OS command injection in RadiX AX6600 WiFi 6 Tri-Band Gaming Router JVNRSS Feed - Update Entry By: jvn@jvn.jp 17 June 2026 at 05:00 RadiX AX6600 WiFi 6 Tri-Band Gaming Router provided by Micro-Star International Co., Ltd. contains an OS command injection vulnerability.
ThingsBoard vulnerable to prototype pollution JVNRSS Feed - Update Entry By: jvn@jvn.jp 16 June 2026 at 05:00 ThingsBoard contains a prototype pollution vulnerability.
Improper file access permission settings in the installers for Optical Disc Archive Software for Windows JVNRSS Feed - Update Entry By: jvn@jvn.jp 16 June 2026 at 05:00 Optical Disc Archive Software for Windows provided by Sony Corporation is configured with improper file access permission settings.
Multiple vulnerabilities in Canon EOS Network Setting Tool JVNRSS Feed - Update Entry By: jvn@jvn.jp 16 June 2026 at 04:00 PC Software EOS Network Setting Tool provided by Canon Inc. contains multiple vulnerabilities.
Privilege escalation vulnerability in multiple RICOH and KONICA MINOLTA JAPAN printer drivers JVNRSS Feed - Update Entry By: jvn@jvn.jp 15 June 2026 at 07:00 Multiple printer drivers provided by RICOH and KONICA MINOLTA JAPAN contain a privilege escalation vulnerability.
CamView installer insecurely loads Dynamic Link Libraries JVNRSS Feed - Update Entry By: jvn@jvn.jp 9 June 2026 at 05:00 CamView installer provided by ARUCOM Inc. insecurely loads Dynamic Link Libraries.
Multiple TP-Link products vulnerable to cleartext transmission of sensitive information JVNRSS Feed - Update Entry By: jvn@jvn.jp 5 June 2026 at 05:00 Multiple TP-Link products provided by TP-Link Systems Inc. contain Cleartext Transmission of Sensitive Information (CWE-319) vulnerability.
WordPress Plugin "Zoho Mail for WordPress" vulnerable to cross-site request forgery JVNRSS Feed - Update Entry By: jvn@jvn.jp 3 June 2026 at 05:00 WordPress plugin "Zoho Mail for WordPress" provided by Zoho Corporation contains a cross-site request forgery vulnerability.
TP-Link Archer BE450 and BE7200 vulnerable to OS command injection JVNRSS Feed - Update Entry By: jvn@jvn.jp 2 June 2026 at 04:00 Archer BE450 and BE7200 provided by TP-Link contain an OS command injection vulnerability.
Multiple vulnerabilities in ServerView Agents for Windows JVNRSS Feed - Update Entry By: jvn@jvn.jp 1 June 2026 at 05:00 ServerView Agents for Windows provided by Fsas Technologies Inc. contains multiple vulnerabilities.
Link following vulnerability in Canon My Image Garden for macOS and CUPS Printer Driver for macOS JVNRSS Feed - Update Entry By: jvn@jvn.jp 29 May 2026 at 03:00 My Image Garden for macOS and CUPS Printer Driver for macOS provided by Canon Inc. contain a vulnerability that allows access to unintended files or directories due to improper resolving of links when accessing files.
Jupyter Server vulnerable to open redirect JVNRSS Feed - Update Entry By: jvn@jvn.jp 28 May 2026 at 05:00 Jupyter Server provided by Jupyter Development Team contains an open redirect vulnerability.
NEC Aterm series vulnerable to OS command injection (NV26-003) JVNRSS Feed - Update Entry By: jvn@jvn.jp 25 May 2026 at 07:00 NEC Aterm series products provided by NEC Corporation contain an OS command injection vulnerability.
NEC Aterm series vulnerable to cross-site scripting (NV26-002) JVNRSS Feed - Update Entry By: jvn@jvn.jp 25 May 2026 at 07:00 Aterm series products provided by NEC Corporation contain a cross-site scripting vulnerability.
Multiple vulnerabilities in Trend Micro Endpoint security products for enterprises (May 2026) JVNRSS Feed - Update Entry By: jvn@jvn.jp 21 May 2026 at 09:15 Trend Micro Incorporated has released security updates for Endpoint security products for enterprises.
Movable Type vulnerable to missing authorization JVNRSS Feed - Update Entry By: jvn@jvn.jp 20 May 2026 at 07:00 Movable Type provided by Six Apart Ltd. contains a missing authorization vulnerability.
Android App "RoboForm Password Manager" insufficient validation of Android intents JVNRSS Feed - Update Entry By: jvn@jvn.jp 20 May 2026 at 03:20 Android App "RoboForm Password Manager" provided by Siber Systems, Inc. handles Android intents without sufficient validation.
Multiple vulnerabilities in ELECOM wireless LAN routers and access points (May 2026) JVNRSS Feed - Update Entry By: jvn@jvn.jp 19 May 2026 at 07:45 Multiple wireless LAN routers and access points provided by ELECOM CO.,LTD. contain multiple vulnerabilities.
Multiple vulnerabilities in "Musetheque V4 Information Disclosure for IPKNOWLEDGE" JVNRSS Feed - Update Entry By: jvn@jvn.jp 15 May 2026 at 05:00 Musetheque V4 Information Disclosure for IPKNOWLEDGE provided by Fujitsu Japan Limited contains multiple vulnerabilities.
WPS Office improper access restriction to its named pipe JVNRSS Feed - Update Entry By: jvn@jvn.jp 14 May 2026 at 05:00 WPS Office provided by WPS SOFTWARE PTE. LTD. fails to properly restrict access to its named pipe.