Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1091	7.8	重要 Local	Google	Android	GoogleのAndroidにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2025-48643	2026-06-22 11:32	2026-06-17	Show	GitHub Exploit DB Packet Storm

1092	5.5	警告 Local	GPAC	GPAC	GPACにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2025-55652	2026-06-22 11:32	2026-06-15	Show	GitHub Exploit DB Packet Storm

1093	5.5	警告 Local	GPAC	GPAC	GPACにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2025-55660	2026-06-22 11:32	2026-06-15	Show	GitHub Exploit DB Packet Storm

1094	5.5	警告 Local	GPAC	GPAC	GPACにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2025-55661	2026-06-22 11:32	2026-06-15	Show	GitHub Exploit DB Packet Storm

1095	5.5	警告 Local	GPAC	GPAC	GPACにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-55663	2026-06-22 11:32	2026-06-15	Show	GitHub Exploit DB Packet Storm

1096	7.8	重要 Local	Google	Android	GoogleのAndroidにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-0019	2026-06-22 11:32	2026-06-17	Show	GitHub Exploit DB Packet Storm

1097	3.3	低 Local	Google	Android	GoogleのAndroidにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-0057	2026-06-22 11:32	2026-06-17	Show	GitHub Exploit DB Packet Storm

1098	7.8	重要 Local	Google	Android	GoogleのAndroidにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-0063	2026-06-22 11:31	2026-06-17	Show	GitHub Exploit DB Packet Storm

1099	5.5	警告 Local	Google	Android	GoogleのAndroidにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-0064	2026-06-22 11:31	2026-06-17	Show	GitHub Exploit DB Packet Storm

1100	7.8	重要 Local	Google	Android	GoogleのAndroidにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-0068	2026-06-22 11:31	2026-06-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
4471	7.5	HIGH Network	-	-	In Micrometer, it is possible for a user to provide specially crafted HTTP requests that may cause a denial-of-service (DoS) condition. Affected versions: micrometer-core 1.16.0 through 1.16.5; 1.15…	CWE-400 Uncontrolled Resource Consumption	CVE-2026-40984	2026-06-9 22:49	2026-06-9	Show	GitHub Exploit DB Packet Storm

4472	5.9	MEDIUM Network	-	-	An attacker can craft a large number of unique requests that trigger a failure, exhausting the capacity of the application-wide stateful retry cache. Once the cache is full, it permanently rejects an…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-41710	2026-06-9 22:49	2026-06-9	Show	GitHub Exploit DB Packet Storm

4473	6.1	MEDIUM Network	-	-	In specific scenarios involving HTTP redirects from a secure to an insecure endpoint, the Reactor Netty HTTP client may leak credentials. In order for this to happen, the HTTP client must have been e…	CWE-522 Insufficiently Protected Credentials	CVE-2026-41715	2026-06-9 22:49	2026-06-9	Show	GitHub Exploit DB Packet Storm

4474	7.4	HIGH Network	-	-	Spring LDAP's DirContextAuthenticationStrategy implementations do not reject a bind request where a non-empty username is paired with an empty or null password. Affected versions: Spring LDAP 2.4.0 …	CWE-287 Improper Authentication	CVE-2026-41720	2026-06-9 22:49	2026-06-9	Show	GitHub Exploit DB Packet Storm

4475	4.2	MEDIUM Network	-	-	A WebFlux application with a compromised subdomain (for example, compromised via cross-site scripting (XSS)) is vulnerable to an escalation attack exchanging a known session ID for that of an authent…	CWE-384 Session Fixation	CVE-2026-41839	2026-06-9 22:49	2026-06-9	Show	GitHub Exploit DB Packet Storm

4476	5.9	MEDIUM Network	-	-	Spring WebFlux applications are vulnerable to Denial of Service (DoS) attacks when processing multipart requests. Affected versions: Spring Framework 7.0.0 through 7.0.7; 6.2.0 through 6.2.18; 6.1.0…	CWE-400 Uncontrolled Resource Consumption	CVE-2026-41840	2026-06-9 22:49	2026-06-9	Show	GitHub Exploit DB Packet Storm

4477	5.9	MEDIUM Network	-	-	Spring MVC and WebFlux applications are vulnerable to Information Disclosure attacks when resolving static resources. Affected versions: Spring Framework 7.0.0 through 7.0.7; 6.2.0 through 6.2.18; 6…	CWE-524 Use of Cache Containing Sensitive Information	CVE-2026-41841	2026-06-9 22:49	2026-06-9	Show	GitHub Exploit DB Packet Storm

4478	7.5	HIGH Network	-	-	Spring MVC and WebFlux applications are vulnerable to Denial of Service (DoS) attacks when resolving static resources. Affected versions: Spring Framework 7.0.0 through 7.0.7; 6.2.0 through 6.2.18; …	CWE-400 Uncontrolled Resource Consumption	CVE-2026-41842	2026-06-9 22:49	2026-06-9	Show	GitHub Exploit DB Packet Storm

4479	5.9	MEDIUM Network	-	-	Spring MVC and WebFlux applications are vulnerable to Path Traversal attacks when resolving static resources. Affected versions: Spring Framework 7.0.0 through 7.0.7; 6.2.0 through 6.2.18; 6.1.0 thr…	CWE-22 Path Traversal	CVE-2026-41843	2026-06-9 22:49	2026-06-9	Show	GitHub Exploit DB Packet Storm

4480	7.5	HIGH Network	-	-	An integer overflow vulnerability exists in the evaluation logic of the Spring Expression Language (SpEL). An attacker can exploit this by supplying a specially crafted SpEL expression that triggers …	CWE-190 Integer Overflow or Wraparound	CVE-2026-41849	2026-06-9 22:49	2026-06-9	Show	GitHub Exploit DB Packet Storm