Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231	5.4	警告 Network	VMware	Spring Security	VMwareのSpring Securityにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41003	2026-06-15 11:18	2026-06-10	Show	GitHub Exploit DB Packet Storm

232	6.1	警告 Network	QNAP Systems	QuTS hero QNAP QTS	QNAP SystemsのQNAP QTS等の複数製品におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41539	2026-06-15 11:18	2026-06-9	Show	GitHub Exploit DB Packet Storm

233	5.3	警告 Network	VMware	Spring Security	VMwareのSpring Securityにおけるデジタル署名の検証に関する脆弱性 New	CWE-347 デジタル署名の不適切な検証	CVE-2026-41694	2026-06-15 11:18	2026-06-10	Show	GitHub Exploit DB Packet Storm

234	9.8	緊急 Network	VMware	spring for graphql	VMwareのspring for graphqlにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-41699	2026-06-15 11:18	2026-06-11	Show	GitHub Exploit DB Packet Storm

235	8.1	重要 Network	VMware	spring for graphql	VMwareのspring for graphqlにおける同一生成元ポリシー違反に関する脆弱性 New	CWE-346 同一生成元ポリシー違反	CVE-2026-41700	2026-06-15 11:18	2026-06-11	Show	GitHub Exploit DB Packet Storm

236	7.5	重要 Network	VMware	spring for graphql	VMwareのspring for graphqlにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-41856	2026-06-15 11:18	2026-06-11	Show	GitHub Exploit DB Packet Storm

237	7.5	重要 Network	tdengine	tdengine	tdengineにおける整数アンダーフローの脆弱性 New	CWE-191 整数アンダーフロー	CVE-2026-42542	2026-06-15 11:18	2026-06-10	Show	GitHub Exploit DB Packet Storm

238	8.1	重要 Network	マイクロソフト	Microsoft Teams	Android 用の Microsoft Teams の情報漏えいの脆弱性 New	CWE-74 インジェクション	CVE-2026-42835	2026-06-15 11:18	2026-06-9	Show	GitHub Exploit DB Packet Storm

239	9.8	緊急 Network	QNAP Systems	qumagie	QNAP Systemsのqumagieにおけるユーザ制御の鍵による認証回避に関する脆弱性 New	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-44083	2026-06-15 11:18	2026-06-9	Show	GitHub Exploit DB Packet Storm

240	7.5	重要 Network	axios project	axios	axios projectのaxiosにおける情報漏えいに関する脆弱性 New	CWE-200 情報漏えい	CVE-2026-44486	2026-06-15 11:18	2026-06-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344341	-	lesstif sgi x.org xfree86_project altlinux mandrakesoft redhat suse	lesstif propack x11r6 alt_linux mandrake_linux mandrake_linux_corporate_server enterprise_linux enterprise_linux_desktop fedora_core suse_linux	scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.	NVD-CWE-Other	CVE-2005-0605	2018-10-4 06:29	2005-03-2	Show	GitHub Exploit DB Packet Storm

344342	-	squid	squid	Race condition in Squid 2.5.STABLE7 to 2.5.STABLE9, when using the Netscape Set-Cookie recommendations for handling cookies in caches, may cause Set-Cookie headers to be sent to other users, which al…	NVD-CWE-Other	CVE-2005-0626	2018-10-4 06:29	2005-03-8	Show	GitHub Exploit DB Packet Storm

344343	-	libexif	libexif	Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possi…	NVD-CWE-Other	CVE-2005-0664	2018-10-4 06:29	2005-05-2	Show	GitHub Exploit DB Packet Storm

344344	-	squid	squid	Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (segmentation fault) by aborting the connection during a (1) PUT or (2) POST request, which causes Squid to access p…	NVD-CWE-Other	CVE-2005-0718	2018-10-4 06:29	2005-04-14	Show	GitHub Exploit DB Packet Storm

344345	-	linux	linux_kernel	The load_elf_library in the Linux kernel before 2.6.11.6 allows local users to cause a denial of service (kernel crash) via a crafted ELF library or executable, which causes a free of an invalid poin…	NVD-CWE-Other	CVE-2005-0749	2018-10-4 06:29	2005-04-1	Show	GitHub Exploit DB Packet Storm

344346	-	linux	linux_kernel	Race condition in the Radeon DRI driver for Linux kernel 2.6.8.1 allows local users with DRI privileges to execute arbitrary code as root.	NVD-CWE-Other	CVE-2005-0767	2018-10-4 06:29	2005-03-15	Show	GitHub Exploit DB Packet Storm

344347	-	ximian	evolution	Evolution 2.0.3 allows remote attackers to cause a denial of service (application crash or hang) via crafted messages, possibly involving charsets in attachment filenames.	NVD-CWE-Other	CVE-2005-0806	2018-10-4 06:29	2005-05-2	Show	GitHub Exploit DB Packet Storm

344348	-	yukihiro_matsumoto gentoo mandrakesoft ubuntu	ruby linux mandrake_linux mandrake_linux_corporate_server ubuntu_linux	The CGI module in Ruby 1.6 before 1.6.8, and 1.8 before 1.8.2, allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a certain HTTP request.	NVD-CWE-Other	CVE-2004-0983	2018-10-4 06:29	2005-03-1	Show	GitHub Exploit DB Packet Storm

344349	-	info-zip	zip	Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when using recursive folder compression, allows remote attackers to execute arbitrary code via a ZIP file containing a long pathname.	NVD-CWE-Other	CVE-2004-1010	2018-10-4 06:29	2005-03-1	Show	GitHub Exploit DB Packet Storm

344350	-	linux ubuntu	linux_kernel ubuntu_linux	Race condition in Linux kernel 2.6 allows local users to read the environment variables of another process that is still spawning via /proc/.../cmdline.	NVD-CWE-Other	CVE-2004-1058	2018-10-4 06:29	2005-01-10	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed