|
You can search the list of vulnerabilities managed by JVN (Japan Vulnerability Note). |
Update Date:July 1, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1 | 7.5 |
重要
Network |
Drager |
Infinity Kappa ファームウェア Infinity Delta XLファームウェア Infinity Delta ファームウェア |
DragerのInfinity Delta XLファームウェア等の複数製品におけるシステム構成または設定の外部制御に関する脆弱性 New |
CWE-15 CWE-noinfo External Control of System or Configuration Setting noinfo |
CVE-2019-25716 | 2026-07-1 11:00 | 2026-06-1 | Show | GitHub Exploit DB Packet Storm |
| 2 | 4.3 |
警告
Adjacent |
Drager |
Infinity Kappa ファームウェア Infinity Delta XLファームウェア Infinity Delta ファームウェア |
DragerのInfinity Delta XLファームウェア等の複数製品におけるファイルおよびディレクトリ情報の漏えいに関する脆弱性 New |
CWE-538 CWE-noinfo File and Directory Information Exposure noinfo |
CVE-2019-25717 | 2026-07-1 11:00 | 2026-06-2 | Show | GitHub Exploit DB Packet Storm |
| 3 | 7.5 |
重要
Network |
Apache Software Foundation | Apache Cordova InAppBrowser | Apache Software FoundationのApache Cordova InAppBrowserにおける入力確認に関する脆弱性 New |
CWE-20 CWE-noinfo Improper Input Validation noinfo |
CVE-2026-47430 | 2026-07-1 10:58 | 2026-06-8 | Show | GitHub Exploit DB Packet Storm |
| 4 | 5.4 |
警告
Network |
IBM | IBM TRIRIGA Application Platform | IBMのIBM TRIRIGA Application Platformにおけるクロスサイトスクリプティングの脆弱性 New |
CWE-79
Cross-site Scripting |
CVE-2026-11372 | 2026-07-1 10:57 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 5 | 6.8 |
警告
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるパストラバーサルの脆弱性 New |
CWE-35
Path Traversal: '.../...//' |
CVE-2026-24464 | 2026-06-30 11:22 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 6 | 8.7 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における不要な特権による実行に関する脆弱性 New |
CWE-250
Execution with Unnecessary Privileges |
CVE-2026-32643 | 2026-06-30 11:22 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 7 | 8.7 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における不要な特権による実行に関する脆弱性 New |
CWE-250
Execution with Unnecessary Privileges |
CVE-2026-32673 | 2026-06-30 11:22 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 8 | 5.3 |
警告
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における不十分なリソースプールに関する脆弱性 New |
CWE-410
Insufficient Resource Pool |
CVE-2026-34019 | 2026-06-30 11:22 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 9 | 8.7 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるOS コマンドインジェクションの脆弱性 New |
CWE-78
OS Command |
CVE-2026-34176 | 2026-06-30 11:22 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 10 | 6.5 |
警告
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における不適切な権限設定に関する脆弱性 New |
CWE-266
Incorrect Privilege Assignment |
CVE-2026-35062 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 11 | 7.5 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における有効なライフタイム後のリソースの解放の欠如に関する脆弱性 New |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2026-39455 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 12 | 7.5 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における初期化されていないポインタのアクセスに関する脆弱性 New |
CWE-824
Access of Uninitialized Pointer |
CVE-2026-39458 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 13 | 7.2 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における最小権限の違反に関する脆弱性 New |
CWE-272
Least Privilege Violation |
CVE-2026-39459 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 14 | 7.5 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP Application Security Manager (ASM) |
F5 NetworksのBIG-IP Advanced Web Application Firewall (WAF)等の複数製品における未チェックの戻り値に関する脆弱性 New |
CWE-252
Unchecked Return Value |
CVE-2026-40060 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 15 | 7.5 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New |
CWE-770
Allocation of Resources Without Limits or Throttling |
CVE-2026-40423 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 16 | 5.3 |
警告
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における保護されていない代替チャネルに関する脆弱性 New |
CWE-420
Unprotected Alternate Channel |
CVE-2026-40435 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 17 | 6.5 |
警告
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 New |
CWE-732
Incorrect Permission Assignment for Critical Resource |
CVE-2026-40462 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 18 | 7.5 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるバッファサイズの計算の誤りに関する脆弱性 New |
