|
You can search the list of vulnerabilities managed by JVN (Japan Vulnerability Note). |
Update Date:July 1, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1 | 5.4 |
警告
Network |
IBM | IBM TRIRIGA Application Platform | IBMのIBM TRIRIGA Application Platformにおけるクロスサイトスクリプティングの脆弱性 New |
CWE-79
Cross-site Scripting |
CVE-2026-11372 | 2026-07-1 10:57 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 2 | 6.8 |
警告
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるパストラバーサルの脆弱性 New |
CWE-35
Path Traversal: '.../...//' |
CVE-2026-24464 | 2026-06-30 11:22 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 3 | 8.7 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における不要な特権による実行に関する脆弱性 New |
CWE-250
Execution with Unnecessary Privileges |
CVE-2026-32643 | 2026-06-30 11:22 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 4 | 8.7 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における不要な特権による実行に関する脆弱性 New |
CWE-250
Execution with Unnecessary Privileges |
CVE-2026-32673 | 2026-06-30 11:22 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 5 | 5.3 |
警告
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における不十分なリソースプールに関する脆弱性 New |
CWE-410
Insufficient Resource Pool |
CVE-2026-34019 | 2026-06-30 11:22 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 6 | 8.7 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるOS コマンドインジェクションの脆弱性 New |
CWE-78
OS Command |
CVE-2026-34176 | 2026-06-30 11:22 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 7 | 6.5 |
警告
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における不適切な権限設定に関する脆弱性 New |
CWE-266
Incorrect Privilege Assignment |
CVE-2026-35062 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 8 | 7.5 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における有効なライフタイム後のリソースの解放の欠如に関する脆弱性 New |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2026-39455 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 9 | 7.5 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における初期化されていないポインタのアクセスに関する脆弱性 New |
CWE-824
Access of Uninitialized Pointer |
CVE-2026-39458 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 10 | 7.2 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における最小権限の違反に関する脆弱性 New |
CWE-272
Least Privilege Violation |
CVE-2026-39459 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 11 | 7.5 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP Application Security Manager (ASM) |
F5 NetworksのBIG-IP Advanced Web Application Firewall (WAF)等の複数製品における未チェックの戻り値に関する脆弱性 New |
CWE-252
Unchecked Return Value |
CVE-2026-40060 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 12 | 7.5 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New |
CWE-770
Allocation of Resources Without Limits or Throttling |
CVE-2026-40423 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 13 | 5.3 |
警告
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における保護されていない代替チャネルに関する脆弱性 New |
CWE-420
Unprotected Alternate Channel |
CVE-2026-40435 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 14 | 6.5 |
警告
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 New |
CWE-732
Incorrect Permission Assignment for Critical Resource |
CVE-2026-40462 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 15 | 7.5 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるバッファサイズの計算の誤りに関する脆弱性 New |
CWE-131
Incorrect Calculation of Buffer Size |
CVE-2026-40618 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 16 | 7.5 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New |
CWE-770
Allocation of Resources Without Limits or Throttling |
CVE-2026-40629 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 17 | 8.7 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 New |
CWE-552
Files or Directories Accessible to External Parties |
CVE-2026-40631 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 18 | 8.7 |
重要
Network |
F5 Networks |
BIG-IP Advanced Web Application Firewall (WAF) BIG-IP WebAccelerator BIG-IP Domain Name System (DNS) BIG-IP Application Security&n… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるコマンドインジェクションの脆弱性 New |
CWE-77
Command Injection |
CVE-2026-40698 | 2026-06-30 11:21 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 19 | 9.1 |
緊急
Network |
IBM | IBM WebSphere Application Server | IBMのIBM WebSphere Application ServerにおけるHTTP リクエストスマグリングに関する脆弱性 |
CWE-444
HTTP Request Smuggling |
CVE-2026-8646 | 2026-06-26 11:52 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 20 | 9.1 |
緊急
Network |
IBM | IBM WebSphere Application Server | IBMのIBM WebSphere Application Serverにおけるサーバサイドのリクエストフォージェリの脆弱性 |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2026-9006 | 2026-06-26 11:51 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 21 | 7.5 |
重要
Network |
IBM | IBM WebSphere Application Server | IBMのIBM WebSphere Application Serverにおけるリソースの枯渇に関する脆弱性 |
CWE-400
Uncontrolled Resource Consumption |
CVE-2026-9071 | 2026-06-26 11:51 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 22 | 7.5 |
重要
Network |
IBM | IBM WebSphere Application Server | IBMのIBM WebSphere Application Serverにおけるリソースの枯渇に関する脆弱性 |
CWE-400
Uncontrolled Resource Consumption |
CVE-2026-9320 | 2026-06-26 11:51 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 23 | 7.3 |
重要
Network |
IBM | IBM WebSphere Application Server | IBMのIBM WebSphere Application Serverにおける認証に関する脆弱性 |
CWE-287
Improper Authentication |
CVE-2026-10845 | 2026-06-26 11:49 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 24 | 7.2 |
重要
Network |
オラクル | Oracle Application Development Framework (Oracle ADF) | オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性 |
CWE-284
Improper Access Control |
CVE-2026-46769 | 2026-06-22 11:55 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 25 | 6.1 |
警告
Network |
オラクル | Oracle Application Development Framework (Oracle ADF) | オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性 |
CWE-284
Improper Access Control |
CVE-2026-46770 | 2026-06-22 11:55 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 26 | 4.1 |
警告
Local |
オラクル | Oracle Application Development Framework (Oracle ADF) | オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性 |
CWE-284
Improper Access Control |
CVE-2026-46771 | 2026-06-22 11:55 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 27 | 4.7 |
警告
Local |
オラクル | Oracle Application Development Framework (Oracle ADF) | オラクルのOracle Application Development Framework (Oracle ADF)におけるアクセス制御に関する脆弱性 |
CWE-284
Improper Access Control |
CVE-2026-46772 | 2026-06-22 11:55 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 28 | 9.1 |
緊急
Network |
オラクル | Oracle Application Performance Management | オラクルのOracle Application Performance Managementにおけるアクセス制御に関する脆弱性 |
CWE-284
Improper Access Control |
CVE-2026-46858 | 2026-06-22 11:52 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 29 | 9.9 |
緊急
Network |
オラクル | Oracle Applications Manager | オラクルのOracle Applications Managerにおける複数の脆弱性 |
CWE-269 CWE-284 CWE-306 Improper Privilege Management Improper Access Control Missing Authentication for Critical Function |
CVE-2026-46933 | 2026-06-22 11:50 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 30 | 6.7 |
警告
Network |
F5 Networks |
BIG-IP WebSafe big-ip container ingress services BIG-IP Application Security Manager (ASM) BIG-IP Advanced Web Application Firewal… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-121
Stack-based Buffer Overflow |
CVE-2026-42919 | 2026-06-22 11:37 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 31 | 7.5 |
重要
Network |
F5 Networks |
BIG-IP WebSafe big-ip container ingress services BIG-IP Application Security Manager (ASM) BIG-IP Advanced Web Application Firewal… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における無限ループに関する脆弱性 |
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop') |
CVE-2026-42920 | 2026-06-22 11:37 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 32 | 8.7 |
重要
Network |
F5 Networks |
BIG-IP WebSafe big-ip container ingress services BIG-IP Application Security Manager (ASM) BIG-IP Advanced Web Application Firewal… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるOS コマンドインジェクションの脆弱性 |
CWE-78
OS Command |
CVE-2026-42924 | 2026-06-22 11:37 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 33 | 8.7 |
重要
Network |
F5 Networks |
BIG-IP WebSafe big-ip container ingress services BIG-IP Application Security Manager (ASM) BIG-IP Advanced Web Application Firewal… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるパストラバーサルの脆弱性 |
CWE-35
Path Traversal: '.../...//' |
CVE-2026-42930 | 2026-06-22 11:37 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 34 | 6.5 |
