Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
261 9.8 緊急
Network 		InHand Networks IR915L-FQ39-S Firmware
IR912L-FQ58 Firmware 		InHand NetworksのIR912L-FQ58 Firmware等の複数製品におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-38716 2026-06-24 10:00 2026-06-18 Show GitHub Exploit DB Packet Storm
262 9.8 緊急
Network 		InHand Networks IR915L-FQ39-S Firmware
IR912L-FQ58 Firmware 		InHand NetworksのIR912L-FQ58 Firmware等の複数製品におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-38717 2026-06-24 10:00 2026-06-18 Show GitHub Exploit DB Packet Storm
263 7.5 重要
Network 		InHand Networks IR915L-FQ39-S Firmware
IR912L-FQ58 Firmware 		InHand NetworksのIR912L-FQ58 Firmware等の複数製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2026-38718 2026-06-24 10:00 2026-06-18 Show GitHub Exploit DB Packet Storm
264 6.5 警告
Network 		Palo Alto Networks Idira Identity Browser Extension Palo Alto NetworksのIdira Identity Browser Extensionにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-45173 2026-06-24 10:00 2026-06-11 Show GitHub Exploit DB Packet Storm
265 7.8 重要
Local 		Palo Alto Networks Idira Endpoint Privilege Manager Palo Alto NetworksのIdira Endpoint Privilege Managerにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性 CWE-404
リソースの不適切なシャットダウンおよびリリース 		CVE-2026-45174 2026-06-24 10:00 2026-06-11 Show GitHub Exploit DB Packet Storm
266 7.8 重要
Local 		Palo Alto Networks Idira Endpoint Privilege Manager Palo Alto NetworksのIdira Endpoint Privilege Managerにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-45175 2026-06-24 10:00 2026-06-11 Show GitHub Exploit DB Packet Storm
267 7.8 重要
Local 		Palo Alto Networks Idira Endpoint Privilege Manager Palo Alto NetworksのIdira Endpoint Privilege Managerにおける権限管理に関する脆弱性 CWE-269
CWE-Other
CVE-2026-45176 2026-06-24 10:00 2026-06-11 Show GitHub Exploit DB Packet Storm
268 9.1 緊急
Network 		Palo Alto Networks Idira Secrets Manager Edge Palo Alto NetworksのIdira Secrets Manager Edgeにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-45177 2026-06-24 10:00 2026-06-11 Show GitHub Exploit DB Packet Storm
269 8.1 重要
Network 		Palo Alto Networks Idira Secrets Manager
Idira Secrets Manager Credential Providers 		Palo Alto NetworksのIdira Secrets Manager等の複数製品におけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-45178 2026-06-24 10:00 2026-06-11 Show GitHub Exploit DB Packet Storm
270 6.5 警告
Network 		デル PowerFlex Manager デルのPowerFlex Managerにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2024-47477 2026-06-24 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254241 8.1 HIGH
Network 		jenkins black_duck_hub An improper authorization vulnerability exists in Jenkins Black Duck Hub Plugin 3.0.3 and older in PostBuildScanDescriptor.java that allows users with Overall/Read permission to read and write the Bl… CWE-863
 Incorrect Authorization 		CVE-2018-1000197 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254242 6.5 MEDIUM
Network 		jenkins gitlab_hook A exposure of sensitive information vulnerability exists in Jenkins Gitlab Hook Plugin 1.4.2 and older in gitlab_notifier.rb, views/gitlab_notifier/global.erb that allows attackers with local Jenkins… CWE-200
Information Exposure 		CVE-2018-1000196 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254243 4.3 MEDIUM
Network 		jenkins
oracle 		jenkins
communications_cloud_native_core_automated_test_suite 		A server-side request forgery vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in ZipExtractionInstaller.java that allows users with Overall/Read permission to have Jenkins subm… CWE-352
 Origin Validation Error 		CVE-2018-1000195 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254244 8.1 HIGH
Network 		jenkins
oracle 		jenkins
communications_cloud_native_core_automated_test_suite 		A path traversal vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in FilePath.java, SoloFilePathFilter.java that allows malicious agents to read and write arbitrary files on the… CWE-22
Path Traversal 		CVE-2018-1000194 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254245 4.3 MEDIUM
Network 		jenkins
oracle 		jenkins
communications_cloud_native_core_automated_test_suite 		A improper neutralization of control sequences vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in HudsonPrivateSecurityRealm.java that allows users to sign up using user names … CWE-74
Injection 		CVE-2018-1000193 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254246 4.3 MEDIUM
Network 		jenkins
oracle 		jenkins
communications_cloud_native_core_automated_test_suite 		A information exposure vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in AboutJenkins.java, ListPluginsCommand.java that allows users with Overall/Read access to enumerate all… NVD-CWE-noinfo
CVE-2018-1000192 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254247 6.5 MEDIUM
Network 		jenkins synopsys_detect A exposure of sensitive information vulnerability exists in Jenkins Black Duck Detect Plugin 1.4.0 and older in DetectPostBuildStepDescriptor.java that allows attackers with Overall/Read access to co… CWE-200
Information Exposure 		CVE-2018-1000191 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254248 6.5 MEDIUM
Network 		jenkins black_duck_hub A exposure of sensitive information vulnerability exists in Jenkins Black Duck Hub Plugin 4.0.0 and older in PostBuildScanDescriptor.java that allows attackers with Overall/Read access to connect to … CWE-200
Information Exposure 		CVE-2018-1000190 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254249 8.8 HIGH
Network 		jenkins absint_astree A command execution vulnerability exists in Jenkins Absint Astree Plugin 1.0.5 and older in AstreeBuilder.java that allows attackers with Overall/Read access to execute a command on the Jenkins maste… NVD-CWE-noinfo
CVE-2018-1000189 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm
254250 5.4 MEDIUM
Network 		jenkins cas A server-side request forgery vulnerability exists in Jenkins CAS Plugin 1.4.1 and older in CasSecurityRealm.java that allows attackers with Overall/Read access to cause Jenkins to send a GET request… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2018-1000188 2024-11-21 12:39 2018-06-6 Show GitHub Exploit DB Packet Storm