Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
961 7.8 重要
Local 		GNU Project
レッドハット		 Red Hat Hardened Images
Red Hat OpenShift Container Platform
Red Hat Enterprise Linux
GNU Binutils 		GNU Project等の複数ベンダの製品におけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-6846 2026-05-22 10:52 2026-04-22 Show GitHub Exploit DB Packet Storm
962 8.1 重要
Network 		レッドハット Quay レッドハットのQuayにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2026-6848 2026-05-22 10:52 2026-04-22 Show GitHub Exploit DB Packet Storm
963 7.1 重要
Local 		レッドハット Red Hat Enterprise Linux AI
InstructLab 		レッドハットのRed Hat Enterprise Linux AI等の複数製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-6855 2026-05-22 10:52 2026-04-22 Show GitHub Exploit DB Packet Storm
964 6.5 警告
Adjacent 		Mozilla Foundation Mozilla Firefox Mozilla FoundationのMozilla Firefoxにおける複数の脆弱性 CWE-200
CWE-306
CVE-2026-8706 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
965 3.1
Network 		EMQX emqx EMQXのemqxにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2026-8741 2026-05-22 10:52 2026-05-17 Show GitHub Exploit DB Packet Storm
966 9.1 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における過度に許容されるクロスドメインホワイトリストに関する脆弱性 CWE-942
過度に許容されるクロスドメインホワイトリスト 		CVE-2026-8948 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
967 7.5 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-8949 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
968 9.3 緊急
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-8950 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
969 6.5 警告
Network 		Mozilla Foundation Mozilla Firefox Mozilla FoundationのMozilla Firefoxにおけるスプーフィングによる認証回避に関する脆弱性 CWE-290
スプーフィングによる認証回避 		CVE-2026-8951 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
970 8.8 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-8952 2026-05-22 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311021 - - - Out-of-bounds read in some Intel(R) VPL software before version 24.1.4 may allow an authenticated user to potentially enable information disclosure via local access. CWE-125
Out-of-bounds Read 		CVE-2024-28051 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311022 - - - Improper input validation in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi wireless products before version 23.40 may allow an unauthenticated user to enable denia… - CVE-2024-28049 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311023 - - - NULL pointer dereference in some Intel(R) VPL software before version 24.1.4 may allow an authenticated user to potentially enable denial of service via local access. CWE-395
 Use of NullPointerException Catch to Detect NULL Pointer Dereference 		CVE-2024-28030 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311024 - - - Improper input validation in some Intel(R) Neural Compressor software before version v3.0 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. - CVE-2024-28028 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311025 - - - Improper access control in some Intel(R) Granulate(TM) software before version 4.30.1 may allow a authenticated user to potentially enable escalation of privilege via local access. CWE-284
Improper Access Control 		CVE-2024-27200 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311026 - - - Uncontrolled search path in some Intel(R) Rendering Toolkit software before version 2024.1.0 may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-427
 Uncontrolled Search Path Element 		CVE-2024-26017 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311027 - - - Incorrect default permissions for some Intel(R) Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via l… CWE-276
Incorrect Default Permissions  		CVE-2024-25647 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311028 - - - Insufficient control flow management in UEFI firmware for some Intel(R) Xeon(R) Processors may allow an authenticated user to enable denial of service via local access. CWE-691
 Insufficient Control Flow Management 		CVE-2024-25565 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311029 - - - Improper initialization in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi before version 23.40 may allow a privileged user to potentially enable information disclos… CWE-665
 Improper Initialization 		CVE-2024-25563 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311030 - - - Exposure of resource to wrong sphere in some Intel(R) processors with Intel(R) ACTM may allow a privileged user to potentially enable escalation of privilege via local access. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2024-24985 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm