Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
961	7.8	重要 Local	GNU Project レッドハット	Red Hat Hardened Images Red Hat OpenShift Container Platform Red Hat Enterprise Linux GNU Binutils	GNU Project等の複数ベンダの製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-6846	2026-05-22 10:52	2026-04-22	Show	GitHub Exploit DB Packet Storm

962	8.1	重要 Network	レッドハット	Quay	レッドハットのQuayにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-6848	2026-05-22 10:52	2026-04-22	Show	GitHub Exploit DB Packet Storm

963	7.1	重要 Local	レッドハット	Red Hat Enterprise Linux AI InstructLab	レッドハットのRed Hat Enterprise Linux AI等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-6855	2026-05-22 10:52	2026-04-22	Show	GitHub Exploit DB Packet Storm

964	6.5	警告 Adjacent	Mozilla Foundation	Mozilla Firefox	Mozilla FoundationのMozilla Firefoxにおける複数の脆弱性	CWE-200 CWE-306	CVE-2026-8706	2026-05-22 10:52	2026-05-19	Show	GitHub Exploit DB Packet Storm

965	3.1	低 Network	EMQX	emqx	EMQXのemqxにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-8741	2026-05-22 10:52	2026-05-17	Show	GitHub Exploit DB Packet Storm

966	9.1	緊急 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における過度に許容されるクロスドメインホワイトリストに関する脆弱性	CWE-942 過度に許容されるクロスドメインホワイトリスト	CVE-2026-8948	2026-05-22 10:52	2026-05-19	Show	GitHub Exploit DB Packet Storm

967	7.5	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-8949	2026-05-22 10:52	2026-05-19	Show	GitHub Exploit DB Packet Storm

968	9.3	緊急 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-8950	2026-05-22 10:52	2026-05-19	Show	GitHub Exploit DB Packet Storm

969	6.5	警告 Network	Mozilla Foundation	Mozilla Firefox	Mozilla FoundationのMozilla Firefoxにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2026-8951	2026-05-22 10:52	2026-05-19	Show	GitHub Exploit DB Packet Storm

970	8.8	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-8952	2026-05-22 10:52	2026-05-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311041	7.8	HIGH Local	adobe	illustrator	Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this iss…	CWE-787 Out-of-bounds Write	CVE-2024-45114	2024-11-14 23:26	2024-11-13	Show	GitHub Exploit DB Packet Storm

311042	5.5	MEDIUM Local	adobe	illustrator	Illustrator versions 28.7.1 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to…	CWE-476 NULL Pointer Dereference	CVE-2024-47457	2024-11-14 23:25	2024-11-13	Show	GitHub Exploit DB Packet Storm

311043	5.5	MEDIUM Local	adobe	illustrator	Illustrator versions 28.7.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass …	CWE-125 Out-of-bounds Read	CVE-2024-47456	2024-11-14 23:25	2024-11-13	Show	GitHub Exploit DB Packet Storm

311044	5.5	MEDIUM Local	adobe	bridge	Bridge versions 13.0.9, 14.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability…	CWE-476 NULL Pointer Dereference	CVE-2024-47458	2024-11-14 23:24	2024-11-13	Show	GitHub Exploit DB Packet Storm

311045	7.5	HIGH Network	gaizhenbiao	chuanhuchatgpt	A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240628 allows for a Denial of Service (DOS) attack. When uploading a file, if an attacker appends a large number of characters to the end of a …	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2024-7807	2024-11-14 23:15	2024-10-29	Show	GitHub Exploit DB Packet Storm

311046	8.1	HIGH Network	lunary	lunary	In version 1.3.2 of lunary-ai/lunary, an Insecure Direct Object Reference (IDOR) vulnerability exists. A user can view or delete external users by manipulating the 'id' parameter in the request URL. …	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-7474	2024-11-14 23:15	2024-10-29	Show	GitHub Exploit DB Packet Storm

311047	5.9	MEDIUM Network	mudler	localai	mudler/localai version 2.17.1 is vulnerable to a Timing Attack. This type of side-channel attack allows an attacker to compromise the cryptosystem by analyzing the time taken to execute cryptographic…	CWE-203 Information Exposure Through Discrepancy	CVE-2024-7010	2024-11-14 23:15	2024-10-29	Show	GitHub Exploit DB Packet Storm

311048	5.5	MEDIUM Local	adobe	bridge	Bridge versions 13.0.9, 14.1.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypa…	CWE-125 Out-of-bounds Read	CVE-2024-45147	2024-11-14 22:58	2024-11-13	Show	GitHub Exploit DB Packet Storm

311049	6.8	MEDIUM Adjacent	zyxel	gs1900-8_firmware gs1900-8hp_firmware gs1900-10hp_firmware gs1900-16_firmware gs1900-24_firmware gs1900-24e_firmware gs1900-24ep_firmware gs1900-24hpv2_firmware gs1900-48_firm…	A post-authentication command injection vulnerability in the CGI program in the Zyxel GS1900-48 switch firmware version V2.80(AAHN.1)C0 and earlier could allow an authenticated, LAN-based attacker wi…	CWE-78 OS Command	CVE-2024-8881	2024-11-14 22:51	2024-11-12	Show	GitHub Exploit DB Packet Storm

311050	4.5	MEDIUM Adjacent	zyxel	gs1900-8_firmware gs1900-8hp_firmware gs1900-10hp_firmware gs1900-16_firmware gs1900-24_firmware gs1900-24e_firmware gs1900-24ep_firmware gs1900-24hpv2_firmware gs1900-48_firm…	A buffer overflow vulnerability in the CGI program in the Zyxel GS1900-48 switch firmware version V2.80(AAHN.1)C0 and earlier could allow an authenticated, LAN-based attacker with administrator privi…	CWE-120 Classic Buffer Overflow	CVE-2024-8882	2024-11-14 22:42	2024-11-12	Show	GitHub Exploit DB Packet Storm