Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3281 8.6 重要
Network 		VMware Spring AI VMwareのSpring AIにおける言語構文の表現に使用される特殊な要素の不適切な無効化に関する脆弱性 CWE-917
言語構文の表現に使用される特殊な要素の不適切な無効化 		CVE-2026-41705 2026-05-14 10:18 2026-05-9 Show GitHub Exploit DB Packet Storm
3282 7.5 重要
Network 		VMware Spring AI VMwareのSpring AIにおける不適切なデフォルトパーミッションに関する脆弱性 CWE-276
不適切なデフォルトパーミッション 		CVE-2026-41712 2026-05-14 10:18 2026-05-12 Show GitHub Exploit DB Packet Storm
3283 8.2 重要
Network 		VMware Spring AI VMwareのSpring AIにおけるテンプレートエンジンで使用される特殊な要素の不適切な無効化に関する脆弱性 CWE-1336
テンプレートエンジンで使用される特殊な要素の不適切な無効化 		CVE-2026-41713 2026-05-14 10:18 2026-05-12 Show GitHub Exploit DB Packet Storm
3284 6.5 警告
Network 		LangGenius Dify LangGeniusのDifyにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-41950 2026-05-14 10:18 2026-05-5 Show GitHub Exploit DB Packet Storm
3285 9.6 緊急
Network 		Streetwriters Notesnook Mobile
Notesnook Desktop 		StreetwritersのNotesnook Desktop等の複数製品における複数の脆弱性 CWE-79
CWE-94
CVE-2026-42090 2026-05-14 10:18 2026-05-4 Show GitHub Exploit DB Packet Storm
3286 6.5 警告
Network 		goshs goshs goshsにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-42091 2026-05-14 10:18 2026-05-4 Show GitHub Exploit DB Packet Storm
3287 4.8 警告
Network 		Weblate wlc Weblateのwlcにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42150 2026-05-14 10:18 2026-05-8 Show GitHub Exploit DB Packet Storm
3288 5.9 警告
Network 		Teluu Ltd. PJSIP Teluu Ltd.のPJSIPにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-42225 2026-05-14 10:18 2026-05-7 Show GitHub Exploit DB Packet Storm
3289 4.3 警告
Network 		Onyx Onyx Onyxにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-42276 2026-05-14 10:18 2026-05-8 Show GitHub Exploit DB Packet Storm
3290 6.5 警告
Network 		Onyx Onyx Onyxにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-42277 2026-05-14 10:18 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346061 - redhat linux apmscript in Apmd in Red Hat 7.2 "Enigma" allows local users to create or change the modification dates of arbitrary files via a symlink attack on the LOW_POWER temporary file, which could be used to… NVD-CWE-Other
CVE-2001-0946 2017-10-10 10:29 2001-12-4 Show GitHub Exploit DB Packet Storm
346062 - microsoft windows_2000 Windows 2000 allows remote attackers to cause a denial of service (CPU consumption) by flooding Internet Key Exchange (IKE) UDP port 500 with packets that contain a large number of dot characters. NVD-CWE-Other
CVE-2001-0951 2017-10-10 10:29 2001-12-7 Show GitHub Exploit DB Packet Storm
346063 - lotus domino Lotus Domino 5.0.5 and 5.0.8, and possibly other versions, allows remote attackers to cause a denial of service (block access to databases that have not been previously accessed) via a URL that inclu… NVD-CWE-Other
CVE-2001-0954 2017-10-10 10:29 2001-12-7 Show GitHub Exploit DB Packet Storm
346064 - john_e._davis most Buffer overflow in tab expansion capability of the most program allows local or remote attackers to execute arbitrary code via a malformed file that is viewed with most. NVD-CWE-Other
CVE-2001-0961 2017-10-10 10:29 2001-09-18 Show GitHub Exploit DB Packet Storm
346065 - ibm websphere_application_server
websphere_commerce_suite 		IBM WebSphere Application Server 3.02 through 3.53 uses predictable session IDs for cookies, which allows remote attackers to gain privileges of WebSphere users via brute force guessing. NVD-CWE-Other
CVE-2001-0962 2017-10-10 10:29 2001-09-19 Show GitHub Exploit DB Packet Storm
346066 - pi-soft spoonftp Directory traversal vulnerability in SpoonFTP 1.1 allows local and sometimes remote attackers to access files outside of the FTP root via a ... (modified dot dot) in the CD (CWD) command. NVD-CWE-Other
CVE-2001-0963 2017-10-10 10:29 2001-09-20 Show GitHub Exploit DB Packet Storm
346067 - freebsd freebsd ipfw in FreeBSD does not properly handle the use of "me" in its rules when point to point interfaces are used, which causes ipfw to allow connections from arbitrary remote hosts. NVD-CWE-Other
CVE-2001-0969 2017-10-10 10:29 2001-08-31 Show GitHub Exploit DB Packet Storm
346068 - mandrakesoft
openldap
debian
redhat 		mandrake_single_network_firewall
openldap
debian_linux
mandrake_linux
mandrake_linux_corporate_server
linux 		slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field. NVD-CWE-Other
CVE-2001-0977 2017-10-10 10:29 2001-07-16 Show GitHub Exploit DB Packet Storm
346069 - caldera openlinux_server
openlinux_workstation 		docview before 1.0-15 allows remote attackers to execute arbitrary commands via shell metacharacters that are processed when converting a man page to a web page. NVD-CWE-Other
CVE-2001-0980 2017-10-10 10:29 2001-07-17 Show GitHub Exploit DB Packet Storm
346070 - hp cifs-9000_server HP CIFS/9000 Server (SAMBA) A.01.07 and earlier with the "unix password sync" option enabled calls the passwd program without specifying the username of the user making the request, which could cause… NVD-CWE-Other
CVE-2001-0981 2017-10-10 10:29 2001-08-31 Show GitHub Exploit DB Packet Storm