Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5461	7.5	重要 Network	Amazon.com, Inc.	Bedrock Agentcore Starter Toolkit	Amazon.com, Inc.のBedrock Agentcore Starter Toolkitにおける複数の脆弱性	CWE-283 CWE-340	CVE-2026-4269	2026-05-12 10:19	2026-03-16	Show	GitHub Exploit DB Packet Storm

5462	7.5	重要 Network	VEGA	VEGAPULS 6X Firmware	VEGAのVEGAPULS 6X Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-3323	2026-05-12 10:19	2026-04-28	Show	GitHub Exploit DB Packet Storm

5463	3.3	低 Local	ちとらソフト	Lhaz+ Lhaz	LhazおよびLhaz+におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41530	2026-05-11 17:15	2026-05-11	Show	GitHub Exploit DB Packet Storm

5464	-	-	Apache Software Foundation	Apache HTTP Server	Apache HTTP Server 2.4における複数の脆弱性に対するアップデート（2026年5月）	-	CVE-2026-23918 CVE-2026-24072 CVE-2026-28780 CVE-2026-29168 CVE-2026-29169 CVE-2026-33006 CVE-2026-33007 CVE-2026-33523 CVE-2026-33857 CVE-2026-34032 CVE-2026-34059	2026-05-11 16:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

5465	-	-	（複数のベンダ）	（複数の製品）	CISA ICS Advisory / ICS Medical Advisory（2026年05月07日）	-	-	2026-05-11 16:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

5466	7.2	重要 Network	株式会社GROWI	GROWI	GROWIにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41951	2026-05-11 15:29	2026-05-11	Show	GitHub Exploit DB Packet Storm

5467	7.4	重要 Network	株式会社EPG	iOSアプリ「くら寿司公式アプリ」 Androidアプリ「くら寿司公式アプリ」	スマートフォンアプリ「くら寿司公式アプリ」における証明書検証不備の脆弱性	CWE-Other その他	CVE-2026-41872	2026-05-11 12:52	2026-05-11	Show	GitHub Exploit DB Packet Storm

5468	3.3	低 Local	X.Org Foundation	libxpm	libXpmにおける境界外読み取りの脆弱性	CWE-Other その他	CVE-2026-4367	2026-05-11 12:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

5469	7.3	重要 Network	yeti-platform	yeti	yeti-platformのyetiにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2024-46507	2026-05-11 11:13	2026-05-8	Show	GitHub Exploit DB Packet Storm

5470	7.5	重要 Network	yeti-platform	yeti	yeti-platformのyetiにおけるハードコードされた認証情報の使用に関する脆弱性	CWE-798 ハードコードされた認証情報の使用	CVE-2024-46508	2026-05-11 11:12	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314751	9.1	CRITICAL Network	anisha	e-health_care_system	A vulnerability was found in code-projects E-Health Care System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Doctor/doctor_login.php. The mani…	CWE-89 SQL Injection	CVE-2024-10988	2024-11-13 09:59	2024-11-8	Show	GitHub Exploit DB Packet Storm

314752	6.5	MEDIUM Network	anisha	e-health_care_system	A vulnerability was found in code-projects E-Health Care System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /Doctor/user_appointment.…	CWE-89 SQL Injection	CVE-2024-10987	2024-11-13 09:58	2024-11-8	Show	GitHub Exploit DB Packet Storm

314753	2.4	LOW Physics	samsung	android	Improper authorization in Settings prior to SMR Nov-2024 Release 1 allows physical attackers to access stored WiFi password in Maintenance Mode.	NVD-CWE-noinfo	CVE-2024-34682	2024-11-13 09:56	2024-11-6	Show	GitHub Exploit DB Packet Storm

314754	5.5	MEDIUM Local	samsung	android	Improper Input Validation in IpcProtocol in Modem prior to SMR Nov-2024 Release 1 allows local attackers to cause Denial-of-Service.	NVD-CWE-noinfo	CVE-2024-34673	2024-11-13 09:56	2024-11-6	Show	GitHub Exploit DB Packet Storm

314755	4.6	MEDIUM Physics	samsung	video_player	Improper Access Control in Samsung Video Player prior to versions 7.3.29.1 in Android 12, 7.3.36.1 in Android 13, and 7.3.41.230 in Android 14 allows physical attackers to access video file of other …	NVD-CWE-noinfo	CVE-2024-49404	2024-11-13 09:55	2024-11-6	Show	GitHub Exploit DB Packet Storm

314756	4.6	MEDIUM Physics	samsung	voice_recorder	Improper access control in Samsung Voice Recorder prior to version 21.5.40.37 allows physical attackers to access recording files on the lock screen.	NVD-CWE-noinfo	CVE-2024-49403	2024-11-13 09:55	2024-11-6	Show	GitHub Exploit DB Packet Storm

314757	4.4	MEDIUM Local	samsung	blockchain_keystore	Improper validation of integrity check value in Blockchain Keystore prior to version 1.3.16 allows local attackers to modify transaction. Root privilege is required for triggering this vulnerability.	CWE-354 Improper Validation of Integrity Check Value	CVE-2024-49406	2024-11-13 09:54	2024-11-6	Show	GitHub Exploit DB Packet Storm

314758	4.6	MEDIUM Physics	samsung	pass	Improper authentication in Private Info in Samsung Pass in prior to version 4.4.04.7 allows physical attackers to access sensitive information in a specific scenario.	NVD-CWE-noinfo	CVE-2024-49405	2024-11-13 09:54	2024-11-6	Show	GitHub Exploit DB Packet Storm

314759	4.6	MEDIUM Physics	samsung	flow	Improper access control in Samsung Flow prior to version 4.9.15.7 allows physical attackers to access data across multiple user profiles.	NVD-CWE-noinfo	CVE-2024-49407	2024-11-13 09:53	2024-11-6	Show	GitHub Exploit DB Packet Storm

314760	6.7	MEDIUM Local	samsung	galaxy_s24_firmware	Out-of-bounds write in Battery Full Capacity node prior to Firmware update Sep-2024 Release on Galaxy S24 allows local attackers to write out-of-bounds memory. System privilege is required for trigge…	CWE-787 Out-of-bounds Write	CVE-2024-49409	2024-11-13 09:51	2024-11-6	Show	GitHub Exploit DB Packet Storm