Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
591	8	重要 Adjacent	IBM	IBM HTTP Server	IBMのIBM HTTP Serverにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-8834	2026-05-28 14:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

592	7.3	重要 Adjacent	IBM	IBM HTTP Server	IBMのIBM HTTP Serverにおける信頼できないポインタデリファレンスに関する脆弱性	CWE-822 信頼性のないポインタデリファレンス	CVE-2026-8835	2026-05-28 14:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

593	7.5	重要 Network	IBM	IBM HTTP Server	IBMのIBM HTTP ServerにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-8850	2026-05-28 14:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

594	7.5	重要 Network	IBM	IBM HTTP Server	IBMのIBM HTTP Serverにおける到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-8852	2026-05-28 14:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

595	7.5	重要 Network	IBM	IBM HTTP Server	IBMのIBM HTTP Serverにおける期限切れのポインタデリファレンスに関する脆弱性	CWE-825 期限切れのポインタデリファレンス	CVE-2026-8854	2026-05-28 14:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

596	9.8	緊急 Network	IBM	IBM HTTP Server	IBMのIBM HTTP Serverにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-8855	2026-05-28 14:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

597	9.1	緊急 Network	IBM	IBM HTTP Server	IBMのIBM HTTP Serverにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-8856	2026-05-28 14:35	2026-05-26	Show	GitHub Exploit DB Packet Storm

598	8.8	重要 Network	Ivanti	secure access client	Ivantiのsecure access clientにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-8992	2026-05-28 14:35	2026-05-22	Show	GitHub Exploit DB Packet Storm

599	7.6	重要 Network	Devolutions	Devolutions Server	DevolutionsのDevolutions Serverにおける根本の脆弱性による認証回避の脆弱性	CWE-305 根本の脆弱性による認証回避	CVE-2026-9047	2026-05-28 14:35	2026-05-22	Show	GitHub Exploit DB Packet Storm

600	9.8	緊急 Network	Drupal	Drupal	DrupalにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-9082	2026-05-28 14:35	2026-05-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
310911	-		-	-	Nextcloud Server is a self hosted personal cloud system. Under certain conditions the password of a user was stored unencrypted in the session data. The session data is encrypted before being saved i…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2024-52525	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

310912	-		-	-	Nextcloud Server is a self hosted personal cloud system. After setting up a user or administrator defined external storage with fixed credentials, the API returns them and adds them into the frontend…	CWE-200 Information Exposure	CVE-2024-52523	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

310913	-		-	-	Nextcloud Server is a self hosted personal cloud system. MD5 hashes were used to check background jobs for their uniqueness. This increased the chances of a background job with arguments falsely bein…	CWE-328 Use of Weak Hash	CVE-2024-52521	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

310914	-		-	-	Nextcloud Server is a self hosted personal cloud system. Due to a pre-flighted HEAD request, the link reference provider could be tricked into downloading bigger websites than intended, to find open-…	CWE-400 Uncontrolled Resource Consumption	CVE-2024-52520	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

310915	-		-	-	Nextcloud Server is a self hosted personal cloud system. The OAuth2 client secrets were stored in a recoverable way, so that an attacker that got access to a backup of the database and the Nextcloud …	CWE-922 Insecure Storage of Sensitive Information	CVE-2024-52519	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

310916	-		-	-	Nextcloud Server is a self hosted personal cloud system. After an attacker got access to the session of a user or administrator, the attacker would be able to create, change or delete external storag…	CWE-287 Improper Authentication	CVE-2024-52518	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

310917	-		-	-	Nextcloud Server is a self hosted personal cloud system. After storing "Global credentials" on the server, the API returns them and adds them into the frontend again, allowing to read them in plain t…	CWE-200 Information Exposure	CVE-2024-52517	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

310918	-		-	-	Nextcloud Server is a self hosted personal cloud system. When a server is configured to only allow sharing with users that are in ones own groups, after a user was removed from a group, previously sh…	CWE-269 Improper Privilege Management	CVE-2024-52516	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

310919	-		-	-	Nextcloud Server is a self hosted personal cloud system. After an admin enables the default-disabled SVG preview provider, a malicious user could upload a manipulated SVG file referencing paths. If t…	CWE-706 Use of Incorrectly-Resolved Name or Reference	CVE-2024-52515	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

310920	5.3	MEDIUM Network	-	-	A vulnerability in the web-based management interface of Cisco ECE could allow an unauthenticated, remote attacker to perform a username enumeration attack against an affected device. This vu…	CWE-204 Response Discrepancy Information Exposure	CVE-2022-20633	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm