NVD脆弱性情報トップ

検索メニュー表示

ベンダー名
プロダクト・サービス名
タイトル
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
公表日降順
更新日降順
表示数

NVD（National Vulnerability Database）で管理されている脆弱性の一覧を検索することが出来ます。
JVN（Japan Vulnerability Note）より先に脆弱性情報が更新される事が多いため、JVNに未記載の脆弱性が更新されている場合があります。

JVN（Japan Vulnerability Note）に関連した脆弱性がある場合は詳細画面で情報を表示します。

CWEで検索する場合は、CWE概要を参照して、CWE番号を確認してください。

CRITICAL
HIGH
MEDIUM
LOW

更新日:2026年6月13日4:20

No	CVSS	レベル攻撃区分	ベンダー名	プロダクト名	タイトル	CWE	CVE	更新日	公表日	影響表示	Exploit PoC 検索
1001	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-48256	2026-06-10 23:50	2026-06-10	表示	GitHub Exploit DB Packet Storm

1002	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-48258	2026-06-10 23:50	2026-06-10	表示	GitHub Exploit DB Packet Storm

1003	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-48264	2026-06-10 23:50	2026-06-10	表示	GitHub Exploit DB Packet Storm

1004	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-48265	2026-06-10 23:49	2026-06-10	表示	GitHub Exploit DB Packet Storm

1005	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-48266	2026-06-10 23:49	2026-06-10	表示	GitHub Exploit DB Packet Storm

1006	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-48268	2026-06-10 23:49	2026-06-10	表示	GitHub Exploit DB Packet Storm

1007	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-48271	2026-06-10 23:48	2026-06-10	表示	GitHub Exploit DB Packet Storm

1008	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-48280	2026-06-10 23:48	2026-06-10	表示	GitHub Exploit DB Packet Storm

1009	3.5	LOW ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. A low-privileged atta…	CWE-20 不適切な入力確認	CVE-2026-48288	2026-06-10 23:48	2026-06-10	表示	GitHub Exploit DB Packet Storm

1010	3.5	LOW ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. A low-privileged atta…	CWE-20 不適切な入力確認	CVE-2026-48289	2026-06-10 23:47	2026-06-10	表示	GitHub Exploit DB Packet Storm

1011	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-48297	2026-06-10 23:47	2026-06-10	表示	GitHub Exploit DB Packet Storm

1012	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-48299	2026-06-10 23:47	2026-06-10	表示	GitHub Exploit DB Packet Storm

1013	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-48300	2026-06-10 23:47	2026-06-10	表示	GitHub Exploit DB Packet Storm

1014	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-48301	2026-06-10 23:46	2026-06-10	表示	GitHub Exploit DB Packet Storm

1015	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-48304	2026-06-10 23:45	2026-06-10	表示	GitHub Exploit DB Packet Storm

1016	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47974	2026-06-10 23:33	2026-06-10	表示	GitHub Exploit DB Packet Storm

1017	7.3	HIGH ネットワーク	-	-	Improper comparison with the certificates trusted list in S2OPC allows an attacker well-formed untrusted certificate to be considered trusted	CWE-295 不正な証明書検証	CVE-2026-9758	2026-06-10 23:16	2026-06-10	表示	GitHub Exploit DB Packet Storm

1018	-	-	-	-	Jenkins 2.483 through 2.567 (both inclusive), LTS 2.492.1 through 2.555.2 (both inclusive) does not escape the user-provided description of a generic offline cause that could be set through the `POST…	-	CVE-2026-53441	2026-06-10 23:16	2026-06-10	表示	GitHub Exploit DB Packet Storm

1019	7.7	HIGH ネットワーク	-	-	Hermes WebUI before version 0.51.296 contains a workspace boundary bypass vulnerability that allows authenticated attackers to circumvent blocked-root path checks by exploiting an early return in the…	CWE-22 パス・トラバーサル	CVE-2026-49957	2026-06-10 23:16	2026-06-10	表示	GitHub Exploit DB Packet Storm

1020	5.4	MEDIUM ネットワーク	-	-	Ellucian Banner Self-Service before the April T2 release (2025-04-23) contains a stored cross-site scripting vulnerability in the course search functionality that allows authenticated Banner ERP user…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47106	2026-06-10 23:16	2026-06-10	表示	GitHub Exploit DB Packet Storm

1021	7.8	HIGH ローカル	-	-	LMDeploy is a toolkit for compressing, deploying, and serving large language models. In versions 0.12.3 and prior, LMDeploy is vulnerable to arbitrary code execution through hardcoded "trust_remote_c…	CWE-94 コード・インジェクション	CVE-2026-46432	2026-06-10 23:16	2026-06-10	表示	GitHub Exploit DB Packet Storm

1022	-	-	-	-	Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and fu…	CWE-20 不適切な入力確認	CVE-2026-0415	2026-06-10 23:16	2026-06-10	表示	GitHub Exploit DB Packet Storm

