Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
901	8.8	重要 Network	MBS GmbH	Universal Gateway Firmware	MBS GmbHのUniversal Gateway Firmwareにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-35083	2026-06-9 14:11	2026-06-3	Show	GitHub Exploit DB Packet Storm

902	8.8	重要 Network	MBS GmbH	Universal Gateway Firmware	MBS GmbHのUniversal Gateway Firmwareにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-35084	2026-06-9 14:11	2026-06-3	Show	GitHub Exploit DB Packet Storm

903	8.8	重要 Network	MBS GmbH	Universal Gateway Firmware	MBS GmbHのUniversal Gateway Firmwareにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-35085	2026-06-9 14:11	2026-06-3	Show	GitHub Exploit DB Packet Storm

904	7.5	重要 Network	レッドハット GNU Project	Redhat Enterprise Linux For Power Little Endian Els Red Hat Enterprise Linux for IBM z Systems - Extended Updat…	GNU Project等の複数ベンダの製品におけるAPI への入力に対する未定義の動作に関する脆弱性	CWE-475 API への入力に対する未定義の動作	CVE-2026-42009	2026-06-9 14:11	2026-05-18	Show	GitHub Exploit DB Packet Storm

905	7.8	重要 Local	Thermalright	TR-VISION HOME	ThermalrightのTR-VISION HOMEにおける信頼できない制御領域からの機能の組み込みに関する脆弱性	CWE-829 信頼性のない制御領域からの機能の組み込み	CVE-2026-4255	2026-06-9 14:11	2026-03-16	Show	GitHub Exploit DB Packet Storm

906	6.5	警告 Network	レッドハット	Red Hat OpenShift Container Platform OpenShift Router	レッドハットのRed Hat OpenShift Container Platform等の複数製品におけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42965	2026-06-9 14:11	2026-05-29	Show	GitHub Exploit DB Packet Storm

907	8.7	重要 Network	SUSE	Local Path Provisioner	SUSEのLocal Path Provisionerにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-44543	2026-06-9 14:11	2026-05-28	Show	GitHub Exploit DB Packet Storm

908	9.6	緊急 Network	Guardrails AI	Guardrails AI	Guardrails AIにおける埋め込まれた悪意のあるコードに関する脆弱性	CWE-506 埋め込まれた悪意のあるコード	CVE-2026-45758	2026-06-9 14:11	2026-06-5	Show	GitHub Exploit DB Packet Storm

909	7.5	重要 Network	レッドハット	Red Hat OpenShift Container Platform OpenShift Router	レッドハットのRed Hat OpenShift Container Platform等の複数製品における認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2026-46579	2026-06-9 14:10	2026-05-29	Show	GitHub Exploit DB Packet Storm

910	5.3	警告 Network	Cosimo	Net::statsd	CosimoのNet::statsdにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-46719 CVE-2026-46720 CVE-2026-46739	2026-06-9 14:10	2026-06-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
310291	-		opera	opera_browser	Opera before 10.63 allows user-assisted remote web servers to cause a denial of service (application crash) by sending a redirect during the saving of a file.	CWE-20 Improper Input Validation	CVE-2010-4048	2024-11-21 10:20	2010-10-22	Show	GitHub Exploit DB Packet Storm

310292	-		opera	opera_browser	Opera before 10.63 does not properly select the security context of JavaScript code associated with an error page, which allows user-assisted remote attackers to conduct cross-site scripting (XSS) at…	CWE-79 Cross-site Scripting	CVE-2010-4047	2024-11-21 10:20	2010-10-22	Show	GitHub Exploit DB Packet Storm

310293	-		opera	opera_browser	Opera before 10.63 does not properly verify the origin of video content, which allows remote attackers to obtain sensitive information by using a video stream as HTML5 canvas content.	CWE-200 Information Exposure	CVE-2010-4046	2024-11-21 10:20	2010-10-22	Show	GitHub Exploit DB Packet Storm

310294	-		opera	opera_browser	Opera before 10.63 does not properly restrict web script in unspecified circumstances involving reloads and redirects, which allows remote attackers to spoof the Address Bar, conduct cross-site scrip…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-4045	2024-11-21 10:20	2010-10-22	Show	GitHub Exploit DB Packet Storm

310295	-		opera	opera_browser	Opera before 10.63 does not ensure that the portion of a URL shown in the Address Bar contains the beginning of the URL, which allows remote attackers to spoof URLs by changing a window's size.	CWE-20 Improper Input Validation	CVE-2010-4044	2024-11-21 10:20	2010-10-22	Show	GitHub Exploit DB Packet Storm

310296	-		opera	opera_browser	Opera before 10.63 does not prevent interpretation of a cross-origin document as a CSS stylesheet when the document lacks a CSS token sequence, which allows remote attackers to obtain sensitive infor…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-4043	2024-11-21 10:20	2010-10-22	Show	GitHub Exploit DB Packet Storm

310297	9.8	CRITICAL Network	google opensuse	chrome opensuse	Google Chrome before 7.0.517.41 does not properly handle element maps, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to "sta…	CWE-20 Improper Input Validation	CVE-2010-4042	2024-11-21 10:20	2010-10-22	Show	GitHub Exploit DB Packet Storm

310298	9.8	CRITICAL Network	google	chrome	The sandbox implementation in Google Chrome before 7.0.517.41 on Linux does not properly constrain worker processes, which might allow remote attackers to bypass intended access restrictions via unsp…	NVD-CWE-noinfo	CVE-2010-4041	2024-11-21 10:20	2010-10-22	Show	GitHub Exploit DB Packet Storm

310299	7.8	HIGH Local	google debian opensuse	chrome debian_linux opensuse	Google Chrome before 7.0.517.41 does not properly handle animated GIF images, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact …	CWE-20 Improper Input Validation	CVE-2010-4040	2024-11-21 10:20	2010-10-22	Show	GitHub Exploit DB Packet Storm

310300	9.8	CRITICAL Network	google	chrome	Google Chrome before 7.0.517.41 on Linux does not properly set the PATH environment variable, which has unspecified impact and attack vectors.	NVD-CWE-noinfo	CVE-2010-4039	2024-11-21 10:20	2010-10-22	Show	GitHub Exploit DB Packet Storm