54278 2026-06-27 04:27 2026-06-23 Show GitHub Exploit DB Packet Storm
528 7.4 HIGH
Network 		deno deno Deno is a JavaScript, TypeScript, and WebAssembly runtime. Prior to 2.8.1, node:crypto.checkPrime(candidate[, options][, callback]) and crypto.checkPrimeSync(candidate[, options]) ran no Miller-Rabin… New CWE-325
 Missing Required Cryptographic Step 		CVE-2026-49440 2026-06-27 04:27 2026-06-24 Show GitHub Exploit DB Packet Storm
529 8.1 HIGH
Network 		caddyserver caddy Caddy is an extensible server platform that uses TLS by default. Prior to 2.11.4, forward_auth copy_headers deletes the exact client-supplied identity header before copying the trusted value from the… New CWE-287
CWE-290
CWE-444
Improper Authentication
 Authentication Bypass by Spoofing
HTTP Request Smuggling 		CVE-2026-52845 2026-06-27 04:27 2026-06-24 Show GitHub Exploit DB Packet Storm
530 6.5 MEDIUM
Network 		aquasec trivy Trivy is a security scanner. Prior to 0.71.0, when Trivy scans a Helm chart archive (.tgz), its custom tar unpacker reads each entry with io.ReadAll(tr) and no size limit. An attacker who can place a… New CWE-770
CWE-789
 Allocation of Resources Without Limits or Throttling
 Memory Allocation with Excessive Size Value 		CVE-2026-54448 2026-06-27 04:27 2026-06-26 Show GitHub Exploit DB Packet Storm