脆弱性一覧

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

脆弱性一覧

You can search the list of vulnerabilities managed by JVN (Japan Vulnerability Note).
If there is a vulnerability related to the NVD (National Vulnerability Database), the information will be displayed on the detail page.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

Update Date:June 24, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1	7.2	重要 Network	オラクル	Oracle Application Development Framework (Oracle ADF)	オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性 New	CWE-284 Improper Access Control	CVE-2026-46769	2026-06-22 11:55	2026-06-17	Show	GitHub Exploit DB Packet Storm

2	6.1	警告 Network	オラクル	Oracle Application Development Framework (Oracle ADF)	オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性 New	CWE-284 Improper Access Control	CVE-2026-46770	2026-06-22 11:55	2026-06-17	Show	GitHub Exploit DB Packet Storm

3	4.1	警告 Local	オラクル	Oracle Application Development Framework (Oracle ADF)	オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性 New	CWE-284 Improper Access Control	CVE-2026-46771	2026-06-22 11:55	2026-06-17	Show	GitHub Exploit DB Packet Storm

4	4.7	警告 Local	オラクル	Oracle Application Development Framework (Oracle ADF)	オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性 New	CWE-284 Improper Access Control	CVE-2026-46772	2026-06-22 11:55	2026-06-17	Show	GitHub Exploit DB Packet Storm

5	9.1	緊急 Network	オラクル	Oracle Application Performance Management	オラクルのOracle Application Performance Managementにおけるアクセス制御に関する脆弱性 New	CWE-284 Improper Access Control	CVE-2026-46858	2026-06-22 11:52	2026-06-17	Show	GitHub Exploit DB Packet Storm

6	9.9	緊急 Network	オラクル	Oracle Applications Manager	オラクルのOracle Applications Managerにおける複数の脆弱性 New	CWE-269 CWE-284 CWE-306 Improper Privilege Management Improper Access Control Missing Authentication for Critical Function	CVE-2026-46933	2026-06-22 11:50	2026-06-17	Show	GitHub Exploit DB Packet Storm

7	6.7	警告 Network	F5 Networks	BIG-IP WebSafe big-ip container ingress services BIG-IP Application Security Manager (ASM) BIG-IP Advanced Web Application Firewal…	F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるスタックベースのバッファオーバーフローの脆弱性 New	CWE-121 Stack-based Buffer Overflow	CVE-2026-42919	2026-06-22 11:37	2026-05-13	Show	GitHub Exploit DB Packet Storm

8	7.5	重要 Network	F5 Networks	BIG-IP WebSafe big-ip container ingress services BIG-IP Application Security Manager (ASM) BIG-IP Advanced Web Application Firewal…	F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における無限ループに関する脆弱性 New	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-42920	2026-06-22 11:37	2026-05-13	Show	GitHub Exploit DB Packet Storm

9	8.7	重要 Network	F5 Networks	BIG-IP WebSafe big-ip container ingress services BIG-IP Application Security Manager (ASM) BIG-IP Advanced Web Application Firewal…	F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるOS コマンドインジェクションの脆弱性 New	CWE-78 OS Command	CVE-2026-42924	2026-06-22 11:37	2026-05-13	Show	GitHub Exploit DB Packet Storm

10	8.7	重要 Network	F5 Networks	BIG-IP WebSafe big-ip container ingress services BIG-IP Application Security Manager (ASM) BIG-IP Advanced Web Application Firewal…	F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるパストラバーサルの脆弱性 New	CWE-35 Path Traversal: '.../...//'	CVE-2026-42930	2026-06-22 11:37	2026-05-13	Show	GitHub Exploit DB Packet Storm

11	6.5	警告 Network	F5 Networks	BIG-IP WebSafe big-ip container ingress services BIG-IP Application Security Manager (ASM) BIG-IP Advanced Web Application Firewal…	F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 New	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2026-42937	2026-06-22 11:37	2026-05-13	Show	GitHub Exploit DB Packet Storm

12	5.3	警告 Network	kjd	internationalized domain names in applications	kjdのinternationalized domain names in applicationsにおける非効率的な正規表現の複雑さに関する脆弱性	CWE-1333 Inefficient Regular Expression Complexity	CVE-2026-45409	2026-06-16 13:37	2026-06-5	Show	GitHub Exploit DB Packet Storm

