Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5491	6.1	警告 Network	HCL Technologies Limited	unica HCL Unica Plan HCL Unica Segment Central HCL Unica Centralized Offer Management HCL Unica Audience Campaign HCL U…	HCL Technologies Limitedのunica等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-62320	2026-05-12 10:19	2026-03-17	Show	GitHub Exploit DB Packet Storm

5492	5.5	警告 Local	ヒューレット・パッカード	Samsung Print Service Plugin	ヒューレット・パッカードのSamsung Print Service PluginにおけるAndroid アプリケーションコンポーネントの不適切なエクスポートの脆弱性	CWE-926 CWE-noinfo	CVE-2026-3291	2026-05-12 10:19	2026-05-6	Show	GitHub Exploit DB Packet Storm

5493	8.8	重要 Network	langflow	langflow Langflow-base	langflowのLangflow-base等の複数製品における複数の脆弱性	CWE-639 CWE-862	CVE-2026-34046	2026-05-12 10:19	2026-03-27	Show	GitHub Exploit DB Packet Storm

5494	7.5	重要 Network	Gazelle project	Gazelle	KazeburoのGazelleにおけるHTTP リクエストスマグリングに関する脆弱性	CWE-444 HTTP リクエストスマグリング	CVE-2026-40562	2026-05-12 10:19	2026-05-6	Show	GitHub Exploit DB Packet Storm

5495	5.3	警告 Network	opentelemetry	OpenTelemetry.Exporter.Zipkin	opentelemetryのOpenTelemetry.Exporter.Zipkinにおける複数の脆弱性	CWE-400 CWE-770	CVE-2026-41310	2026-05-12 10:19	2026-05-6	Show	GitHub Exploit DB Packet Storm

5496	7.5	重要 Network	uuidjs	uuid	uuidjsのuuidにおける複数の脆弱性	CWE-787 CWE-823	CVE-2026-41907	2026-05-12 10:19	2026-04-24	Show	GitHub Exploit DB Packet Storm

5497	7.5	重要 Network	Amazon.com, Inc.	Bedrock Agentcore Starter Toolkit	Amazon.com, Inc.のBedrock Agentcore Starter Toolkitにおける複数の脆弱性	CWE-283 CWE-340	CVE-2026-4269	2026-05-12 10:19	2026-03-16	Show	GitHub Exploit DB Packet Storm

5498	7.5	重要 Network	VEGA	VEGAPULS 6X Firmware	VEGAのVEGAPULS 6X Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-3323	2026-05-12 10:19	2026-04-28	Show	GitHub Exploit DB Packet Storm

5499	3.3	低 Local	ちとらソフト	Lhaz+ Lhaz	LhazおよびLhaz+におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41530	2026-05-11 17:15	2026-05-11	Show	GitHub Exploit DB Packet Storm

5500	-	-	Apache Software Foundation	Apache HTTP Server	Apache HTTP Server 2.4における複数の脆弱性に対するアップデート（2026年5月）	-	CVE-2026-23918 CVE-2026-24072 CVE-2026-28780 CVE-2026-29168 CVE-2026-29169 CVE-2026-33006 CVE-2026-33007 CVE-2026-33523 CVE-2026-33857 CVE-2026-34032 CVE-2026-34059	2026-05-11 16:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
841	5.3	MEDIUM Local	-	-	A weakness has been identified in svaarala duktape up to 2.99.99. This issue affects some unknown processing of the file duk_api_bytecode.c. Executing a manipulation of the argument count_instr can l…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2026-12216	2026-06-15 13:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

842	7.8	HIGH Local	-	-	A security flaw has been discovered in Qihoo 360 Total Security 6.0. This vulnerability affects the function RpcStringBindingComposeW of the component Nucleus Engine Monitoring Logic. Performing a ma…	CWE-693 Protection Mechanism Failure	CVE-2026-12214	2026-06-15 13:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

843	4.3	MEDIUM Network	-	-	A vulnerability was found in hcengineering Huly Platform up to 0.7.0. Affected by this vulnerability is the function getAccountInfo of the file server/account/src/operations.ts of the component User …	CWE-266 CWE-285 Incorrect Privilege Assignment Improper Authorization	CVE-2026-12213	2026-06-15 13:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

844	4.3	MEDIUM Network	-	-	A vulnerability has been found in hcengineering Huly Platform up to 0.7.0. Affected is the function getMailboxSecret of the file server/account/src/operations.ts of the component RPC Interface. The m…	CWE-266 CWE-284 Incorrect Privilege Assignment Improper Access Control	CVE-2026-12212	2026-06-15 13:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

845	2.7	LOW Network	-	-	A flaw has been found in Intelbras iNVU 7016 FT 3.004.00IB000.0.T Build 2025-09-26. This impacts an unknown function of the file /RPC2_Loadfile/syslog/ of the component Web Interface. Executing a man…	CWE-22 Path Traversal	CVE-2026-12211	2026-06-15 12:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

846	6.3	MEDIUM Network	-	-	A vulnerability was detected in universal-tool-calling-protocol python-utcp 1.1.0. This affects an unknown function of the component utcp-gql/utcp-websocket. Performing a manipulation results in serv…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-12210	2026-06-15 12:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

847	5.3	MEDIUM Network	-	-	A security vulnerability has been detected in RubyLouvre avalon up to 2.2.10. The impacted element is an unknown function of the file src/filters/index.js of the component Template Filter Handler. Su…	CWE-94 CWE-1321 Code Injection Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2026-12209	2026-06-15 12:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

848	5.3	MEDIUM Network	-	-	A weakness has been identified in jsonata-js jsonata up to 2.2.0. The affected element is the function createFrame of the file src/jsonata.js of the component Function Binding Frame System. This mani…	CWE-94 CWE-1321 Code Injection Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2026-12208	2026-06-15 12:16	2026-06-15	Show	GitHub Exploit DB Packet Storm

849	7.5	HIGH Network	netty	netty	Netty is a network application framework for development of protocol servers and clients. Prior to versions 4.1.135.Final and 4.2.15.Final, SimpleTrustManagerFactory.engineGetTrustManagers() and rela…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2026-50010	2026-06-15 11:31	2026-06-13	Show	GitHub Exploit DB Packet Storm

850	7.5	HIGH Network	netty	netty	Netty is a network application framework for development of protocol servers and clients. Prior to version 4.2.15.Final, a memory exhaustion vulnerability in the Netty HTTP/3 codec allows the creatio…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-48748	2026-06-15 11:31	2026-06-13	Show	GitHub Exploit DB Packet Storm