CWE-131
Incorrect Calculation of Buffer Size |
CVE-2026-40618 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 19 | 7.5 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New |
CWE-770
Allocation of Resources Without Limits or Throttling |
CVE-2026-40629 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 20 | 8.7 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 New |
CWE-552
Files or Directories Accessible to External Parties |
CVE-2026-40631 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 21 | 8.7 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるコマンドインジェクションの脆弱性 New |
CWE-77
Command Injection |
CVE-2026-40698 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 22 | 2.7 |
低
Network |
appsmith | appsmith | appsmithにおける複数の脆弱性 New |
CWE-209 CWE-918 CWE-918 Information Exposure Through an Error Message Server-Side Request Forgery (SSRF) Server-Side Request Forgery (SSRF) |
CVE-2026-49979 | 2026-06-30 11:19 | 2026-06-24 | Show | GitHub Exploit DB Packet Storm |
| 23 | 7.2 |
重要
Network |
appsmith | appsmith | appsmithにおける複数の脆弱性 New |
CWE-183 CWE-918 Permissive List of Allowed Inputs Server-Side Request Forgery (SSRF) |
CVE-2026-50189 | 2026-06-29 11:13 | 2026-06-24 | Show | GitHub Exploit DB Packet Storm |
| 24 | 9.9 |
緊急
Network |
appsmith | appsmith | appsmithにおける複数の脆弱性 New |
CWE-1188 CWE-749 Insecure Default Initialization of Resource Exposed Dangerous Method or Function |
CVE-2026-55454 | 2026-06-29 11:11 | 2026-06-24 | Show | GitHub Exploit DB Packet Storm |
| 25 | 9.1 |
緊急
Network |
appsmith | appsmith | appsmithにおけるサーバサイドのリクエストフォージェリの脆弱性 New |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2026-55455 | 2026-06-29 11:11 | 2026-06-24 | Show | GitHub Exploit DB Packet Storm |
| 26 | 7 |
重要
Local |
Presire | qSnapper | PresireのqSnapperにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 New |
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition |
CVE-2026-41045 | 2026-06-29 11:07 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 27 | 7.3 |
重要
Local |
Presire | qSnapper | PresireのqSnapperにおける相対パストラバーサルの脆弱性 New |
CWE-23
Relative Path Traversal |
CVE-2026-41046 | 2026-06-29 11:07 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 28 | 5.5 |
警告
Local |
Presire | qSnapper | PresireのqSnapperにおける複数の脆弱性 New |
CWE-306 CWE-863 Missing Authentication for Critical Function Incorrect Authorization |
CVE-2026-41047 | 2026-06-29 11:07 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 29 | 7.1 |
重要
Local |
Presire | qSnapper | PresireのqSnapperにおける複数の脆弱性 New |
CWE-303 CWE-863 Incorrect Implementation of Authentication Algorithm Incorrect Authorization |
CVE-2026-41048 | 2026-06-29 11:07 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 30 | 7.1 |
重要
Local |
Presire | qSnapper | PresireのqSnapperにおける複数の脆弱性 New |
CWE-303 CWE-863 Incorrect Implementation of Authentication Algorithm Incorrect Authorization |
CVE-2026-41049 | 2026-06-29 11:07 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 31 | 9.1 |
緊急
Network |
IBM | IBM WebSphere Application Server | IBMのIBM WebSphere Application ServerにおけるHTTP リクエストスマグリングに関する脆弱性 |
CWE-444
HTTP Request Smuggling |
CVE-2026-8646 | 2026-06-26 11:52 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 32 | 9.1 |
緊急
Network |
IBM | IBM WebSphere Application Server | IBMのIBM WebSphere Application Serverにおけるサーバサイドのリクエストフォージェリの脆弱性 |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2026-9006 | 2026-06-26 11:51 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 33 | 7.5 |
重要
Network |
IBM | IBM WebSphere Application Server | IBMのIBM WebSphere Application Serverにおけるリソースの枯渇に関する脆弱性 |
CWE-400
Uncontrolled Resource Consumption |
CVE-2026-9071 | 2026-06-26 11:51 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 34 | 7.5 |
重要
Network |
IBM | IBM WebSphere Application Server | IBMのIBM WebSphere Application Serverにおけるリソースの枯渇に関する脆弱性 |
CWE-400
Uncontrolled Resource Consumption |
CVE-2026-9320 | 2026-06-26 11:51 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 35 | 7.3 |
重要
Network |
IBM | IBM WebSphere Application Server | IBMのIBM WebSphere Application Serverにおける認証に関する脆弱性 |
CWE-287