13	-	-	日立	Hitachi Web Server - Custom Edition uCosminexus Developer Professional for Plug-in Hitachi Application Server for Developers …	Cosminexus HTTP ServerおよびHitachi Web Serverにおける脆弱性	-	CVE-2025-65082	2026-06-10 11:05	2026-06-9	Show	GitHub Exploit DB Packet Storm

14	9.1	緊急 Network	IBM	IBM WebSphere Application Server	IBMのIBM WebSphere Application Serverにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 Authentication Bypass by Spoofing	CVE-2026-8644	2026-06-8 11:44	2026-06-1	Show	GitHub Exploit DB Packet Storm

15	9	緊急 Network	IBM	IBM WebSphere Application Server	IBMのIBM WebSphere Application Serverにおけるコードインジェクションの脆弱性	CWE-94 Code Injection	CVE-2026-9311	2026-06-8 11:44	2026-06-1	Show	GitHub Exploit DB Packet Storm

16	9	緊急 Network	IBM	IBM WebSphere Application Server	IBMのIBM WebSphere Application Serverにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 Deserialization of Untrusted Data	CVE-2026-9319	2026-06-8 11:44	2026-06-1	Show	GitHub Exploit DB Packet Storm

17	8.5	重要 Network	IBM	IBM WebSphere Application Server	IBMのIBM WebSphere Application Serverにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 Deserialization of Untrusted Data	CVE-2026-9330	2026-06-8 11:44	2026-06-1	Show	GitHub Exploit DB Packet Storm

18	6.4	警告 Network		-	SAPのSAP Netweaver Application Server ABAPにおける認証の欠如に関する脆弱性	CWE-862 Missing Authorization	CVE-2026-24309	2026-06-5 10:49	2026-03-10	Show	GitHub Exploit DB Packet Storm

19	4.3	警告 Network		-	SAPのSAP Netweaver Application Server ABAPにおける認証の欠如に関する脆弱性	CWE-862 Missing Authorization	CVE-2026-24310	2026-06-5 10:49	2026-03-10	Show	GitHub Exploit DB Packet Storm

20	6.4	警告 Network		-	SAPのSAP Netweaver Application Server ABAPにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-24316	2026-06-5 10:48	2026-03-10	Show	GitHub Exploit DB Packet Storm

21	6.1	警告 Network	SAP	netweaver application server java	SAPのnetweaver application server javaにおけるコードインジェクションの脆弱性	CWE-94 Code Injection	CVE-2026-27674	2026-06-5 10:48	2026-04-14	Show	GitHub Exploit DB Packet Storm

22	4.3	警告 Network		-	SAPのSAP Netweaver Application Server ABAPにおける不適切なデフォルトパーミッションに関する脆弱性	CWE-276 Incorrect Default Permissions	CVE-2026-27680	2026-06-5 10:48	2026-05-14	Show	GitHub Exploit DB Packet Storm

23	6.1	警告 Network		-	SAPのSAP Netweaver Application Server ABAPにおけるクロスサイトスクリプティングの脆弱性	CWE-79 Cross-site Scripting	CVE-2026-27682	2026-06-5 10:48	2026-05-12	Show	GitHub Exploit DB Packet Storm

24	5	警告 Network		-	SAPのSAP Netweaver Application Server ABAPにおける認証の欠如に関する脆弱性	CWE-862 Missing Authorization	CVE-2026-27688	2026-06-5 10:48	2026-03-10	Show	GitHub Exploit DB Packet Storm

25	6.1	警告 Network		-	SAPのSAP Netweaver Application Server ABAPにおけるオープンリダイレクトの脆弱性	CWE-601 Open Redirect	CVE-2026-34257	2026-06-5 10:47	2026-04-14	Show	GitHub Exploit DB Packet Storm

26	6.5	警告 Network		-	SAPのSAP Netweaver Application Server ABAPにおけるコマンドインジェクションの脆弱性	CWE-77 Command Injection	CVE-2026-40135	2026-06-5 10:47	2026-05-12	Show	GitHub Exploit DB Packet Storm