1023	-	-	-	-	Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated administrators connected to the local network to make unauthorized modification of router software and fu…	CWE-94 コード・インジェクション	CVE-2026-0414	2026-06-10 23:16	2026-06-10	表示	GitHub Exploit DB Packet Storm

1024	7.5	HIGH ネットワーク	-	-	image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanently block the Node.js event loop by supplying a specially crafted ICNS image buffer. Attack…	CWE-835 無限ループ	CVE-2025-71330	2026-06-10 23:16	2026-06-10	表示	GitHub Exploit DB Packet Storm

1025	7.5	HIGH ネットワーク	-	-	image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanently block the Node.js event loop by supplying a specially crafted image buffer with a zero-…	CWE-835 無限ループ	CVE-2025-71329	2026-06-10 23:16	2026-06-10	表示	GitHub Exploit DB Packet Storm

1026	7.5	HIGH ネットワーク	-	-	image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanently block the Node.js event loop by supplying a specially crafted image buffer with a zero-…	CWE-835 無限ループ	CVE-2025-71319	2026-06-10 23:16	2026-06-10	表示	GitHub Exploit DB Packet Storm

1027	6.1	MEDIUM ネットワーク	apache	answer	Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. Timeline-related APIs lacked proper authorization …	CWE-359 認可されていないアクターへの個人情報の漏えい	CVE-2026-25699	2026-06-10 22:38	2026-06-9	表示	GitHub Exploit DB Packet Storm

1028	6.5	MEDIUM ネットワーク	apache	answer	Unrestricted Upload of File with Dangerous Type vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. A crafted TIFF image could trigger excessive memory allocation durin…	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2026-33582	2026-06-10 22:37	2026-06-9	表示	GitHub Exploit DB Packet Storm

1029	6.5	MEDIUM ネットワーク	apache	answer	Unrestricted Upload of File with Dangerous Type vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. The server did not sufficiently validate user-supplied image URLs, a…	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2026-34031	2026-06-10 22:28	2026-06-9	表示	GitHub Exploit DB Packet Storm

1030	6.5	MEDIUM ネットワーク	apache	answer	Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. The unlisted question feature did not enforce access rest…	CWE-200 情報漏えい	CVE-2026-34905	2026-06-10 22:28	2026-06-9	表示	GitHub Exploit DB Packet Storm

1031	6.1	MEDIUM ネットワーク	apache	answer	Improper Neutralization of Alternate XSS Syntax vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. AI-generated response content was rendered in the browser without pr…	CWE-87 代替 XSS 構文の不適切な無効化	CVE-2026-25688	2026-06-10 22:12	2026-06-9	表示	GitHub Exploit DB Packet Storm

1032	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47989	2026-06-10 22:08	2026-06-10	表示	GitHub Exploit DB Packet Storm

1033	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47987	2026-06-10 22:08	2026-06-10	表示	GitHub Exploit DB Packet Storm

1034	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47986	2026-06-10 22:08	2026-06-10	表示	GitHub Exploit DB Packet Storm

1035	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47985	2026-06-10 22:08	2026-06-10	表示	GitHub Exploit DB Packet Storm

1036	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47983	2026-06-10 22:08	2026-06-10	表示	GitHub Exploit DB Packet Storm

1037	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47982	2026-06-10 22:08	2026-06-10	表示	GitHub Exploit DB Packet Storm

1038	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47981	2026-06-10 22:08	2026-06-10	表示	GitHub Exploit DB Packet Storm

1039	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47980	2026-06-10 22:08	2026-06-10	表示	GitHub Exploit DB Packet Storm

1040	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47978	2026-06-10 22:08	2026-06-10	表示	GitHub Exploit DB Packet Storm

1041	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47977	2026-06-10 22:08	2026-06-10	表示	GitHub Exploit DB Packet Storm

1042	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47975	2026-06-10 22:07	2026-06-10	表示	GitHub Exploit DB Packet Storm

1043	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47973	2026-06-10 22:07	2026-06-10	表示	GitHub Exploit DB Packet Storm

1044	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47972	2026-06-10 22:07	2026-06-10	表示	GitHub Exploit DB Packet Storm

1045	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47970	2026-06-10 22:06	2026-06-10	表示	GitHub Exploit DB Packet Storm

1046	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47966	2026-06-10 22:06	2026-06-10	表示	GitHub Exploit DB Packet Storm

1047	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47962	2026-06-10 22:06	2026-06-10	表示	GitHub Exploit DB Packet Storm

1048	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47958	2026-06-10 22:05	2026-06-10	表示	GitHub Exploit DB Packet Storm

1049	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47957	2026-06-10 22:04	2026-06-10	表示	GitHub Exploit DB Packet Storm

1050	5.4	MEDIUM ネットワーク	adobe	experience_manager	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject ma…	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-47956	2026-06-10 22:04	2026-06-10	表示	GitHub Exploit DB Packet Storm