Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1491 8.8 重要
Network 		オラクル Oracle Quality オラクルのOracle Qualityにおける複数の脆弱性 CWE-269
CWE-287
CWE-306
CVE-2026-46952 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
1492 7.2 重要
Network 		オラクル Oracle Human Resource Management Software オラクルのOracle Human Resource Management Softwareにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-46953 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
1493 7.2 重要
Network 		オラクル Oracle Property Manager オラクルのOracle Property Managerにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46956 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
1494 7.2 重要
Network 		オラクル Oracle Project Portfolio Analysis オラクルのOracle Project Portfolio Analysisにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46960 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
1495 8.8 重要
Network 		オラクル Oracle Project Portfolio Analysis オラクルのOracle Project Portfolio Analysisにおける複数の脆弱性 CWE-269
CWE-287
CWE-306
CVE-2026-46961 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
1496 8.8 重要
Network 		オラクル Oracle Project Portfolio Analysis オラクルのOracle Project Portfolio Analysisにおける複数の脆弱性 CWE-269
CWE-287
CWE-306
CVE-2026-46962 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
1497 7.2 重要
Network 		オラクル Oracle Financials for EMEA オラクルのOracle Financials for EMEAにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46969 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
1498 7.2 重要
Network 		オラクル Oracle HR Intelligence オラクルのOracle HR Intelligenceにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-46970 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
1499 7.5 重要
Network 		オラクル Oracle HR Intelligence オラクルのOracle HR Intelligenceにおける複数の脆弱性 CWE-269
CWE-284
CVE-2026-46971 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
1500 8.8 重要
Network 		オラクル Oracle Outsourced Manufacturing for Discrete Industries オラクルのOracle Outsourced Manufacturing for Discrete Industriesにおける複数の脆弱性 CWE-269
CWE-287
CWE-306
CVE-2026-46972 2026-06-22 11:33 2026-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
309621 - springsource spring_framework VMware SpringSource Spring Framework before 2.5.6.SEC03, 2.5.7.SR023, and 3.x before 3.0.6, when a container supports Expression Language (EL), evaluates EL expressions in tags twice, which allows re… CWE-16
Configuration 		CVE-2011-2730 2024-11-21 10:28 2012-12-6 Show GitHub Exploit DB Packet Storm
309622 - nspluginwrapper nspluginwrapper nspluginwrapper before 1.4.4 does not properly provide access to NPNVprivateModeBool variable settings, which could prevent Firefox plugins from determining if they should run in Private Browsing mod… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-2486 2024-11-21 10:28 2012-11-19 Show GitHub Exploit DB Packet Storm
309623 - tedfelix acpid2 samples/powerbtn/powerbtn.sh in acpid (aka acpid2) 2.0.16 and earlier uses the pidof program incorrectly, which allows local users to gain privileges by running a program with the name kded4 and a DB… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-2777 2024-11-21 10:28 2012-08-30 Show GitHub Exploit DB Packet Storm
309624 - novell zenworks_configuration_management The ISList.ISAvi ActiveX control in AdminStudio in Novell ZENworks Configuration Management (ZCM) 10.2, 10.3, and 11 SP1 provides access to the mscomct2.ocx file, which allows remote attackers to exe… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-2658 2024-11-21 10:28 2012-07-27 Show GitHub Exploit DB Packet Storm
309625 - novell zenworks_configuration_management Directory traversal vulnerability in the LaunchProcess function in the LaunchHelp.HelpLauncher.1 ActiveX control in LaunchHelp.dll in AdminStudio in Novell ZENworks Configuration Management (ZCM) 10.… CWE-22
Path Traversal 		CVE-2011-2657 2024-11-21 10:28 2012-07-27 Show GitHub Exploit DB Packet Storm
309626 - systemtap systemtap The insert_module function in runtime/staprun/staprun_funcs.c in the systemtap runtime tool (staprun) in SystemTap before 1.6 does not properly validate a module when loading it, which allows local u… CWE-20
 Improper Input Validation  		CVE-2011-2503 2024-11-21 10:28 2012-07-27 Show GitHub Exploit DB Packet Storm
309627 - systemtap systemtap runtime/staprun/staprun_funcs.c in the systemtap runtime tool (staprun) in SystemTap before 1.6 does not properly validate modules when a module path is specified by a user for user-space probing, wh… CWE-20
 Improper Input Validation  		CVE-2011-2502 2024-11-21 10:28 2012-07-27 Show GitHub Exploit DB Packet Storm
309628 - t-mobile
busybox 		tm-ac1900
busybox 		The DHCP client (udhcpc) in BusyBox before 1.20.0 allows remote DHCP servers to execute arbitrary commands via shell metacharacters in the (1) HOST_NAME, (2) DOMAIN_NAME, (3) NIS_DOMAIN, and (4) TFTP… CWE-20
 Improper Input Validation  		CVE-2011-2716 2024-11-21 10:28 2012-07-4 Show GitHub Exploit DB Packet Storm
309629 - gnome gdk-pixbuf The gdk_pixbuf__gif_image_load function in gdk-pixbuf/io-gif.c in gdk-pixbuf before 2.23.5 does not properly handle certain return values, which allows remote attackers to cause a denial of service (… NVD-CWE-Other
CVE-2011-2485 2024-11-21 10:28 2012-07-4 Show GitHub Exploit DB Packet Storm
309630 - umich libgssglue
libgssapi 		libgssapi and libgssglue before 0.4 do not properly check privileges, which allows local users to load untrusted configuration files and execute arbitrary code via the GSSAPI_MECH_CONF environment va… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-2709 2024-11-21 10:28 2012-06-22 Show GitHub Exploit DB Packet Storm