警告
Network |
F5 Networks |
BIG-IP WebSafe big-ip container ingress services BIG-IP Application Security Manager (ASM) BIG-IP Advanced Web Application Firewal… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 |
CWE-732
Incorrect Permission Assignment for Critical Resource |
CVE-2026-42937 | 2026-06-22 11:37 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 35 | 5.3 |
警告
Network |
kjd | internationalized domain names in applications | kjdのinternationalized domain names in applicationsにおける非効率的な正規表現の複雑さに関する脆弱性 |
CWE-1333
Inefficient Regular Expression Complexity |
CVE-2026-45409 | 2026-06-16 13:37 | 2026-06-5 | Show | GitHub Exploit DB Packet Storm |
| 36 | - |
-
|
日立 |
Hitachi Web Server - Custom Edition uCosminexus Developer Professional for Plug-in Hitachi Application Server for Developers … |
Cosminexus HTTP ServerおよびHitachi Web Serverにおける脆弱性 | - | CVE-2025-65082 | 2026-06-10 11:05 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 37 | 9.1 |
緊急
Network |
IBM | IBM WebSphere Application Server | IBMのIBM WebSphere Application Serverにおけるスプーフィングによる認証回避に関する脆弱性 |
CWE-290
Authentication Bypass by Spoofing |
CVE-2026-8644 | 2026-06-8 11:44 | 2026-06-1 | Show | GitHub Exploit DB Packet Storm |
| 38 | 9 |
緊急
Network |
IBM | IBM WebSphere Application Server | IBMのIBM WebSphere Application Serverにおけるコードインジェクションの脆弱性 |
CWE-94
Code Injection |
CVE-2026-9311 | 2026-06-8 11:44 | 2026-06-1 | Show | GitHub Exploit DB Packet Storm |
| 39 | 9 |
緊急
Network |
IBM | IBM WebSphere Application Server | IBMのIBM WebSphere Application Serverにおける信頼できないデータのデシリアライゼーションに関する脆弱性 |
CWE-502
Deserialization of Untrusted Data |
CVE-2026-9319 | 2026-06-8 11:44 | 2026-06-1 | Show | GitHub Exploit DB Packet Storm |
| 40 | 8.5 |
重要
Network |
IBM | IBM WebSphere Application Server | IBMのIBM WebSphere Application Serverにおける信頼できないデータのデシリアライゼーションに関する脆弱性 |
CWE-502
Deserialization of Untrusted Data |
CVE-2026-9330 | 2026-06-8 11:44 | 2026-06-1 | Show | GitHub Exploit DB Packet Storm |
| 41 | 6.4 |
警告
Network |
- | SAPのSAP Netweaver Application Server ABAPにおける認証の欠如に関する脆弱性 |
CWE-862
Missing Authorization |
CVE-2026-24309 | 2026-06-5 10:49 | 2026-03-10 | Show | GitHub Exploit DB Packet Storm | |
| 42 | 4.3 |
警告
Network |
- | SAPのSAP Netweaver Application Server ABAPにおける認証の欠如に関する脆弱性 |
CWE-862
Missing Authorization |
CVE-2026-24310 | 2026-06-5 10:49 | 2026-03-10 | Show | GitHub Exploit DB Packet Storm | |
| 43 | 6.4 |
警告
Network |
- | SAPのSAP Netweaver Application Server ABAPにおけるサーバサイドのリクエストフォージェリの脆弱性 |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2026-24316 | 2026-06-5 10:48 | 2026-03-10 | Show | GitHub Exploit DB Packet Storm | |
| 44 | 6.1 |
警告
Network |
SAP | netweaver application server java | SAPのnetweaver application server javaにおけるコードインジェクションの脆弱性 |
CWE-94
Code Injection |
CVE-2026-27674 | 2026-06-5 10:48 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm |
| 45 | 4.3 |
警告
Network |
- | SAPのSAP Netweaver Application Server ABAPにおける不適切なデフォルトパーミッションに関する脆弱性 |
CWE-276
Incorrect Default Permissions |
CVE-2026-27680 | 2026-06-5 10:48 | 2026-05-14 | Show | GitHub Exploit DB Packet Storm | |
| 46 | 6.1 |
警告
Network |
- | SAPのSAP Netweaver Application Server ABAPにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
Cross-site Scripting |
CVE-2026-27682 | 2026-06-5 10:48 | 2026-05-12 | Show | GitHub Exploit DB Packet Storm | |
| 47 | 5 |
警告
Network |
- | SAPのSAP Netweaver Application Server ABAPにおける認証の欠如に関する脆弱性 |
CWE-862
Missing Authorization |
CVE-2026-27688 | 2026-06-5 10:48 | 2026-03-10 | Show | GitHub Exploit DB Packet Storm | |
| 48 | 6.1 |
警告
Network |
- | SAPのSAP Netweaver Application Server ABAPにおけるオープンリダイレクトの脆弱性 |
CWE-601
Open Redirect |
CVE-2026-34257 | 2026-06-5 10:47 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm | |
| 49 | 6.5 |
警告
Network |
- | SAPのSAP Netweaver Application Server ABAPにおけるコマンドインジェクションの脆弱性 |
CWE-77
Command Injection |
CVE-2026-40135 | 2026-06-5 10:47 | 2026-05-12 | Show | GitHub Exploit DB Packet Storm | |
| 50 | 9.8 |
緊急
Network |
IBM | IBM WebSphere Application Server | IBMのIBM WebSphere Application Serverにおけるコードインジェクションの脆弱性 |
CWE-94
Code Injection |
CVE-2026-8633 | 2026-05-29 11:15 | 2026-05-26 | Show | GitHub Exploit DB Packet Storm |