Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
331	7.2	重要 Network	emlog	emlog	emlogにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-39276	2026-06-12 14:54	2026-05-29	Show	GitHub Exploit DB Packet Storm

332	8.1	重要 Network	マイクロソフト	Visual Studio Code	Visual Studio Code の特権の昇格の脆弱性	CWE-20 CWE-noinfo	CVE-2026-40376	2026-06-12 14:54	2026-06-9	Show	GitHub Exploit DB Packet Storm

333	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows ユニバーサルディスクフォーマットファイルシステムドライバー (UDFS) の特権昇格の脆弱性	CWE-197 数値打ち切り誤差	CVE-2026-40409	2026-06-12 14:54	2026-06-9	Show	GitHub Exploit DB Packet Storm

334	7.5	重要 Network	VMware	Spring HATEOAS	VMwareのSpring HATEOASにおけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-41006	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

335	7.5	重要 Network	VMware	Spring HATEOAS	VMwareのSpring HATEOASにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-41007	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

336	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Microsoft Kinect の特権昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-41092	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

337	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows DNS クライアントの特権の昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-41108	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

338	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける不十分なランダム値の使用に関する脆弱性	CWE-330 不十分なランダム値の使用	CVE-2026-41838	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

339	6.1	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-41844	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

340	6.1	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41845	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255701	8.8	HIGH Network	franklinfueling	ts-550_evo_firmware	On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the roleDiag user, which can be obtained by exploiting CVE-2013-7247, has the ability to upload files to the server hosting the web service.…	CWE-862 Missing Authorization	CVE-2017-6565	2024-11-21 12:30	2017-05-2	Show	GitHub Exploit DB Packet Storm

255702	6.5	MEDIUM Network	franklinfueling	ts-550_evo_firmware	On Franklin Fueling Systems TS-550 evo 2.3.0.7332 devices, the Guest user, which contains the lowest privileges, can post to the idSourceFileName parameter found within the /download directory. This …	CWE-862 Missing Authorization	CVE-2017-6564	2024-11-21 12:30	2017-05-2	Show	GitHub Exploit DB Packet Storm

255703	9.8	CRITICAL Network	quest	privilege_manager_for_unix	Buffer Overflow in Quest One Identity Privilege Manager for Unix before 6.0.0.061 allows remote attackers to obtain full access to the policy server via an ACT_ALERT_EVENT request that causes memory …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-6553	2024-11-21 12:30	2017-04-30	Show	GitHub Exploit DB Packet Storm

255704	8.8	HIGH Network	cisco	integrated_management_controller_supervisor	A vulnerability in the web-based GUI of Cisco Integrated Management Controller (IMC) 3.0(1c) could allow an authenticated, remote attacker to execute arbitrary commands on an affected system. The vul…	CWE-20 Improper Input Validation	CVE-2017-6619	2024-11-21 12:30	2017-04-21	Show	GitHub Exploit DB Packet Storm

255705	5.4	MEDIUM Network	cisco	integrated_management_controller_supervisor	A vulnerability in the web-based GUI of Cisco Integrated Management Controller (IMC) 3.0(1c) could allow an authenticated, remote attacker to perform a cross-site scripting (XSS) attack. The vulnerab…	CWE-79 Cross-site Scripting	CVE-2017-6618	2024-11-21 12:30	2017-04-21	Show	GitHub Exploit DB Packet Storm

255706	5.4	MEDIUM Network	cisco	integrated_management_controller_supervisor	A vulnerability in the session identification management functionality of the web-based GUI of Cisco Integrated Management Controller (IMC) 3.0(1c) could allow an unauthenticated, remote attacker to …	CWE-287 Improper Authentication	CVE-2017-6617	2024-11-21 12:30	2017-04-21	Show	GitHub Exploit DB Packet Storm

255707	8.8	HIGH Network	cisco	integrated_management_controller_supervisor	A vulnerability in the web-based GUI of Cisco Integrated Management Controller (IMC) 3.0(1c) could allow an authenticated, remote attacker to execute arbitrary code on an affected system. The vulnera…	CWE-20 Improper Input Validation	CVE-2017-6616	2024-11-21 12:30	2017-04-21	Show	GitHub Exploit DB Packet Storm

255708	6.3	MEDIUM Network	cisco	ios_xe	A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS XE 3.16 could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The vulnera…	CWE-362 CWE-125 Race Condition Out-of-bounds Read	CVE-2017-6615	2024-11-21 12:30	2017-04-21	Show	GitHub Exploit DB Packet Storm

255709	6.5	MEDIUM Network	cisco	findit_network_probe	A vulnerability in the file-download feature of the web user interface for Cisco FindIT Network Probe Software 1.0.0 could allow an authenticated, remote attacker to download and view any system file…	CWE-200 Information Exposure	CVE-2017-6614	2024-11-21 12:30	2017-04-21	Show	GitHub Exploit DB Packet Storm

255710	5.8	MEDIUM Network	cisco	prime_network_registrar	A vulnerability in the DNS input packet processor for Cisco Prime Network Registrar could allow an unauthenticated, remote attacker to cause the DNS process to momentarily restart, which could lead t…	CWE-20 Improper Input Validation	CVE-2017-6613	2024-11-21 12:30	2017-04-21	Show	GitHub Exploit DB Packet Storm