Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
781	7.5	重要 Network	turbo-stream Shopify	React Router Turbo Stream	Shopify等の複数ベンダの製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-34077	2026-06-8 11:49	2026-06-2	Show	GitHub Exploit DB Packet Storm

782	6.5	警告 Network	Apnotic	Password Pusher	ApnoticのPassword Pusherにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性	CWE-288 CWE-noinfo	CVE-2026-41308	2026-06-8 11:48	2026-05-8	Show	GitHub Exploit DB Packet Storm

783	7.5	重要 Network	Shopify	remix-run/server-runtime React Router	ShopifyのReact Router等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-42342	2026-06-8 11:48	2026-06-2	Show	GitHub Exploit DB Packet Storm

784	5.3	警告 Network	forms project	forms	NextcloudのFormsにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性	CWE-552 外部からアクセス可能なファイルまたはディレクトリ	CVE-2026-45543	2026-06-8 11:48	2026-06-1	Show	GitHub Exploit DB Packet Storm

785	8.1	重要 Network	Get-hermes	Hermes Web UI	Get-hermesのHermes Web UIにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-6832	2026-06-8 11:48	2026-04-21	Show	GitHub Exploit DB Packet Storm

786	8.8	重要 Network	radare	Radare2 MCP Server	radareのRadare2 MCP ServerにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-6942	2026-06-8 11:48	2026-04-23	Show	GitHub Exploit DB Packet Storm

787	7.3	重要 Network	Securly, Inc.	Securly	Securly, Inc.のSecurlyにおけるハードコードされた認証情報の使用に関する脆弱性	CWE-798 ハードコードされた認証情報の使用	CVE-2026-8876	2026-06-8 11:48	2026-06-3	Show	GitHub Exploit DB Packet Storm

788	7.5	重要 Network	Securly, Inc.	Securly	Securly, Inc.のSecurlyにおける暗号強度に関する脆弱性	CWE-326 不適切な暗号強度	CVE-2026-8878	2026-06-8 11:48	2026-06-3	Show	GitHub Exploit DB Packet Storm

789	7.5	重要 Network	Securly, Inc.	Securly	Securly, Inc.のSecurlyにおける信頼できない制御領域からの機能の組み込みに関する脆弱性	CWE-829 信頼性のない制御領域からの機能の組み込み	CVE-2026-8879	2026-06-8 11:48	2026-06-3	Show	GitHub Exploit DB Packet Storm

790	7.8	重要 Local	Amazon.com, Inc.	Kiro CLI	Amazon.com, Inc.のKiro CLIにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-9255	2026-06-8 11:48	2026-05-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
319481	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: xhci: Fix null pointer dereference when host dies Make sure xhci_free_dev() and xhci_kill_endpoint_urbs() do not race and cause n…	CWE-476 NULL Pointer Dereference	CVE-2023-52898	2024-09-13 22:46	2024-08-21	Show	GitHub Exploit DB Packet Storm

319482	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: Add exception protection processing for vd in axi_chan_handle_err function Since there is no protection for vd, a kernel panic wi…	CWE-476 NULL Pointer Dereference	CVE-2023-52899	2024-09-13 22:44	2024-08-21	Show	GitHub Exploit DB Packet Storm

319483	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix general protection fault in nilfs_btree_insert() If nilfs2 reads a corrupted disk image and tries to reads a b-tree n…	NVD-CWE-noinfo	CVE-2023-52900	2024-09-13 22:40	2024-08-21	Show	GitHub Exploit DB Packet Storm

319484	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Check endpoint is valid before dereferencing it When the host controller is not responding, all URBs queued to all end…	CWE-476 NULL Pointer Dereference	CVE-2023-52901	2024-09-13 22:37	2024-08-21	Show	GitHub Exploit DB Packet Storm

319485	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: io_uring: lock overflowing for IOPOLL syzbot reports an issue with overflow filling for IOPOLL: WARNING: CPU: 0 PID: 28 at io_ur…	CWE-667 Improper Locking	CVE-2023-52903	2024-09-13 22:34	2024-08-21	Show	GitHub Exploit DB Packet Storm

319486	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: nommu: fix memory leak in do_mmap() error path The preallocation of the maple tree nodes may leak if the error path to "error_jus…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2023-52902	2024-09-13 22:29	2024-08-21	Show	GitHub Exploit DB Packet Storm

319487	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Fix resource leakage in VF driver unbind resources allocated like mcam entries to support the Ntuple feature and ha…	NVD-CWE-Other	CVE-2023-52905	2024-09-13 22:27	2024-08-21	Show	GitHub Exploit DB Packet Storm

319488	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net/sched: act_mpls: Fix warning during failed attribute validation The 'TCA_MPLS_LABEL' attribute is of 'NLA_U32' type, but has …	NVD-CWE-noinfo	CVE-2023-52906	2024-09-13 22:21	2024-08-21	Show	GitHub Exploit DB Packet Storm

319489	-		-	-	Rejected reason: After careful review of CVE-2024-5203, it has been determined that the issue is not exploitable in real-world scenarios. Moreover, the exploit assumes that the attacker has access to…	-	CVE-2024-5203	2024-09-13 20:15	2024-06-12	Show	GitHub Exploit DB Packet Storm

319490	9.8	CRITICAL Network	learningdigital	orca_hcm	Orca HCM from LEARNING DIGITAL does not properly restrict access to a specific functionality, allowing unauthenticated remote attacker to exploit this functionality to create an account with administ…	NVD-CWE-Other	CVE-2024-8584	2024-09-13 19:15	2024-09-9	Show	GitHub Exploit DB Packet Storm