Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
311 4.3 警告
Network 		Splunk Splunk AI Toolkit SplunkのSplunk AI Toolkitにおけるリソースの安全ではないデフォルト値への初期化に関する脆弱性 New CWE-1188
リソースの安全ではないデフォルト値への初期化 		CVE-2026-20265 2026-06-23 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
312 9.1 緊急
Network 		Splunk Splunk AI Toolkit SplunkのSplunk AI ToolkitにおけるOS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2026-20266 2026-06-23 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
313 5.9 警告
Network 		VMware Spring Data MongoDB VMwareのSpring Data MongoDBにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 New CWE-943
データクエリロジックの特殊要素の不適切な中立化 		CVE-2026-41696 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
314 8.1 重要
Network 		VMware Spring Data MongoDB VMwareのSpring Data MongoDBにおける言語構文の表現に使用される特殊な要素の不適切な無効化に関する脆弱性 New CWE-917
言語構文の表現に使用される特殊な要素の不適切な無効化 		CVE-2026-41717 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
315 6.5 警告
Network 		VMware spring for apache kafka VMwareのspring for apache kafkaにおける入力確認に関する脆弱性 New CWE-20
不適切な入力確認 		CVE-2026-41727 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
316 7.5 重要
Network 		VMware Spring Data REST VMwareのSpring Data RESTにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-41728 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
317 8.1 重要
Network 		VMware Spring Data REST VMwareのSpring Data RESTにおける言語構文の表現に使用される特殊な要素の不適切な無効化に関する脆弱性 New CWE-917
言語構文の表現に使用される特殊な要素の不適切な無効化 		CVE-2026-41729 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
318 5.3 警告
Network 		VMware Spring Data REST VMwareのSpring Data RESTにおけるエラーメッセージによる情報漏えいに関する脆弱性 New CWE-209
エラーメッセージによる情報漏えい 		CVE-2026-41730 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
319 8.1 重要
Network 		VMware spring for apache kafka VMwareのspring for apache kafkaにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-41731 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
320 5.3 警告
Network 		VMware Spring Data REST VMwareのSpring Data RESTにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-41837 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
320561 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nvme: move stopping keep-alive into nvme_uninit_ctrl() Commit 4733b65d82bd ("nvme: start keep-alive after admin queue setup") mov… CWE-416
 Use After Free 		CVE-2024-45013 2024-09-14 01:35 2024-09-12 Show GitHub Exploit DB Packet Storm
320562 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nouveau/firmware: use dma non-coherent allocator Currently, enabling SG_DEBUG in the kernel will cause nouveau to hit a BUG() on … CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2024-45012 2024-09-14 01:35 2024-09-12 Show GitHub Exploit DB Packet Storm
320563 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: only mark 'subflow' endp as available Adding the following warning ... WARN_ON_ONCE(msk->pm.local_addr_used == 0) … NVD-CWE-noinfo
CVE-2024-45010 2024-09-14 01:35 2024-09-12 Show GitHub Exploit DB Packet Storm
320564 5.4 MEDIUM
Network 		perfexcrm perfex_crm A stored cross-site scripting (XSS) vulnerability in the Discussion section of Perfex CRM v1.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Cont… CWE-79
Cross-site Scripting 		CVE-2024-44851 2024-09-14 01:34 2024-09-12 Show GitHub Exploit DB Packet Storm
320565 9.8 CRITICAL
Network 		comfast cf-xr11_firmware COMFAST CF-XR11 V2.7.2 has a command injection vulnerability in function sub_424CB4. Attackers can send POST request messages to /usr/bin/webmgnt and inject commands into parameter iface. CWE-77
Command Injection 		CVE-2024-44466 2024-09-14 01:32 2024-09-12 Show GitHub Exploit DB Packet Storm
320566 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE copy_fd_bitmaps(new, old, count) is expected to copy the first co… CWE-787
 Out-of-bounds Write 		CVE-2024-45025 2024-09-14 01:30 2024-09-12 Show GitHub Exploit DB Packet Storm
320567 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix hugetlb vs. core-mm PT locking We recently made GUP's common page table walking code to also walk hugetlb VMAs wi… CWE-667
 Improper Locking 		CVE-2024-45024 2024-09-14 01:30 2024-09-12 Show GitHub Exploit DB Packet Storm
320568 7.1 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: md/raid1: Fix data corruption for degraded array with slow disk read_balance() will avoid reading from slow disks as much as poss… CWE-787
 Out-of-bounds Write 		CVE-2024-45023 2024-09-14 01:30 2024-09-12 Show GitHub Exploit DB Packet Storm
320569 3.9 LOW
Physics 		redhat
opensc_project 		enterprise_linux
opensc 		A vulnerability was found in pkcs15-init in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. Insufficient… CWE-908
 Use of Uninitialized Resource 		CVE-2024-45618 2024-09-14 01:30 2024-09-4 Show GitHub Exploit DB Packet Storm
320570 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: cfg80211: Handle SSID based pmksa deletion wpa_supplicant 2.11 sends since 1efdba5fdc2c ("Handle PMKSA flush in t… CWE-476
 NULL Pointer Dereference 		CVE-2024-46672 2024-09-14 01:29 2024-09-12 Show GitHub Exploit DB Packet Storm