Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 22, 2026, 6:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1071 | 7.8 |
重要
Local |
マイクロソフト |
Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n… |
Windows ユニバーサル ディスク フォーマット ファイル システム ドライバー (UDFS) の特権昇格の脆弱性 |
CWE-197
数値打ち切り誤差 |
CVE-2026-40409 | 2026-06-12 14:54 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1072 | 7.5 |
重要
Network |
VMware | Spring HATEOAS | VMwareのSpring HATEOASにおけるアクセス制御に関する脆弱性 |
CWE-284 CWE-noinfo |
CVE-2026-41006 | 2026-06-12 14:53 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1073 | 7.5 |
重要
Network |
VMware | Spring HATEOAS | VMwareのSpring HATEOASにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 |
CWE-770
制限またはスロットリング無しのリソースの割り当て |
CVE-2026-41007 | 2026-06-12 14:53 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1074 | 7.8 |
重要
Local |
マイクロソフト |
Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n… |
Microsoft Kinect の特権昇格の脆弱性 |
CWE-284
不適切なアクセス制御 |
CVE-2026-41092 | 2026-06-12 14:53 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1075 | 7 |
重要
Local |
マイクロソフト |
Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n… |
Windows DNS クライアントの特権の昇格の脆弱性 |
CWE-122
ヒープオーバーフロー |
CVE-2026-41108 | 2026-06-12 14:53 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1076 | 7.5 |
重要
Network |
VMware | Spring Framework | VMwareのSpring Frameworkにおける不十分なランダム値の使用に関する脆弱性 |
CWE-330
不十分なランダム値の使用 |
CVE-2026-41838 | 2026-06-12 14:53 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1077 | 6.1 |
警告
Network |
VMware | Spring Framework | VMwareのSpring Frameworkにおけるオープンリダイレクトの脆弱性 |
CWE-601
オープンリダイレクト |
CVE-2026-41844 | 2026-06-12 14:53 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1078 | 6.1 |
警告
Network |
VMware | Spring Framework | VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-41845 | 2026-06-12 14:53 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1079 | 6.1 |
警告
Network |
VMware | Spring Framework | VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-41846 | 2026-06-12 14:53 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 1080 | 5.3 |
警告
Network |
VMware | Spring Framework | VMwareのSpring Frameworkにおけるアクセス制御に関する脆弱性 |
CWE-284 CWE-noinfo |
CVE-2026-41847 | 2026-06-12 14:53 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 23, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 309521 | - | cisco |
adaptive_security_appliance_software 5500_series_adaptive_security_appliance asa_5500 telepresence_multipoint_switch_software telepresence_multipoint_switch telepresence_system_softwar… |
Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 1.6.x; Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x; … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2011-0379 | 2024-11-21 10:23 | 2011-02-25 | Show | GitHub Exploit DB Packet Storm | |
| 309522 | - | cisco |
telepresence_system_software telepresence_system_1000 telepresence_system_1100 telepresence_system_3000 telepresence_system_1300_series telepresence_system_3200_series telepresence_… |
The XML-RPC implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote attackers to execute arbitrary commands via a TCP request, related to a "command inje… |
CWE-78
OS Command |
CVE-2011-0378 | 2024-11-21 10:23 | 2011-02-25 | Show | GitHub Exploit DB Packet Storm | |
| 309523 | - | cisco |
telepresence_system_software telepresence_system_1000 telepresence_system_1100 telepresence_system_3000 telepresence_system_1300_series telepresence_system_3200_series telepresence_… |
Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x allow remote attackers to cause a denial of service (service crash) via a malformed SOAP request in conjunction with a spoofed Te… |
CWE-399
Resource Management Errors |
CVE-2011-0377 | 2024-11-21 10:23 | 2011-02-25 | Show | GitHub Exploit DB Packet Storm | |
| 309524 | - | cisco |
telepresence_system_software telepresence_system_1000 telepresence_system_1100 telepresence_system_3000 telepresence_system_1300_series telepresence_system_3200_series telepresence_… |
The TFTP implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x, 1.6.0, and 1.6.1 allows remote attackers to obtain sensitive information via a GET request, aka Bug I… |
CWE-200
Information Exposure |
CVE-2011-0376 | 2024-11-21 10:23 | 2011-02-25 | Show | GitHub Exploit DB Packet Storm | |
| 309525 | - | cisco |
telepresence_system_software telepresence_system_1000 telepresence_system_1100 telepresence_system_3000 telepresence_system_1300_series telepresence_system_3200_series telepresence_… |
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "co… |
CWE-78
OS Command |
CVE-2011-0375 | 2024-11-21 10:23 | 2011-02-25 | Show | GitHub Exploit DB Packet Storm | |
| 309526 | - | cisco |
telepresence_system_software telepresence_system_1000 telepresence_system_1100 telepresence_system_3000 telepresence_system_1300_series telepresence_system_3200_series telepresence_… |
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "co… |
CWE-78
OS Command |
CVE-2011-0374 | 2024-11-21 10:23 | 2011-02-25 | Show | GitHub Exploit DB Packet Storm | |
| 309527 | - | cisco |
telepresence_system_software telepresence_system_1000 telepresence_system_1100 telepresence_system_3000 telepresence_system_1300_series telepresence_system_3200_series telepresence_… |
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "co… |
CWE-78
OS Command |
CVE-2011-0373 | 2024-11-21 10:23 | 2011-02-25 | Show | GitHub Exploit DB Packet Storm | |
| 309528 | - | cisco |
telepresence_system_software telepresence_system_1000 telepresence_system_1100 telepresence_system_3000 telepresence_system_1300_series telepresence_system_3200_series telepresence_… |
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote attackers to execute arbitrary commands via a malformed request, related to "command inje… |
CWE-78
OS Command |
CVE-2011-0372 | 2024-11-21 10:23 | 2011-02-25 | Show | GitHub Exploit DB Packet Storm | |
| 309529 | - | isc | bind | ISC BIND 9.7.1 through 9.7.2-P3, when configured as an authoritative server, allows remote attackers to cause a denial of service (deadlock and daemon hang) by sending a query at the time of (1) an I… |
CWE-399
Resource Management Errors |
CVE-2011-0414 | 2024-11-21 10:23 | 2011-02-24 | Show | GitHub Exploit DB Packet Storm | |
| 309530 | - |
fedoraproject redhat |
389_directory_server directory_server |
The setup scripts in 389 Directory Server 1.2.x (aka Red Hat Directory Server 8.2.x), when multiple unprivileged instances are configured, use 0777 permissions for the /var/run/dirsrv directory, whic… |
CWE-399
Resource Management Errors |
CVE-2011-0022 | 2024-11-21 10:23 | 2011-02-24 | Show | GitHub Exploit DB Packet Storm |