Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1071 7.2 重要
Network 		オラクル Oracle Financials for EMEA オラクルのOracle Financials for EMEAにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46969 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
1072 7.2 重要
Network 		オラクル Oracle HR Intelligence オラクルのOracle HR Intelligenceにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-46970 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
1073 7.5 重要
Network 		オラクル Oracle HR Intelligence オラクルのOracle HR Intelligenceにおける複数の脆弱性 CWE-269
CWE-284
CVE-2026-46971 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
1074 8.8 重要
Network 		オラクル Oracle Outsourced Manufacturing for Discrete Industries オラクルのOracle Outsourced Manufacturing for Discrete Industriesにおける複数の脆弱性 CWE-269
CWE-287
CWE-306
CVE-2026-46972 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
1075 8.8 重要
Network 		オラクル Oracle Outsourced Manufacturing for Discrete Industries オラクルのOracle Outsourced Manufacturing for Discrete Industriesにおける複数の脆弱性 CWE-269
CWE-287
CWE-306
CVE-2026-46973 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
1076 7.2 重要
Network 		オラクル Public Sector Payroll オラクルのPublic Sector Payrollにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46976 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
1077 4.4 警告
Network 		metal3 ip-address-manager Metal3のip-address-managerにおける不要な特権による実行に関する脆弱性 CWE-250
不要な特権による実行 		CVE-2026-47190 2026-06-22 11:32 2026-06-12 Show GitHub Exploit DB Packet Storm
1078 9.1 緊急
Network 		i18next i18next-fs-backend i18nextのi18next-fs-backendにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 CWE-1321
オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染) 		CVE-2026-48713 2026-06-22 11:32 2026-06-15 Show GitHub Exploit DB Packet Storm
1079 9.1 緊急
Network 		i18next i18next-http-middleware i18nextのi18next-http-middlewareにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 CWE-1321
オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染) 		CVE-2026-48714 2026-06-22 11:32 2026-06-15 Show GitHub Exploit DB Packet Storm
1080 9.1 緊急
Network 		Apache Software Foundation Airflow SFTP Providers (apache-airflow-providers-sftp) Apache Software FoundationのAirflow SFTP Providers (apache-airflow-providers-sftp)におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-50203 2026-06-22 11:32 2026-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254241 8.1 HIGH
Network 		jenkins black_duck_hub An improper authorization vulnerability exists in Jenkins Black Duck Hub Plugin 3.0.3 and older in PostBuildScanDescriptor.java that allows users with Overall/Read permission to read and write the Bl… CWE-863
 Incorrect Authorization 		CVE-2018-1000197 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254242 6.5 MEDIUM
Network 		jenkins gitlab_hook A exposure of sensitive information vulnerability exists in Jenkins Gitlab Hook Plugin 1.4.2 and older in gitlab_notifier.rb, views/gitlab_notifier/global.erb that allows attackers with local Jenkins… CWE-200
Information Exposure 		CVE-2018-1000196 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254243 4.3 MEDIUM
Network 		jenkins
oracle 		jenkins
communications_cloud_native_core_automated_test_suite 		A server-side request forgery vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in ZipExtractionInstaller.java that allows users with Overall/Read permission to have Jenkins subm… CWE-352
 Origin Validation Error 		CVE-2018-1000195 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254244 8.1 HIGH
Network 		jenkins
oracle 		jenkins
communications_cloud_native_core_automated_test_suite 		A path traversal vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in FilePath.java, SoloFilePathFilter.java that allows malicious agents to read and write arbitrary files on the… CWE-22
Path Traversal 		CVE-2018-1000194 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254245 4.3 MEDIUM
Network 		jenkins
oracle 		jenkins
communications_cloud_native_core_automated_test_suite 		A improper neutralization of control sequences vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in HudsonPrivateSecurityRealm.java that allows users to sign up using user names … CWE-74
Injection 		CVE-2018-1000193 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254246 4.3 MEDIUM
Network 		jenkins
oracle 		jenkins
communications_cloud_native_core_automated_test_suite 		A information exposure vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in AboutJenkins.java, ListPluginsCommand.java that allows users with Overall/Read access to enumerate all… NVD-CWE-noinfo
CVE-2018-1000192 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254247 6.5 MEDIUM
Network 		jenkins synopsys_detect A exposure of sensitive information vulnerability exists in Jenkins Black Duck Detect Plugin 1.4.0 and older in DetectPostBuildStepDescriptor.java that allows attackers with Overall/Read access to co… CWE-200
Information Exposure 		CVE-2018-1000191 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254248 6.5 MEDIUM
Network 		jenkins black_duck_hub A exposure of sensitive information vulnerability exists in Jenkins Black Duck Hub Plugin 4.0.0 and older in PostBuildScanDescriptor.java that allows attackers with Overall/Read access to connect to … CWE-200
Information Exposure 		CVE-2018-1000190 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254249 8.8 HIGH
Network 		jenkins absint_astree A command execution vulnerability exists in Jenkins Absint Astree Plugin 1.0.5 and older in AstreeBuilder.java that allows attackers with Overall/Read access to execute a command on the Jenkins maste… NVD-CWE-noinfo
CVE-2018-1000189 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254250 5.4 MEDIUM
Network 		jenkins cas A server-side request forgery vulnerability exists in Jenkins CAS Plugin 1.4.1 and older in CasSecurityRealm.java that allows attackers with Overall/Read access to cause Jenkins to send a GET request… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2018-1000188 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm