Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201 7.5 重要
Network 		VMware Spring HATEOAS VMwareのSpring HATEOASにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-41007 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
202 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		Microsoft Kinect の特権昇格の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-41092 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
203 7 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		Windows DNS クライアントの特権の昇格の脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-41108 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
204 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける不十分なランダム値の使用に関する脆弱性 CWE-330
不十分なランダム値の使用 		CVE-2026-41838 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
205 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-41844 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
206 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41845 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
207 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41846 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
208 5.3 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-41847 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
209 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける非効率的な正規表現の複雑さに関する脆弱性 CWE-1333
非効率的な正規表現の複雑さ 		CVE-2026-41848 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
210 5.3 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41852 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
310071 - otrs otrs Cross-site scripting (XSS) vulnerability in AgentTicketZoom in OTRS 2.4.x before 2.4.9, when RichText is enabled, allows remote attackers to inject arbitrary web script or HTML via JavaScript in an H… CWE-79
Cross-site Scripting 		CVE-2010-4071 2024-11-21 10:20 2011-01-21 Show GitHub Exploit DB Packet Storm
310072 - oracle peoplesoft_and_jdedwards_product_suite Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #23, 9.0 Bundle #14, and 9.1 Bundle #4 allows remote authenticated users to a… NVD-CWE-noinfo
CVE-2010-4461 2024-11-21 10:20 2011-01-20 Show GitHub Exploit DB Packet Storm
310073 - sun sunos Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality and integrity via unknown vectors related to Fault Manager Daemon. NVD-CWE-noinfo
CVE-2010-4460 2024-11-21 10:20 2011-01-20 Show GitHub Exploit DB Packet Storm
310074 - sun sunos Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect availability via unknown vectors related to SCTP and Kernel/sockfs. NVD-CWE-noinfo
CVE-2010-4459 2024-11-21 10:20 2011-01-20 Show GitHub Exploit DB Packet Storm
310075 - sun sunos Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect availability, related to ZFS. NVD-CWE-noinfo
CVE-2010-4458 2024-11-21 10:20 2011-01-20 Show GitHub Exploit DB Packet Storm
310076 - sun sunos Unspecified vulnerability in Oracle Solaris 11 Express allows remote attackers to affect availability, related to SMB and CIFS. NVD-CWE-noinfo
CVE-2010-4457 2024-11-21 10:20 2011-01-20 Show GitHub Exploit DB Packet Storm
310077 - sun java_system_communications_express Unspecified vulnerability in Oracle Sun Java System Communications Express 6.2 and 6.3 allows remote attackers to affect integrity via unknown vectors related to Web Mail. NVD-CWE-noinfo
CVE-2010-4456 2024-11-21 10:20 2011-01-20 Show GitHub Exploit DB Packet Storm
310078 - oracle fusion_middleware Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.2 and 11.1.1.3 allows remote attackers to affect confidentiality and integrity via unknown vectors rel… NVD-CWE-noinfo
CVE-2010-4455 2024-11-21 10:20 2011-01-20 Show GitHub Exploit DB Packet Storm
310079 - oracle fusion_middleware
weblogic_server 		Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 7.0.7, 8.1.6, 9.0, 9.1, 9.2.4, 10.0.2, 10.3.2, and 10.3.3 allows remote attackers to affect integrity via… NVD-CWE-noinfo
CVE-2010-4453 2024-11-21 10:20 2011-01-20 Show GitHub Exploit DB Packet Storm
310080 - oracle audit_vault Unspecified vulnerability in the Audit Vault component in Oracle Audit Vault 10.2.3.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the pr… NVD-CWE-noinfo
CVE-2010-4449 2024-11-21 10:20 2011-01-20 Show GitHub Exploit DB Packet Storm