Improper Authentication |
CVE-2026-10845 | 2026-06-26 11:49 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 36 | 4.3 |
警告
Network |
シスコシステムズ | Webex App | シスコシステムズのWebex Appにおけるオープンリダイレクトの脆弱性 |
CWE-601
Open Redirect |
CVE-2026-20178 | 2026-06-23 10:01 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 37 | 6 |
警告
Local |
シスコシステムズ | Umbrella Virtual Appliance | シスコシステムズのUmbrella Virtual Applianceにおける権限管理に関する脆弱性 |
CWE-269
Improper Privilege Management |
CVE-2026-20246 | 2026-06-23 10:01 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 38 | 8.4 |
重要
Local |
マイクロソフト |
Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch… |
Microsoft Office のリモート コードが実行される脆弱性 |
CWE-416 CWE-787 Use After Free Out-of-bounds Write |
CVE-2026-45474 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 39 | 7.8 |
重要
Local |
マイクロソフト |
Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch… |
Microsoft Office のリモート コードが実行される脆弱性 |
CWE-122
Heap-based Buffer Overflow |
CVE-2026-45475 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 40 | 7.5 |
重要
Network |
マイクロソフト |
Microsoft Windows 11 26h1 Microsoft Windows Server 2022 Microsoft Windows 10 22h2 Microsoft Windows 10 1607 Microsoft Wind… |
Windows リモート デスクトップ プロトコル (RDP) の情報漏えいの脆弱性 |
CWE-125
Out-of-bounds Read |
CVE-2026-45639 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 41 | 7.8 |
重要
Local |
マイクロソフト |
Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch… |
Microsoft Office のリモート コードが実行される脆弱性 |
CWE-787 CWE-822 Out-of-bounds Write Untrusted Pointer Dereference |
CVE-2026-45645 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 42 | 7.2 |
重要
Network |
オラクル | Oracle Application Development Framework (Oracle ADF) | オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性 |
CWE-284
Improper Access Control |
CVE-2026-46769 | 2026-06-22 11:55 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 43 | 6.1 |
警告
Network |
オラクル | Oracle Application Development Framework (Oracle ADF) | オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性 |
CWE-284
Improper Access Control |
CVE-2026-46770 | 2026-06-22 11:55 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 44 | 4.1 |
警告
Local |
オラクル | Oracle Application Development Framework (Oracle ADF) | オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性 |
CWE-284
Improper Access Control |
CVE-2026-46771 | 2026-06-22 11:55 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 45 | 4.7 |
警告
Local |
オラクル | Oracle Application Development Framework (Oracle ADF) | オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性 |
CWE-284
Improper Access Control |
CVE-2026-46772 | 2026-06-22 11:55 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 46 | 9.1 |
緊急
Network |
オラクル | Oracle Application Performance Management | オラクルのOracle Application Performance Managementにおけるアクセス制御に関する脆弱性 |
CWE-284
Improper Access Control |
CVE-2026-46858 | 2026-06-22 11:52 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 47 | 9.9 |
緊急
Network |
オラクル | Oracle Applications Manager | オラクルのOracle Applications Managerにおける複数の脆弱性 |
CWE-269 CWE-284 CWE-306 Improper Privilege Management Improper Access Control Missing Authentication for Critical Function |
CVE-2026-46933 | 2026-06-22 11:50 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 48 | 7 |
重要
Local |
マイクロソフト |
Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft 365 Apps Microsoft Office Microsoft Office 2024 Long-Term… |
Microsoft Office クイック実行の特権の昇格の脆弱性 |
CWE-416
Use After Free |
CVE-2026-47293 | 2026-06-22 11:49 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 49 | 7.5 |
重要
Network |
マイクロソフト |
Microsoft Windows 11 26h1 Microsoft Windows Server 2022 Microsoft Windows 10 22h2 Microsoft Windows 10 1607 Microsoft Wind… |
Windows リモート デスクトップ プロトコル (RDP) の情報漏えいの脆弱性 |
CWE-125
Out-of-bounds Read |
CVE-2026-42908 | 2026-06-22 11:37 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 50 | 6.7 |
警告
Network |
F5 Networks |
BIG-IP WebSafe big-ip container ingress services BIG-IP Application Security Manager (ASM) BIG-IP Advanced Web Application Firewal… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-121
Stack-based Buffer Overflow |
CVE-2026-42919 | 2026-06-22 11:37 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |