Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
11 7.5 重要
Network 		VMware Spring HATEOAS VMwareのSpring HATEOASにおけるアクセス制御に関する脆弱性 New CWE-284
CWE-noinfo
CVE-2026-41006 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
12 7.5 重要
Network 		VMware Spring HATEOAS VMwareのSpring HATEOASにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-41007 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
13 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		Microsoft Kinect の特権昇格の脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-41092 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
14 7 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		Windows DNS クライアントの特権の昇格の脆弱性 New CWE-122
ヒープオーバーフロー 		CVE-2026-41108 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
15 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける不十分なランダム値の使用に関する脆弱性 New CWE-330
不十分なランダム値の使用 		CVE-2026-41838 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
16 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるオープンリダイレクトの脆弱性 New CWE-601
オープンリダイレクト 		CVE-2026-41844 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
17 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41845 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
18 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41846 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
19 5.3 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるアクセス制御に関する脆弱性 New CWE-284
CWE-noinfo
CVE-2026-41847 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
20 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける非効率的な正規表現の複雑さに関する脆弱性 New CWE-1333
非効率的な正規表現の複雑さ 		CVE-2026-41848 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344701 - charles_clark meteor_ftpd Directory traversal vulnerability in Meteor FTP 1.0 allows remote attackers to read arbitrary files via (1) a .. (dot dot) in the ls/LIST command, or (2) a ... in the cd/CWD command. NVD-CWE-Other
CVE-2001-1031 2017-12-19 11:29 2001-09-27 Show GitHub Exploit DB Packet Storm
344702 - compaq trucluster
tru64 		Compaq TruCluster 1.5 allows remote attackers to cause a denial of service via a port scan from a system that does not have a DNS PTR record, which causes the cluster to enter a "split-brain" state. NVD-CWE-Other
CVE-2001-1033 2017-12-19 11:29 2001-09-25 Show GitHub Exploit DB Packet Storm
344703 - freebsd freebsd Format string vulnerability in Hylafax on FreeBSD allows local users to execute arbitrary code via format specifiers in the -h hostname argument for (1) faxrm or (2) faxalter. NVD-CWE-Other
CVE-2001-1034 2017-12-19 11:29 2001-09-23 Show GitHub Exploit DB Packet Storm
344704 - basilix basilix_webmail Basilix Webmail 0.9.7beta, and possibly other versions, stores *.class and *.inc files under the document root and does not restrict access, which could allows remote attackers to obtain sensitive in… NVD-CWE-Other
CVE-2001-1044 2017-12-19 11:29 2001-01-11 Show GitHub Exploit DB Packet Storm
344705 - basilix basilix_webmail Directory traversal vulnerability in basilix.php3 in Basilix Webmail 1.0.3beta and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the request_id[DUMMY] parameter. NVD-CWE-Other
CVE-2001-1045 2017-12-19 11:29 2001-07-6 Show GitHub Exploit DB Packet Storm
344706 - openbsd openbsd Race condition in OpenBSD VFS allows local users to cause a denial of service (kernel panic) by (1) creating a pipe in one thread and causing another thread to set one of the file descriptors to NULL… NVD-CWE-Other
CVE-2001-1047 2017-12-19 11:29 2001-06-2 Show GitHub Exploit DB Packet Storm
344707 - cccsoftware ccc CCCSoftware CCC PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable. NVD-CWE-Other
CVE-2001-1050 2017-12-19 11:29 2001-10-2 Show GitHub Exploit DB Packet Storm
344708 - dark_hart_portal darkportal-unix Dark Hart Portal (darkportal) PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable. NVD-CWE-Other
CVE-2001-1051 2017-12-19 11:29 2001-10-2 Show GitHub Exploit DB Packet Storm
344709 - emergenices_personnel_information_system empris Empris PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable. NVD-CWE-Other
CVE-2001-1052 2017-12-19 11:29 2001-10-2 Show GitHub Exploit DB Packet Storm
344710 - wolfram_research mathematica The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to cause a denial of service (resource exhaustion) by connecting to port 16286 and not disconnecting, which prevents u… NVD-CWE-Other
CVE-2001-1057 2017-12-19 11:29 2001-07-30 Show GitHub Exploit DB Packet Storm