Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
771	4.3	警告 Network	HCL Technologies Limited	HCL iControl	HCL Technologies LimitedのHCL iControlにおけるエラーメッセージによる情報漏えいに関する脆弱性	CWE-209 エラーメッセージによる情報漏えい	CVE-2025-52606	2026-06-8 11:49	2026-06-4	Show	GitHub Exploit DB Packet Storm

772	4.3	警告 Network	HCL Technologies Limited	HCL iControl	HCL Technologies LimitedのHCL iControlにおけるHTTPS セッション内の Secure 属性がない重要な Cookie に関する脆弱性	CWE-614 HTTPS セッション内の Secure 属性がない重要な Cookie	CVE-2025-52608	2026-06-8 11:49	2026-06-4	Show	GitHub Exploit DB Packet Storm

773	5.3	警告 Network	HCL Technologies Limited	HCL iControl	HCL Technologies LimitedのHCL iControlにおける保護メカニズムの不具合に関する脆弱性	CWE-693 保護メカニズムの不具合	CVE-2025-52609	2026-06-8 11:49	2026-06-4	Show	GitHub Exploit DB Packet Storm

774	4.3	警告 Network	HCL Technologies Limited	HCL iControl	HCL Technologies LimitedのHCL iControlにおけるエラーメッセージによる情報漏えいに関する脆弱性	CWE-209 エラーメッセージによる情報漏えい	CVE-2025-52611	2026-06-8 11:49	2026-06-4	Show	GitHub Exploit DB Packet Storm

775	8.8	重要 Network	HCL Technologies Limited	HCL iControl	HCL Technologies LimitedのHCL iControlにおけるCSV ファイル内の数式要素の中和に関する脆弱性	CWE-1236 CSV ファイル内の数式要素の不適切な中和	CVE-2025-52612	2026-06-8 11:49	2026-06-4	Show	GitHub Exploit DB Packet Storm

776	7.5	重要 Network	Open JS Foundation	Node Version Manager (NVM)	Open JS FoundationのNode Version Manager (NVM)におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-10796	2026-06-8 11:49	2026-06-4	Show	GitHub Exploit DB Packet Storm

777	7.8	重要 Local	NVIDIA	transformers4rec	NVIDIAのtransformers4recにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-24162	2026-06-8 11:49	2026-05-26	Show	GitHub Exploit DB Packet Storm

778	7.8	重要 Local	NVIDIA	NVTabular	NVIDIAのNVTabularにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-24221	2026-06-8 11:49	2026-06-2	Show	GitHub Exploit DB Packet Storm

779	7.8	重要 Local	NVIDIA	NVTabular	NVIDIAのNVTabularにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-24237	2026-06-8 11:49	2026-06-2	Show	GitHub Exploit DB Packet Storm

780	6.8	警告 Network	SWUpdate	SWUpdate	SWUpdateにおける複数の脆弱性	CWE-125 CWE-191	CVE-2026-28525	2026-06-8 11:49	2026-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344831	-	mozilla	firefox	Firefox 1.0.6 allows attackers to cause a denial of service (crash) via a Proxy Auto-Config (PAC) script that uses an eval statement. NOTE: it is not clear whether an untrusted party has any role in …	NVD-CWE-Other	CVE-2005-3089	2017-10-11 10:30	2005-09-29	Show	GitHub Exploit DB Packet Storm

344832	-	-	-	The FTP server in HP-UX 10.20, B.11.00, and B.11.11, allows remote attackers to list arbitrary directories as root by running the LIST command before logging in.	NVD-CWE-Other	CVE-2005-3296	2017-10-11 10:30	2005-10-24	Show	GitHub Exploit DB Packet Storm

344833	-	apache	spamassassin	SpamAssassin 3.0.4 allows attackers to bypass spam detection via an e-mail with a large number of recipients ("To" addresses), which triggers a bus error in Perl.	NVD-CWE-Other	CVE-2005-3351	2017-10-11 10:30	2005-11-21	Show	GitHub Exploit DB Packet Storm

344834	-	ibm	aix	Buffer overflow in the chcons (chcon) command in IBM AIX 5.2 and 5.3, when DEBUG MALLOC is enabled, might allow attackers to execute arbitrary code via a long command line argument.	NVD-CWE-Other	CVE-2005-3396	2017-10-11 10:30	2005-11-1	Show	GitHub Exploit DB Packet Storm

344835	-	rockliffe	mailsite_express	Cross-site scripting (XSS) vulnerability in Rockliffe MailSite Express before 6.1.22 allows remote attackers to inject arbitrary web script or HTML via a message body.	NVD-CWE-Other	CVE-2005-3428	2017-10-11 10:30	2005-11-2	Show	GitHub Exploit DB Packet Storm

344836	-	cisco	ios	Cisco IOS 12.0 to 12.4 might allow remote attackers to execute arbitrary code via a heap-based buffer overflow in system timers. NOTE: this issue does not correspond to a specific vulnerability, rath…	NVD-CWE-Other	CVE-2005-3481	2017-10-11 10:30	2005-11-3	Show	GitHub Exploit DB Packet Storm

344837	-	hp	hp-ux	envd daemon in HP-UX B.11.00 through B.11.11 allows local users to obtain privileges via unknown attack vectors.	NVD-CWE-Other	CVE-2005-3564	2017-10-11 10:30	2005-11-16	Show	GitHub Exploit DB Packet Storm

344838	-	hp	hp-ux	Unknown vulnerability in remshd daemon in HP-UX B.11.00, B.11.11, and B.11.23 while running in "Trusted Mode" allows remote attackers to gain unauthorized system access via unknown attack vectors.	NVD-CWE-Other	CVE-2005-3565	2017-10-11 10:30	2005-11-16	Show	GitHub Exploit DB Packet Storm

344839	-	gnu	mailman	Scrubber.py in Mailman 2.1.5-8 does not properly handle UTF8 character encodings in filenames of e-mail attachments, which allows remote attackers to cause a denial of service (application crash).	NVD-CWE-Other	CVE-2005-3573	2017-10-11 10:30	2005-11-16	Show	GitHub Exploit DB Packet Storm

344840	-	redhat	enterprise_linux	initscripts in Red Hat Enterprise Linux 4 does not properly handle certain environment variables when /sbin/service is executed, which allows local users with sudo permissions for /sbin/service to ga…	NVD-CWE-Other	CVE-2005-3629	2017-10-11 10:30	2005-12-31	Show	GitHub Exploit DB Packet Storm