Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
11 7.5 重要
Network 		VMware Spring HATEOAS VMwareのSpring HATEOASにおけるアクセス制御に関する脆弱性 New CWE-284
CWE-noinfo
CVE-2026-41006 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
12 7.5 重要
Network 		VMware Spring HATEOAS VMwareのSpring HATEOASにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-41007 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
13 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		Microsoft Kinect の特権昇格の脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-41092 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
14 7 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		Windows DNS クライアントの特権の昇格の脆弱性 New CWE-122
ヒープオーバーフロー 		CVE-2026-41108 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
15 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける不十分なランダム値の使用に関する脆弱性 New CWE-330
不十分なランダム値の使用 		CVE-2026-41838 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
16 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるオープンリダイレクトの脆弱性 New CWE-601
オープンリダイレクト 		CVE-2026-41844 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
17 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41845 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
18 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41846 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
19 5.3 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるアクセス制御に関する脆弱性 New CWE-284
CWE-noinfo
CVE-2026-41847 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
20 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける非効率的な正規表現の複雑さに関する脆弱性 New CWE-1333
非効率的な正規表現の複雑さ 		CVE-2026-41848 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344591 - macromedia shockwave_flash_plugin Macromedia Shockwave before 6.0 allows a malicious webmaster to read a user's mail box and possibly access internal web servers via the GetNextText command on a Shockwave movie. NVD-CWE-Other
CVE-1999-1525 2017-12-19 11:29 1997-03-14 Show GitHub Exploit DB Packet Storm
344592 - macromedia shockwave_flash_plugin Auto-update feature of Macromedia Shockwave 7 transmits a user's password and hard disk information back to Macromedia. NVD-CWE-Other
CVE-1999-1526 2017-12-19 11:29 1999-03-11 Show GitHub Exploit DB Packet Storm
344593 - trend_micro interscan_viruswall A buffer overflow exists in the HELO command in Trend Micro Interscan VirusWall SMTP gateway 3.23/3.3 for NT, which may allow an attacker to execute arbitrary code. NVD-CWE-Other
CVE-1999-1529 2017-12-19 11:29 1999-11-7 Show GitHub Exploit DB Packet Storm
344594 - trend_micro interscan_viruswall Eicon Technology Diva LAN ISDN modem allows a remote attacker to cause a denial of service (hang) via a long password argument to the login.htm file in its HTTP service. NVD-CWE-Other
CVE-1999-1533 2017-12-19 11:29 1999-11-7 Show GitHub Exploit DB Packet Storm
344595 - qpc_software qvt_net
qvt_term_plus 		Buffer overflow in FTP server in QPC Software's QVT/Term Plus versions 4.2d and 4.3 and QVT/Net 4.3 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via … NVD-CWE-Other
CVE-1999-1539 2017-12-19 11:29 1999-11-10 Show GitHub Exploit DB Packet Storm
344596 - cactus_software shell-lock shell-lock in Cactus Software Shell Lock uses weak encryption (trivial encoding) which allows attackers to easily decrypt and obtain the source code. NVD-CWE-Other
CVE-1999-1540 2017-12-19 11:29 1999-10-4 Show GitHub Exploit DB Packet Storm
344597 - cactus_software shell-lock shell-lock in Cactus Software Shell Lock allows local users to read or modify decoded shell files before they are executed, via a symlink attack on a temporary file. NVD-CWE-Other
CVE-1999-1541 2017-12-19 11:29 1999-10-4 Show GitHub Exploit DB Packet Storm
344598 - ibm navio_nc_browser netstation.navio-com.rte 1.1.0.1 configuration script for Navio NC on IBM AIX exports /tmp over NFS as world-readable and world-writable. NVD-CWE-Other
CVE-1999-1546 2017-12-19 11:29 1999-01-29 Show GitHub Exploit DB Packet Storm
344599 - ipswitch imail Buffer overflow in Ipswitch IMail Service 5.0 allows an attacker to cause a denial of service (crash) and possibly execute arbitrary commands via a long URL. NVD-CWE-Other
CVE-1999-1551 2017-12-19 11:29 1999-03-2 Show GitHub Exploit DB Packet Storm
344600 - xcmail xcmail Buffer overflow in XCmail 0.99.6 with autoquote enabled allows remote attackers to execute arbitrary commands via a long subject line. NVD-CWE-Other
CVE-1999-1553 2017-12-19 11:29 1999-05-1 Show GitHub Exploit DB Packet Storm