Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
591	6.9	警告 Local	libexpat project	libexpat	libexpat projectのlibexpatにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-56403	2026-06-26 11:53	2026-06-21	Show	GitHub Exploit DB Packet Storm

592	6.9	警告 Local	libexpat project	libexpat	libexpat projectのlibexpatにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-56404	2026-06-26 11:53	2026-06-21	Show	GitHub Exploit DB Packet Storm

593	6.9	警告 Local	libexpat project	libexpat	libexpat projectのlibexpatにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-56405	2026-06-26 11:53	2026-06-21	Show	GitHub Exploit DB Packet Storm

594	6.9	警告 Local	libexpat project	libexpat	libexpat projectのlibexpatにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-56406	2026-06-26 11:53	2026-06-21	Show	GitHub Exploit DB Packet Storm

595	6.9	警告 Local	libexpat project	libexpat	libexpat projectのlibexpatにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-56407	2026-06-26 11:52	2026-06-21	Show	GitHub Exploit DB Packet Storm

596	6.9	警告 Local	libexpat project	libexpat	libexpat projectのlibexpatにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-56408	2026-06-26 11:52	2026-06-21	Show	GitHub Exploit DB Packet Storm

597	6.5	警告 Local	libexpat project	libexpat	libexpat projectのlibexpatにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-56409	2026-06-26 11:52	2026-06-21	Show	GitHub Exploit DB Packet Storm

598	6.9	警告 Local	libexpat project	libexpat	libexpat projectのlibexpatにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-56410	2026-06-26 11:52	2026-06-21	Show	GitHub Exploit DB Packet Storm

599	6.9	警告 Local	libexpat project	libexpat	libexpat projectのlibexpatにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-56411	2026-06-26 11:52	2026-06-21	Show	GitHub Exploit DB Packet Storm

600	5.9	警告 Local	libexpat project	libexpat	libexpat projectのlibexpatにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-56412	2026-06-26 11:52	2026-06-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
191461	9.8	CRITICAL Network	parity	libsecp256k1	An issue was discovered in the libsecp256k1 crate before 0.5.0 for Rust. It can verify an invalid signature because it allows the R or S parameter to be larger than the curve order, aka an overflow.	CWE-347 Improper Verification of Cryptographic Signature	CVE-2021-38195	2024-11-21 15:16	2021-08-8	Show	GitHub Exploit DB Packet Storm

191462	9.8	CRITICAL Network	arcworks	ark-r1cs-std	An issue was discovered in the ark-r1cs-std crate before 0.3.1 for Rust. It does not enforce any constraints in the FieldVar::mul_by_inverse method. Thus, a prover can produce a proof that is unsound…	NVD-CWE-noinfo	CVE-2021-38194	2024-11-21 15:16	2021-08-8	Show	GitHub Exploit DB Packet Storm

191463	6.1	MEDIUM Network	ammonia_project	ammonia	An issue was discovered in the ammonia crate before 3.1.0 for Rust. XSS can occur because the parsing differences for HTML, SVG, and MathML are mishandled, a similar issue to CVE-2020-26870.	CWE-79 Cross-site Scripting	CVE-2021-38193	2024-11-21 15:16	2021-08-8	Show	GitHub Exploit DB Packet Storm

191464	7.5	HIGH Network	prost_project	prost	An issue was discovered in the prost-types crate before 0.8.0 for Rust. An overflow can occur during conversion from Timestamp to SystemTime.	CWE-120 Classic Buffer Overflow	CVE-2021-38192	2024-11-21 15:16	2021-08-8	Show	GitHub Exploit DB Packet Storm

191465	5.9	MEDIUM Network	tokio	tokio	An issue was discovered in the tokio crate before 1.8.1 for Rust. Upon a JoinHandle::abort, a Task may be dropped in the wrong thread.	CWE-362 Race Condition	CVE-2021-38191	2024-11-21 15:16	2021-08-8	Show	GitHub Exploit DB Packet Storm

191466	9.8	CRITICAL Network	dimforge	nalgebra	An issue was discovered in the nalgebra crate before 0.27.1 for Rust. It allows out-of-bounds memory access because it does not ensure that the number of elements is equal to the product of the row c…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2021-38190	2024-11-21 15:16	2021-08-8	Show	GitHub Exploit DB Packet Storm

191467	9.8	CRITICAL Network	lettre	lettre	An issue was discovered in the lettre crate before 0.9.6 for Rust. In an e-mail message body, an attacker can place a . character after two <CR><LF> sequences and then inject arbitrary SMTP commands.	CWE-77 Command Injection	CVE-2021-38189	2024-11-21 15:16	2021-08-8	Show	GitHub Exploit DB Packet Storm

191468	9.8	CRITICAL Network	iced-x86_project	iced-x86	An issue was discovered in the iced-x86 crate through 1.10.3 for Rust. In Decoder::new(), slice.get_unchecked(slice.length()) is used unsafely.	NVD-CWE-noinfo	CVE-2021-38188	2024-11-21 15:16	2021-08-8	Show	GitHub Exploit DB Packet Storm

191469	9.8	CRITICAL Network	anymap_project	anymap	An issue was discovered in the anymap crate through 0.12.1 for Rust. It violates soundness via conversion of a u8 to a u64.	CWE-681 Incorrect Conversion between Numeric Types	CVE-2021-38187	2024-11-21 15:16	2021-08-8	Show	GitHub Exploit DB Packet Storm

191470	6.1	MEDIUM Network	comrak_project	comrak	An issue was discovered in the comrak crate before 0.10.1 for Rust. It mishandles & characters, leading to XSS via &# HTML entities.	CWE-79 Cross-site Scripting	CVE-2021-38186	2024-11-21 15:16	2021-08-8	Show	GitHub Exploit DB Packet Storm