Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5411 5.5 警告
Local 		アドビシステムズ Adobe Illustrator アドビのAdobe Illustratorにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-34663 2026-05-14 10:20 2026-05-12 Show GitHub Exploit DB Packet Storm
5412 7.8 重要
Local 		アドビシステムズ Adobe Substance 3D Painter アドビのAdobe Substance 3D Painterにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-34675 2026-05-14 10:20 2026-05-12 Show GitHub Exploit DB Packet Storm
5413 7.8 重要
Local 		アドビシステムズ Adobe Substance 3D Painter アドビのAdobe Substance 3D Painterにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-34676 2026-05-14 10:20 2026-05-12 Show GitHub Exploit DB Packet Storm
5414 7.8 重要
Local 		アドビシステムズ Adobe Illustrator アドビのAdobe Illustratorにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-34687 2026-05-14 10:20 2026-05-12 Show GitHub Exploit DB Packet Storm
5415 8.2 重要
Local 		デル insightiq デルのinsightiqにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-35071 2026-05-14 10:20 2026-05-12 Show GitHub Exploit DB Packet Storm
5416 9.8 緊急
Network 		デル Dell ObjectScale
elastic cloud storage 		デルのelastic cloud storage等の複数製品におけるCSV ファイル内の数式要素の中和に関する脆弱性 CWE-1236
CSV ファイル内の数式要素の不適切な中和 		CVE-2026-35157 2026-05-14 10:20 2026-05-11 Show GitHub Exploit DB Packet Storm
5417 5.4 警告
Network 		Frappe Frappe Frappeにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-3673 2026-05-14 10:20 2026-04-22 Show GitHub Exploit DB Packet Storm
5418 9.8 緊急
Network 		Grokability, Inc. Snipe-IT Grokability, Inc.のSnipe-ITにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-37709 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
5419 6.5 警告
Local 		Linux Containers LXC Linux ContainersのLXCにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-39402 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
5420 8.8 重要
Network 		Pi-hole FTLDNS Pi-holeのFTLDNSにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-39849 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313851 - hp system_management_homepage Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this issue wa… CWE-79
Cross-site Scripting 		CVE-2010-3012 2024-11-21 10:17 2010-09-18 Show GitHub Exploit DB Packet Storm
313852 - arg0 encfs EncFS before 1.7.0 encrypts multiple blocks by means of the CFB cipher mode with the same initialization vector, which makes it easier for local users to obtain sensitive information via calculations… CWE-310
Cryptographic Issues 		CVE-2010-3075 2024-11-21 10:17 2010-09-18 Show GitHub Exploit DB Packet Storm
313853 - arg0 encfs SSL_Cipher.cpp in EncFS before 1.7.0 uses an improper combination of an AES cipher and a CBC cipher mode for encrypted filesystems, which allows local users to obtain sensitive information via a wate… CWE-310
Cryptographic Issues 		CVE-2010-3074 2024-11-21 10:17 2010-09-18 Show GitHub Exploit DB Packet Storm
313854 - arg0 encfs SSL_Cipher.cpp in EncFS before 1.7.0 does not properly handle integer data sizes when constructing headers intended for randomization of initialization vectors, which makes it easier for local users … CWE-310
Cryptographic Issues 		CVE-2010-3073 2024-11-21 10:17 2010-09-18 Show GitHub Exploit DB Packet Storm
313855 - hp system_management_homepage CRLF injection vulnerability in HP System Management Homepage (SMH) before 6.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vec… CWE-20
 Improper Input Validation  		CVE-2010-3011 2024-11-21 10:17 2010-09-18 Show GitHub Exploit DB Packet Storm
313856 - hp 3com_officeconnect_gigabit_vpn_firewall_software
3crevf100-73 		Cross-site scripting (XSS) vulnerability on the HP 3Com OfficeConnect Gigabit VPN Firewall 3CREVF100-73 with firmware before 1.0.13 allows remote attackers to inject arbitrary web script or HTML via … CWE-79
Cross-site Scripting 		CVE-2010-3010 2024-11-21 10:17 2010-09-16 Show GitHub Exploit DB Packet Storm
313857 - microsoft windows_server_2008
windows_xp
windows_vista
windows_server_2003
office 		The Uniscribe (aka new Unicode Script Processor) implementation in USP10.DLL in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2, and Microsoft Offic… CWE-20
 Improper Input Validation  		CVE-2010-2738 2024-11-21 10:17 2010-09-16 Show GitHub Exploit DB Packet Storm
313858 - - - Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.1 on Windows XP SP3, when directory-based Basic Authentication is enabled, allows remote attackers to bypass intended acce… CWE-287
Improper Authentication 		CVE-2010-2731 2024-11-21 10:17 2010-09-16 Show GitHub Exploit DB Packet Storm
313859 - microsoft internet_information_services Buffer overflow in Microsoft Internet Information Services (IIS) 7.5, when FastCGI is enabled, allows remote attackers to execute arbitrary code via crafted headers in a request, aka "Request Header … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-2730 2024-11-21 10:17 2010-09-16 Show GitHub Exploit DB Packet Storm
313860 - microsoft windows_server_2008
windows_xp
windows_7
windows_vista
windows_server_2003 		The Print Spooler service in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7, when printer sharing is enable… CWE-20
 Improper Input Validation  		CVE-2010-2729 2024-11-21 10:17 2010-09-16 Show GitHub Exploit DB Packet Storm