Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
661	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-46269	2026-06-10 14:25	2026-06-3	Show	GitHub Exploit DB Packet Storm

662	8.4	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-46270	2026-06-10 14:25	2026-06-3	Show	GitHub Exploit DB Packet Storm

663	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-46271	2026-06-10 14:25	2026-06-3	Show	GitHub Exploit DB Packet Storm

664	4.7	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-46272	2026-06-10 14:25	2026-06-3	Show	GitHub Exploit DB Packet Storm

665	8.6	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-46273	2026-06-10 14:25	2026-06-3	Show	GitHub Exploit DB Packet Storm

666	8.8	重要 Network	flowiseai	flowise	flowiseaiのflowiseにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性	CWE-915 動的に決定されたオブジェクト属性の不適切に制御された変更	CVE-2026-46480	2026-06-10 14:25	2026-06-8	Show	GitHub Exploit DB Packet Storm

667	8.8	重要 Network	samlify project	samlify	samlify projectのsamlifyにおけるブラインド XPath インジェクションの脆弱性	CWE-91 ブラインド XPath インジェクション	CVE-2026-46490	2026-06-10 14:25	2026-06-8	Show	GitHub Exploit DB Packet Storm

668	5.5	警告 Local	Canonical	Ubuntu	CanonicalのUbuntuにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-47326	2026-06-10 14:25	2026-05-28	Show	GitHub Exploit DB Packet Storm

669	6.1	警告 Local	Canonical	Ubuntu	CanonicalのUbuntuにおけるヒープ領域の解放に関する脆弱性	CWE-590 ヒープ領域の不適切な解放	CVE-2026-47328	2026-06-10 14:25	2026-05-28	Show	GitHub Exploit DB Packet Storm

670	3.3	低 Local	Canonical	Ubuntu	CanonicalのUbuntuにおける入力で指定された数量の不適切な検証に関する脆弱性	CWE-1284 入力で指定された数量の不適切な検証	CVE-2026-47329	2026-06-10 14:25	2026-05-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
319611	7.5	HIGH Network	nuxt	nuxt	Nuxt is a free and open-source framework to create full-stack web applications and websites with Vue.js. `nuxt/icon` provides an API to allow client side icon lookup. This endpoint is at `/api/_nuxt_…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2024-42352	2024-09-20 05:55	2024-08-6	Show	GitHub Exploit DB Packet Storm

319612	7.8	HIGH Local	mongodb	mongodb c_driver php_driver	Incorrect validation of files loaded from a local untrusted directory may allow local privilege escalation if the underlying operating systems is Windows. This may result in the application executing…	NVD-CWE-noinfo	CVE-2024-7553	2024-09-20 05:46	2024-08-7	Show	GitHub Exploit DB Packet Storm

319613	6.1	MEDIUM Network	mailcow	mailcow\	mailcow: dockerized is an open source groupware/email suite based on docker. An unauthenticated attacker can inject a JavaScript payload into the API logs. This payload is executed whenever the API l…	CWE-79 Cross-site Scripting	CVE-2024-41959	2024-09-20 05:14	2024-08-6	Show	GitHub Exploit DB Packet Storm

319614	4.8	MEDIUM Network	mailcow	mailcow\	mailcow: dockerized is an open source groupware/email suite based on docker. An authenticated admin user can inject a JavaScript payload into the Relay Hosts configuration. The injected payload is ex…	CWE-79 Cross-site Scripting	CVE-2024-41960	2024-09-20 05:01	2024-08-6	Show	GitHub Exploit DB Packet Storm

319615	6.1	MEDIUM Network	nuxt	nuxt	Nuxt is a free and open-source framework to create full-stack web applications and websites with Vue.js. The `navigateTo` function attempts to blockthe `javascript:` protocol, but does not correctly …	CWE-79 Cross-site Scripting	CVE-2024-34343	2024-09-20 04:57	2024-08-6	Show	GitHub Exploit DB Packet Storm

319616	6.5	MEDIUM Network	lunary	lunary	An improper access control vulnerability exists in lunary-ai/lunary at the latest commit (a761d83) on the main branch. The vulnerability allows an attacker to use the auth tokens issued by the 'invit…	NVD-CWE-Other	CVE-2024-6087	2024-09-20 04:32	2024-09-14	Show	GitHub Exploit DB Packet Storm

319617	3.9	LOW Physics	redhat opensc_project	enterprise_linux opensc	A vulnerability was found in the pkcs15-init tool in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. When …	CWE-120 Classic Buffer Overflow	CVE-2024-45620	2024-09-20 04:21	2024-09-4	Show	GitHub Exploit DB Packet Storm

319618	6.5	MEDIUM Network	eaton	foreseer_electrical_power_monitoring_system	The Eaton Foreseer software provides multiple customizable input fields for the users to configure parameters in the tool like alarms, reports, etc. Some of these input fields were not checking the l…	CWE-1284 Improper Validation of Specified Quantity in Input	CVE-2024-31416	2024-09-20 04:06	2024-09-14	Show	GitHub Exploit DB Packet Storm

319619	8.1	HIGH Network	eaton	foreseer_electrical_power_monitoring_system	The Eaton Foreseer software provides the feasibility for the user to configure external servers for multiple purposes such as network management, user management, etc. The software uses encryption to…	CWE-522 Insufficiently Protected Credentials	CVE-2024-31415	2024-09-20 03:50	2024-09-14	Show	GitHub Exploit DB Packet Storm

319620	6.1	MEDIUM Network	eaton	foreseer_electrical_power_monitoring_system	The Eaton Foreseer software provides users the capability to customize the dashboard in WebView pages. However, the input fields for this feature in the Eaton Foreseer software lacked proper input sa…	CWE-79 Cross-site Scripting	CVE-2024-31414	2024-09-20 03:48	2024-09-14	Show	GitHub Exploit DB Packet Storm