27	9.8	緊急 Network	IBM	IBM WebSphere Application Server	IBMのIBM WebSphere Application Serverにおけるコードインジェクションの脆弱性	CWE-94 Code Injection	CVE-2026-8633	2026-05-29 11:15	2026-05-26	Show	GitHub Exploit DB Packet Storm

28	-	-	日立	Hitachi Application Server uCosminexus Application Runtime with Java for Apache Tomcat uCosminexus Application Runtime with Java…	Cosminexusにおける複数の脆弱性	-	CVE-2026-22007 CVE-2026-22013 CVE-2026-22016 CVE-2026-22018 CVE-2026-22021 CVE-2026-23865 CVE-2026-34268 CVE-2026-34282	2026-05-27 13:53	2026-05-26	Show	GitHub Exploit DB Packet Storm

29	6.5	警告 Network	IBM HCL Technologies Limited	BigFix WebUI Reports BigFix WebUI Common BigFix WebUI API BigFix WebUI Framework BigFix WebUI Profile Management BigFix WebU…	HCL Technologies LimitedのBigFix WebUI API等の複数製品における不正な認証に関する脆弱性	CWE-863 Incorrect Authorization	CVE-2025-15633	2026-05-18 12:06	2026-05-9	Show	GitHub Exploit DB Packet Storm

30	4.3	警告 Network	IBM HCL Technologies Limited	BigFix WebUI Reports BigFix WebUI Common BigFix WebUI API BigFix WebUI Framework BigFix WebUI Profile Management BigFix WebU…	HCL Technologies LimitedのBigFix WebUI API等の複数製品における認証の欠如に関する脆弱性	CWE-862 Missing Authorization	CVE-2025-15634	2026-05-18 12:06	2026-05-9	Show	GitHub Exploit DB Packet Storm

31	5.9	警告 Network	IBM	IBM WebSphere Application Server	IBMのIBM WebSphere Application Serverにおける権限管理に関する脆弱性	CWE-269 CWE-noinfo Improper Privilege Management noinfo	CVE-2026-3621	2026-05-15 11:02	2026-04-23	Show	GitHub Exploit DB Packet Storm

32	6.5	警告 Network	オラクル	Oracle Financial Services Analytical Applications Infrastructure	オラクルのOracle Financial Services Analytical Applications Infrastructureにおける情報漏えいに関する脆弱性	CWE-200 Information Exposure	CVE-2026-34313	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

33	6.8	警告 Network	オラクル	Oracle Financial Services Analytical Applications Infrastructure	オラクルのOracle Financial Services Analytical Applications Infrastructureにおける不特定の脆弱性	CWE-noinfo noinfo	CVE-2026-34314	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

34	4.8	警告 Network	オラクル	Oracle Financial Services Analytical Applications Infrastructure	オラクルのOracle Financial Services Analytical Applications Infrastructureにおける認可に関する脆弱性	CWE-285 Improper Authorization	CVE-2026-34321	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

35	6.8	警告 Local	オラクル	Oracle Financial Services Analytical Applications Infrastructure	オラクルのOracle Financial Services Analytical Applications Infrastructureにおけるアクセス制御に関する脆弱性	CWE-284 Improper Access Control	CVE-2026-34325	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

36	4.7	警告 Network	オラクル	Oracle Applications Framework	オラクルのOracle Applications Frameworkにおけるアクセス制御に関する脆弱性	CWE-284 Improper Access Control	CVE-2026-34298	2026-04-27 10:50	2026-04-21	Show	GitHub Exploit DB Packet Storm

37	7.5	重要 Network	オラクル	Oracle Financial Services Analytical Applications Infrastructure	オラクルのOracle Financial Services Analytical Applications Infrastructureにおけるアクセス制御に関する脆弱性	CWE-284 Improper Access Control	CVE-2026-34310	2026-04-27 10:49	2026-04-21	Show	GitHub Exploit DB Packet Storm

38	7.8	重要 Local	オラクル	Oracle Application Development Framework (Oracle ADF)	オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性	CWE-284 Improper Access Control	CVE-2026-35243	2026-04-27 10:49	2026-04-21	Show	GitHub Exploit DB Packet Storm

