Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
811	6.1	警告 Physics	デル	ThinOS	デルのThinOSにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-40713	2026-06-8 11:47	2026-06-2	Show	GitHub Exploit DB Packet Storm

812	7.8	重要 Local	デル	ThinOS	デルのThinOSにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-40715	2026-06-8 11:47	2026-06-2	Show	GitHub Exploit DB Packet Storm

813	6.1	警告 Network	Authentik Security Inc	authentik	Authentik Security Incのauthentikにおけるオープンリダイレクトの脆弱性 New	CWE-601 オープンリダイレクト	CVE-2026-41569	2026-06-8 11:47	2026-06-2	Show	GitHub Exploit DB Packet Storm

814	7.5	重要 Network	Authentik Security Inc	authentik	Authentik Security Incのauthentikにおけるデータの信頼性についての不十分な検証に関する脆弱性 New	CWE-345 データの信頼性についての不十分な検証	CVE-2026-41577	2026-06-8 11:47	2026-06-2	Show	GitHub Exploit DB Packet Storm

815	8.1	重要 Network	Shopify	React Router	ShopifyのReact Routerにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-42211	2026-06-8 11:47	2026-06-2	Show	GitHub Exploit DB Packet Storm

816	8.1	重要 Network	budibase	budibase	budibaseにおけるHttpOnly 属性のない重要な Cookie に関する脆弱性 New	CWE-1004 HttpOnly 属性のない重要な Cookie	CVE-2026-42239	2026-06-8 11:47	2026-05-7	Show	GitHub Exploit DB Packet Storm

817	7.5	重要 Network	Python Software Foundation	Python	Python Software FoundationのPythonにおける再帰制御に関する脆弱性 New	CWE-674 不適切な再帰制御	CVE-2026-4224	2026-06-8 11:47	2026-03-16	Show	GitHub Exploit DB Packet Storm

818	7.1	重要 Network	Auth0 Inc.	auth0.js	Auth0 Inc.のauth0.jsにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-42280	2026-06-8 11:47	2026-05-27	Show	GitHub Exploit DB Packet Storm

819	9.3	緊急 Network	Authentik Security Inc	authentik	Authentik Security Incのauthentikにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42849	2026-06-8 11:47	2026-06-2	Show	GitHub Exploit DB Packet Storm

820	8.3	重要 Adjacent	MacGregor	Interschalt VDR G4e Firmware	MacGregorのInterschalt VDR G4e Firmwareにおけるハードコードされた認証情報の使用に関する脆弱性 New	CWE-798 ハードコードされた認証情報の使用	CVE-2026-42929	2026-06-8 11:47	2026-05-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3021	3.3	LOW Local	-	-	A vulnerability was detected in Assimp up to 6.0.4. Affected is the function glTF2Importer::ImportEmbeddedTextures in the library code/AssetLib/glTF2/glTF2Importer.cpp of the component TF File Handle…	CWE-404 CWE-476 Improper Resource Shutdown or Release NULL Pointer Dereference	CVE-2026-10197	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

3022	3.3	LOW Local	-	-	A flaw has been found in Assimp up to 6.0.4. Affected by this vulnerability is the function Assimp::glTFImporter::ImportMeshes of the file glTFImporter.cpp of the component glTFImporter. This manipul…	CWE-404 CWE-476 Improper Resource Shutdown or Release NULL Pointer Dereference	CVE-2026-10198	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

3023	3.3	LOW Local	-	-	A vulnerability has been found in Assimp up to 6.0.4. Affected by this issue is the function glTF2::LazyDict in the library glTF2Asset.h. Such manipulation of the argument operator[] leads to null po…	CWE-404 CWE-476 Improper Resource Shutdown or Release NULL Pointer Dereference	CVE-2026-10199	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

3024	5.3	MEDIUM Local	-	-	A vulnerability was found in Assimp up to 6.0.4. This affects the function glTFCommon::CopyValue in the library glTFCommon.h of the component 4x4 Matrix Parser. Performing a manipulation results in h…	CWE-119 CWE-122 Incorrect Access of Indexable Resource ('Range Error') Heap-based Buffer Overflow	CVE-2026-10200	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

3025	3.3	LOW Local	-	-	A vulnerability was determined in Assimp up to 6.0.4. This vulnerability affects the function FBXExporter::WriteObjects of the file FBXExporter.cpp of the component UV Channel Handler. Executing a ma…	CWE-369 CWE-404 Divide By Zero Improper Resource Shutdown or Release	CVE-2026-10201	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

3026	6.3	MEDIUM Network	-	-	A vulnerability was identified in OFCMS 1.1.3. This issue affects the function Query of the file \ofcms-admin\src\main\java\com\ofsoft\cms\admin\controller\system\SystemDictController.java of the com…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-10202	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

3027	6.3	MEDIUM Network	-	-	A security flaw has been discovered in OFCMS 1.1.3. Impacted is the function Query of the file \ofcms-admin\src\main\java\com\ofsoft\cms\admin\controller\system\SystemParamController.java of the comp…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-10203	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

3028	6.3	MEDIUM Network	-	-	A weakness has been identified in OFCMS 1.1.3. The affected element is the function Query of the file \ofcms-admin\src\main\java\com\ofsoft\cms\admin\controller\system\SysUserController.java of the c…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-10204	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

3029	6.3	MEDIUM Network	-	-	A security vulnerability has been detected in Metasoft 美特软件 MetaCRM 6.4.0. The impacted element is an unknown function of the file develop/systparam/softlogo/upload.jsp. Such manipulation leads to un…	CWE-284 CWE-434 Improper Access Control Unrestricted Upload of File with Dangerous Type	CVE-2026-10205	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm

3030	8.8	HIGH Network	-	-	A vulnerability was detected in D-Link DI-8400 up to 16.07.26A1. This affects an unknown function of the file /dbsrv.asp. Performing a manipulation of the argument str results in stack-based buffer o…	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-10206	2026-06-2 00:15	2026-06-1	Show	GitHub Exploit DB Packet Storm