Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1431	7.2	重要 Network	emlog	emlog	emlogにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-39276	2026-06-12 14:54	2026-05-29	Show	GitHub Exploit DB Packet Storm

1432	8.1	重要 Network	マイクロソフト	Visual Studio Code	Visual Studio Code の特権の昇格の脆弱性	CWE-20 CWE-noinfo	CVE-2026-40376	2026-06-12 14:54	2026-06-9	Show	GitHub Exploit DB Packet Storm

1433	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows ユニバーサルディスクフォーマットファイルシステムドライバー (UDFS) の特権昇格の脆弱性	CWE-197 数値打ち切り誤差	CVE-2026-40409	2026-06-12 14:54	2026-06-9	Show	GitHub Exploit DB Packet Storm

1434	7.5	重要 Network	VMware	Spring HATEOAS	VMwareのSpring HATEOASにおけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-41006	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

1435	7.5	重要 Network	VMware	Spring HATEOAS	VMwareのSpring HATEOASにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-41007	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

1436	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Microsoft Kinect の特権昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-41092	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

1437	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows DNS クライアントの特権の昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-41108	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

1438	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける不十分なランダム値の使用に関する脆弱性	CWE-330 不十分なランダム値の使用	CVE-2026-41838	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

1439	6.1	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-41844	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

1440	6.1	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41845	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
343741	-	wireshark	wireshark	Unspecified vulnerability in the SCSI dissector in Wireshark (formerly Ethereal) 0.99.2 allows remote attackers to cause a denial of service (crash) via unspecified vectors.	NVD-CWE-Other	CVE-2006-4330	2018-10-18 06:34	2006-08-25	Show	GitHub Exploit DB Packet Storm

343742	-	wireshark	wireshark	The SSCOP dissector in Wireshark (formerly Ethereal) before 0.99.3 allows remote attackers to cause a denial of service (resource consumption) via malformed packets that cause the Q.2391 dissector to…	CWE-399 Resource Management Errors	CVE-2006-4333	2018-10-18 06:34	2006-08-25	Show	GitHub Exploit DB Packet Storm

343743	-	gzip	gzip	Unspecified vulnerability in gzip 1.3.5 allows context-dependent attackers to cause a denial of service (crash) via a crafted GZIP (gz) archive, which results in a NULL dereference.	NVD-CWE-Other	CVE-2006-4334	2018-10-18 06:34	2006-09-20	Show	GitHub Exploit DB Packet Storm

343744	-	gzip	gzip	Array index error in the make_table function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent attackers to cause a denial of se…	NVD-CWE-Other	CVE-2006-4335	2018-10-18 06:34	2006-09-20	Show	GitHub Exploit DB Packet Storm

343745	-	gzip	gzip	Buffer underflow in the build_tree function in unpack.c in gzip 1.3.5 allows context-dependent attackers to execute arbitrary code via a crafted leaf count table that causes a write to a negative ind…	NVD-CWE-Other	CVE-2006-4336	2018-10-18 06:34	2006-09-20	Show	GitHub Exploit DB Packet Storm

343746	-	gzip	gzip	Buffer overflow in the make_table function in the LHZ component in gzip 1.3.5 allows context-dependent attackers to execute arbitrary code via a crafted decoding table in a GZIP archive.	NVD-CWE-Other	CVE-2006-4337	2018-10-18 06:34	2006-09-20	Show	GitHub Exploit DB Packet Storm

343747	-	ageet	agephone	Stack-based buffer overflow in sipd.dll in AGEphone 1.24 and 1.38.1 allows remote attackers to execute arbitrary code via a crafted UDP SIP packet.	NVD-CWE-Other	CVE-2006-4029	2018-10-18 06:33	2006-08-10	Show	GitHub Exploit DB Packet Storm

343748	-	ageet	agephone	This vulnerability is addressed in the following product release: AGEphone 1.40	NVD-CWE-Other	CVE-2006-4029	2018-10-18 06:33	2006-08-10	Show	GitHub Exploit DB Packet Storm

343749	-	lhaplus	lhaplus	Heap-based buffer overflow in Lhaplus.exe in Lhaplus 1.52, and possibly earlier versions, allows remote attackers to execute arbitrary code via an LZH archive with a long header, as specified by the …	NVD-CWE-Other	CVE-2006-4033	2018-10-18 06:33	2006-08-10	Show	GitHub Exploit DB Packet Storm

343750	-	moderngigabyte	modernbill	PHP remote file inclusion vulnerability in include/html/config.php in ModernGigabyte ModernBill 1.6 allows remote attackers to execute arbitrary PHP code via a URL in the DIR parameter.	NVD-CWE-Other	CVE-2006-4034	2018-10-18 06:33	2006-08-10	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed