Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2811 7.5 重要
Network 		OpenMRS OpenMRS OpenMRSにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40075 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
2812 7.8 重要
Local 		デル Dell ObjectScale
elastic cloud storage 		デルのelastic cloud storage等の複数製品におけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2026-40636 2026-05-14 10:19 2026-05-11 Show GitHub Exploit DB Packet Storm
2813 6.7 警告
Local 		デル insightiq デルのinsightiqにおける不要な特権による実行に関する脆弱性 CWE-250
不要な特権による実行 		CVE-2026-40638 2026-05-14 10:19 2026-05-12 Show GitHub Exploit DB Packet Storm
2814 7.5 重要
Network 		VMware Spring Cloud Config VMwareのSpring Cloud Configにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-40981 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
2815 9.1 緊急
Network 		VMware Spring Cloud Config VMwareのSpring Cloud Configにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40982 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
2816 8.1 重要
Network 		VMware Spring Cloud Config VMwareのSpring Cloud ConfigにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-41002 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
2817 4.4 警告
Local 		VMware Spring Cloud Config VMwareのSpring Cloud Configにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-41004 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
2818 5.3 警告
Network 		Sync-in Sync-in Server Sync-inのSync-in Serverにおけるタイミングの違いに起因する情報漏えいに関する脆弱性 CWE-208
タイミングの違いに起因する情報漏えい 		CVE-2026-41161 2026-05-14 10:19 2026-05-8 Show GitHub Exploit DB Packet Storm
2819 5.3 警告
Network 		angular angular angularにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41423 2026-05-14 10:19 2026-05-8 Show GitHub Exploit DB Packet Storm
2820 8.1 重要
Network 		Linux Foundation dapr Linux Foundationのdaprにおける複数の脆弱性 CWE-22
CWE-284
CWE-noinfo
CVE-2026-41491 2026-05-14 10:19 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312111 - - - Cleartext transmission of sensitive information for some BigDL software maintained by Intel(R) before version 2.5.0 may allow an authenticated user to potentially enable denial of service via adjacen… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2024-28169 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312112 - - - Out-of-bounds read in some Intel(R) VPL software before version 24.1.4 may allow an authenticated user to potentially enable information disclosure via local access. CWE-125
Out-of-bounds Read 		CVE-2024-28051 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312113 - - - Improper input validation in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi wireless products before version 23.40 may allow an unauthenticated user to enable denia… - CVE-2024-28049 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312114 - - - NULL pointer dereference in some Intel(R) VPL software before version 24.1.4 may allow an authenticated user to potentially enable denial of service via local access. CWE-395
 Use of NullPointerException Catch to Detect NULL Pointer Dereference 		CVE-2024-28030 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312115 - - - Improper input validation in some Intel(R) Neural Compressor software before version v3.0 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. - CVE-2024-28028 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312116 - - - Improper access control in some Intel(R) Granulate(TM) software before version 4.30.1 may allow a authenticated user to potentially enable escalation of privilege via local access. CWE-284
Improper Access Control 		CVE-2024-27200 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312117 - - - Uncontrolled search path in some Intel(R) Rendering Toolkit software before version 2024.1.0 may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-427
 Uncontrolled Search Path Element 		CVE-2024-26017 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312118 - - - Incorrect default permissions for some Intel(R) Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via l… CWE-276
Incorrect Default Permissions  		CVE-2024-25647 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312119 - - - Insufficient control flow management in UEFI firmware for some Intel(R) Xeon(R) Processors may allow an authenticated user to enable denial of service via local access. CWE-691
 Insufficient Control Flow Management 		CVE-2024-25565 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
312120 - - - Improper initialization in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi before version 23.40 may allow a privileged user to potentially enable information disclos… CWE-665
 Improper Initialization 		CVE-2024-25563 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm