Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1331	5.4	警告 Network	VMware	Spring Security	VMwareのSpring Securityにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41003	2026-06-15 11:18	2026-06-10	Show	GitHub Exploit DB Packet Storm

1332	6.1	警告 Network	QNAP Systems	QuTS hero QNAP QTS	QNAP SystemsのQNAP QTS等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41539	2026-06-15 11:18	2026-06-9	Show	GitHub Exploit DB Packet Storm

1333	5.3	警告 Network	VMware	Spring Security	VMwareのSpring Securityにおけるデジタル署名の検証に関する脆弱性	CWE-347 デジタル署名の不適切な検証	CVE-2026-41694	2026-06-15 11:18	2026-06-10	Show	GitHub Exploit DB Packet Storm

1334	9.8	緊急 Network	VMware	spring for graphql	VMwareのspring for graphqlにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-41699	2026-06-15 11:18	2026-06-11	Show	GitHub Exploit DB Packet Storm

1335	8.1	重要 Network	VMware	spring for graphql	VMwareのspring for graphqlにおける同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-41700	2026-06-15 11:18	2026-06-11	Show	GitHub Exploit DB Packet Storm

1336	7.5	重要 Network	VMware	spring for graphql	VMwareのspring for graphqlにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-41856	2026-06-15 11:18	2026-06-11	Show	GitHub Exploit DB Packet Storm

1337	7.5	重要 Network	tdengine	tdengine	tdengineにおける整数アンダーフローの脆弱性	CWE-191 整数アンダーフロー	CVE-2026-42542	2026-06-15 11:18	2026-06-10	Show	GitHub Exploit DB Packet Storm

1338	8.1	重要 Network	マイクロソフト	Microsoft Teams	Android 用の Microsoft Teams の情報漏えいの脆弱性	CWE-74 インジェクション	CVE-2026-42835	2026-06-15 11:18	2026-06-9	Show	GitHub Exploit DB Packet Storm

1339	9.8	緊急 Network	QNAP Systems	qumagie	QNAP Systemsのqumagieにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-44083	2026-06-15 11:18	2026-06-9	Show	GitHub Exploit DB Packet Storm

1340	7.5	重要 Network	axios project	axios	axios projectのaxiosにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-44486	2026-06-15 11:18	2026-06-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
4241	-		-	-	iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, the Avro array and map decoders looped over an attacker-controlled block-count value without checking the underlying reader's error state ins…	CWE-400 Uncontrolled Resource Consumption	CVE-2026-46385	2026-06-2 02:17	2026-05-30	Show	GitHub Exploit DB Packet Storm

4242	8.8	HIGH Adjacent	-	-	In the Linux kernel, the following vulnerability has been resolved: batman-adv: stop caching unowned originator pointers in BAT IV BAT IV keeps the last-hop neighbor address in each neigh_node, but…	-	CVE-2026-46238	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4243	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn3: Avoid overflow on msg bound check As pointed out by SDL, the previous condition may be vulnerable to overflow. …	-	CVE-2026-46237	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4244	-		-	-	In the Linux kernel, the following vulnerability has been resolved: media: rc: xbox_remote: heed DMA restrictions The buffer for IO must not be part of the device structure because that violates th…	-	CVE-2026-46236	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4245	-		-	-	In the Linux kernel, the following vulnerability has been resolved: media: saa7164: add ioremap return checks and cleanups Add checks for ioremap return values in saa7164_dev_setup(). If ioremap fo…	-	CVE-2026-46235	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4246	-		-	-	In the Linux kernel, the following vulnerability has been resolved: vsock: fix buffer size clamping order In vsock_update_buffer_size(), the buffer size was being clamped to the maximum first, and …	-	CVE-2026-46234	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4247	-		-	-	In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: only purge non-released claims When batadv_bla_purge_claims() goes through the list of claims, it is only traver…	-	CVE-2026-46233	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4248	-		-	-	In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: put backbone reference on failed claim hash insert When batadv_bla_add_claim() fails to insert a new claim into …	-	CVE-2026-46231	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4249	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg Check bounds against the end of the BO whenever we access the msg.	-	CVE-2026-46230	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm

4250	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL The SCTP_SENDALL path in sctp_sendmsg() iterates ep->as…	-	CVE-2026-46227	2026-06-2 02:17	2026-05-28	Show	GitHub Exploit DB Packet Storm