Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
541	7.7	重要 Network	openwebui	open webui	openwebuiのopen webuiにおける複数の脆弱性	CWE-22 CWE-918	CVE-2026-54017	2026-06-26 11:55	2026-06-18	Show	GitHub Exploit DB Packet Storm

542	7.7	重要 Network	openwebui	open webui	openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-54018	2026-06-26 11:55	2026-06-23	Show	GitHub Exploit DB Packet Storm

543	6.5	警告 Network	openwebui	open webui	openwebuiのopen webuiにおける複数の脆弱性	CWE-862 CWE-943	CVE-2026-54019	2026-06-26 11:55	2026-06-23	Show	GitHub Exploit DB Packet Storm

544	6.3	警告 Network	openwebui	open webui	openwebuiのopen webuiにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-54021	2026-06-26 11:55	2026-06-23	Show	GitHub Exploit DB Packet Storm

545	5.3	警告 Network	openwebui	open webui	openwebuiのopen webuiにおける複数の脆弱性	CWE-706 CWE-863	CVE-2026-54022	2026-06-26 11:55	2026-06-23	Show	GitHub Exploit DB Packet Storm

546	7.5	重要 Network	マイクロソフト	Microsoft 365 Copilot	M365 Copilot の情報漏えいの脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-54130	2026-06-26 11:55	2026-06-18	Show	GitHub Exploit DB Packet Storm

547	8.8	重要 Network	vLLM	vLLM	vLLMにおける制御されていない検索パスの要素に関する脆弱性	CWE-427 制御されていない検索パスの要素	CVE-2026-54232	2026-06-26 11:55	2026-06-22	Show	GitHub Exploit DB Packet Storm

548	6.5	警告 Network	vLLM	vLLM	vLLMにおける高圧縮データの処理 (データ増幅)に関する脆弱性	CWE-409 高圧縮データの不適切な処理 (データ増幅)	CVE-2026-54233	2026-06-26 11:55	2026-06-22	Show	GitHub Exploit DB Packet Storm

549	6.5	警告 Network	vLLM	vLLM	vLLMにおける指定されたタイプの入力に対する不適切な検証に関する脆弱性	CWE-1287 指定されたタイプの入力に対する不適切な検証	CVE-2026-54235	2026-06-26 11:55	2026-06-22	Show	GitHub Exploit DB Packet Storm

550	5.3	警告 Network	vLLM	vLLM	vLLMにおけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2026-54236	2026-06-26 11:55	2026-06-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
561	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_hbh: reject oversized option lists struct ip6t_opts stores at most IP6T_OPTS_OPTSNR option descriptors, but hbh_m… Update	-	CVE-2026-52915	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

562	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix fragment reassembly length accounting batman-adv keeps a running payload length for queued fragments and uses it … Update	-	CVE-2026-52914	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

563	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_queue: hold bridge skb->dev while queued br_pass_frame_up() rewrites skb->dev from the ingress port to the bridge m… Update	-	CVE-2026-52912	2026-06-28 17:16	2026-06-24	Show	GitHub Exploit DB Packet Storm

564	8.8	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: ksmbd: scope conn->binding slowpath to bound sessions only When the binding SESSION_SETUP sets conn->binding = true, the flag sta… Update	-	CVE-2026-52911	2026-06-28 17:16	2026-06-21	Show	GitHub Exploit DB Packet Storm

565	9.9	CRITICAL Network	-	-	Gitea act_runner with the Docker backend (through act 0.262.0) passes a workflow's container.options string to the Docker job container's HostConfig and, when configured with privileged: false, force… New	CWE-269 Improper Privilege Management	CVE-2026-58053	2026-06-28 11:16	2026-06-28	Show	GitHub Exploit DB Packet Storm

566	6.5	MEDIUM Adjacent	dhcpcd_project	dhcpcd	dhcpcd through 10.3.2, fixed in commit 2f00c7b, contains a one-byte stack out-of-bounds write vulnerability in dhcp6_makemessage() in src/dhcp6.c that allows unauthenticated same-link attackers to wr… Update	CWE-787 Out-of-bounds Write	CVE-2026-56114	2026-06-28 09:34	2026-06-24	Show	GitHub Exploit DB Packet Storm

567	6.5	MEDIUM Adjacent	dhcpcd_project	dhcpcd	dhcpcd through 10.3.2, fixed in commit 5733d3c, contains a heap use-after-free vulnerability that allows unauthenticated same-link attackers to crash the daemon by sending a crafted DHCPv6 RENEW repl… Update	CWE-416 Use After Free	CVE-2026-56113	2026-06-28 09:33	2026-06-24	Show	GitHub Exploit DB Packet Storm

568	6.5	MEDIUM Adjacent	dhcpcd_project	dhcpcd	dhcpcd through 10.3.2, fixed in commit 708b4a5, contains a memory leak vulnerability in the IPv6 Router Advertisement route information handling that allows an unauthenticated same-link attacker to c… Update	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2026-56116	2026-06-28 09:27	2026-06-24	Show	GitHub Exploit DB Packet Storm

569	5.5	MEDIUM Local	dhcpcd_project	dhcpcd	dhcpcd through 10.3.2, fixed in commit 78ea09e, contains a heap use-after-free vulnerability in the control socket handling within src/control.c that allows local unprivileged attackers to trigger me… Update	CWE-416 Use After Free	CVE-2026-56117	2026-06-28 09:26	2026-06-24	Show	GitHub Exploit DB Packet Storm

570	4.8	MEDIUM Network	fortra	file_integrity_monitoring	Fortra File Integrity Monitoring (FIM), formerly Tripwire Enterprise, versions prior to 9.4.0.1 contain a stored cross-site scripting (XSS) vulnerability in the Asset View UI component. An authentica… Update	CWE-79 Cross-site Scripting	CVE-2026-12163	2026-06-28 09:21	2026-06-24	Show	GitHub Exploit DB Packet Storm