Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224931 6.8 警告 IBM - IBM Flex System Manager におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-5424 2013-10-29 16:37 2013-10-22 Show GitHub Exploit DB Packet Storm
224932 7.5 危険 Igor Sysoev - nginx のデフォルト設定における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0337 2013-10-29 15:52 2013-10-6 Show GitHub Exploit DB Packet Storm
224933 6.8 警告 ARM Ltd. (旧 Offspark) - PolarSSL の ssl_tls.c の ssl_read_record 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-5914 2013-10-29 15:47 2013-10-1 Show GitHub Exploit DB Packet Storm
224934 4.3 警告 Dwayne C. Litzenberger - PyCrypto の Crypto.Random.atfork 関数における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-1445 2013-10-29 15:29 2013-10-14 Show GitHub Exploit DB Packet Storm
224935 7.5 危険 VideoLAN - VideoLAN VLC media player におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-6283 2013-10-29 15:23 2013-10-25 Show GitHub Exploit DB Packet Storm
224936 4.9 警告 Canonical - Apport における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1067 2013-10-29 15:19 2013-10-24 Show GitHub Exploit DB Packet Storm
224937 5.8 警告 WellinTech - WellinTech KingView の KChartXY.ocx における任意のファイルを生成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6128 2013-10-29 11:39 2013-10-22 Show GitHub Exploit DB Packet Storm
224938 5.8 警告 WellinTech - WellinTech KingView の SuperGrid.ocx における任意のファイルを生成される脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-6127 2013-10-29 11:34 2013-10-22 Show GitHub Exploit DB Packet Storm
224939 5 警告 Puppet - Puppet Enterprise におけるアクセス制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2013-4965 2013-10-29 11:22 2013-10-15 Show GitHub Exploit DB Packet Storm
224940 6.8 警告 Puppet - Puppet Enterprise のダッシュボードレポートにおける任意の YAML コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-4957 2013-10-29 11:16 2013-10-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
581 7.5 HIGH
Network 		- - In Micrometer, it is possible for a user to provide specially crafted gRPC requests that may cause a denial-of-service (DoS) condition. Affected versions: Micrometer 1.16.0 through 1.16.5; 1.15.0 th… New CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-40983 2026-06-9 22:49 2026-06-9 Show GitHub Exploit DB Packet Storm
582 7.5 HIGH
Network 		- - In Micrometer, it is possible for a user to provide specially crafted HTTP requests that may cause a denial-of-service (DoS) condition. Affected versions: micrometer-core 1.16.0 through 1.16.5; 1.15… New CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-40984 2026-06-9 22:49 2026-06-9 Show GitHub Exploit DB Packet Storm
583 7.5 HIGH
Network 		- - Spring HATEOAS's internal PropertyUtils.createObjectFromProperties method, used by the Collection+JSON and UBER media type deserializers, performs bean property binding via reflection without consult… New CWE-284
Improper Access Control 		CVE-2026-41006 2026-06-9 22:49 2026-06-9 Show GitHub Exploit DB Packet Storm
584 7.5 HIGH
Network 		- - Spring HATEOAS maintains an unbounded static cache of StringLinkRelation instances keyed on attacker-supplied strings. Affected versions: Spring HATEOAS 1.5.0 through 1.5.6; 2.3.0 through 2.3.4; 2.4… New CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-41007 2026-06-9 22:49 2026-06-9 Show GitHub Exploit DB Packet Storm
585 5.9 MEDIUM
Network 		- - An attacker can craft a large number of unique requests that trigger a failure, exhausting the capacity of the application-wide stateful retry cache. Once the cache is full, it permanently rejects an… New CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-41710 2026-06-9 22:49 2026-06-9 Show GitHub Exploit DB Packet Storm
586 6.1 MEDIUM
Network 		- - In specific scenarios involving HTTP redirects from a secure to an insecure endpoint, the Reactor Netty HTTP client may leak credentials. In order for this to happen, the HTTP client must have been e… New CWE-522
 Insufficiently Protected Credentials 		CVE-2026-41715 2026-06-9 22:49 2026-06-9 Show GitHub Exploit DB Packet Storm
587 7.4 HIGH
Network 		- - Spring LDAP's DirContextAuthenticationStrategy implementations do not reject a bind request where a non-empty username is paired with an empty or null password. Affected versions: Spring LDAP 2.4.0 … New CWE-287
Improper Authentication 		CVE-2026-41720 2026-06-9 22:49 2026-06-9 Show GitHub Exploit DB Packet Storm
588 4.8 MEDIUM
Network 		- - IDs for WebSocket sessions in the spring-websocket module are not cryptographically unpredictable, which may be possible to exploit in combination with inadequate authorization rules. Affected versi… New CWE-330
 Use of Insufficiently Random Values 		CVE-2026-41838 2026-06-9 22:49 2026-06-9 Show GitHub Exploit DB Packet Storm
589 4.2 MEDIUM
Network 		- - A WebFlux application with a compromised subdomain (for example, compromised via cross-site scripting (XSS)) is vulnerable to an escalation attack exchanging a known session ID for that of an authent… New CWE-384
 Session Fixation 		CVE-2026-41839 2026-06-9 22:49 2026-06-9 Show GitHub Exploit DB Packet Storm
590 5.9 MEDIUM
Network 		- - Spring WebFlux applications are vulnerable to Denial of Service (DoS) attacks when processing multipart requests. Affected versions: Spring Framework 7.0.0 through 7.0.7; 6.2.0 through 6.2.18; 6.1.0… New CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-41840 2026-06-9 22:49 2026-06-9 Show GitHub Exploit DB Packet Storm