39	7.5	重要 Network	オラクル	Oracle Financial Services Analytical Applications Infrastructure	オラクルのOracle Financial Services Analytical Applications Infrastructureにおけるアクセス制御に関する脆弱性	CWE-284 Improper Access Control	CVE-2026-22010	2026-04-24 11:33	2026-04-21	Show	GitHub Exploit DB Packet Storm

40	7.6	重要 Network	オラクル	Oracle Applications DBA	オラクルのOracle Applications DBAにおけるアクセス制御に関する脆弱性	CWE-284 Improper Access Control	CVE-2026-22011	2026-04-24 11:33	2026-04-21	Show	GitHub Exploit DB Packet Storm

41	9	緊急 Network	XWiki	Blog Application	XWikiのBlog Applicationにおけるクロスサイトスクリプティングの脆弱性	CWE-79 Cross-site Scripting	CVE-2025-66024	2026-04-23 10:17	2026-03-4	Show	GitHub Exploit DB Packet Storm

42	6.1	警告 Network	Zoho Corporation	manageengine applications manager	Zoho CorporationのManageEngine Applications Managerにおけるクロスサイトスクリプティングの脆弱性	CWE-79 Cross-site Scripting	CVE-2025-9787	2026-02-2 19:39	2025-12-18	Show	GitHub Exploit DB Packet Storm

43	6.5	警告 Network	オラクル	Oracle Applications DBA	オラクルのOracle Applications DBAにおけるアクセス制御に関する脆弱性	CWE-284 Improper Access Control	CVE-2026-21960	2026-02-2 19:35	2026-01-20	Show	GitHub Exploit DB Packet Storm

44	-	-	ジョンソンコントロールズ	Controller Configuration Tool (CCT) LCS8500 Metasys installation Application and Data Server (ADS) Metasys NAE8500 Metasys install…	複数のJohnson Controls製品におけるコマンドインジェクションの脆弱性	CWE-77 Command Injection	CVE-2025-26385	2026-01-30 11:16	2026-01-29	Show	GitHub Exploit DB Packet Storm

45	-	-	Schneider Electric	Odace cFMT 2a Wiser iTRV2 Merten cFMT 2a Fuga Connected Socket Outlet Wiser Connected Rotary Dimmer Iconic Wiser Co…	複数のSchneider Electric製品における複数の脆弱性	CWE-120 CWE-400 Classic Buffer Overflow Uncontrolled Resource Consumption	CVE-2024-10106 CVE-2024-6350 CVE-2024-6351 CVE-2024-6352 CVE-2024-7322	2026-01-30 11:15	2026-01-29	Show	GitHub Exploit DB Packet Storm

46	-	-	日立	uCosminexus Primary Server Base uCosminexus Service Platform(64) uCosminexus Service Platform uCosminexus Application Server uCosminexus …	Cosminexusにおける複数の脆弱性	-	CVE-2025-48976 CVE-2025-48988	2026-01-29 10:21	2026-01-27	Show	GitHub Exploit DB Packet Storm

47	5.4	警告 Network	IBM	IBM Application Gateway	IBMのIBM Application Gatewayにおけるクロスサイトスクリプティングの脆弱性	CWE-79 Cross-site Scripting	CVE-2025-36396	2026-01-28 12:36	2026-01-20	Show	GitHub Exploit DB Packet Storm

48	5.4	警告 Network	IBM	IBM Application Gateway	IBMのIBM Application Gatewayにおけるクロスサイトスクリプティングの脆弱性	CWE-80 Basic XSS	CVE-2025-36397	2026-01-28 12:36	2026-01-20	Show	GitHub Exploit DB Packet Storm

49	9.8	緊急 Network	Beijing Seeyon Internet Software	OA Web Application System	Beijing Seeyon Internet SoftwareのOA Web Application Systemにおける複数の脆弱性	CWE-74 CWE-89 CWE-89 Injection SQL Injection SQL Injection	CVE-2025-15446	2026-01-27 17:36	2026-01-4	Show	GitHub Exploit DB Packet Storm

50	8.1	重要 Network		-	SAPのSAP Netweaver Application Server ABAPにおける認証の欠如に関する脆弱性	CWE-862 Missing Authorization	CVE-2026-0506	2026-01-27 17:34	2026-01-13	Show	GitHub Exploit DB Packet Storm