Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3541 7.5 重要
Network 		マイクロソフト Microsoft Global Secure Access (GSA) Microsoft グローバル セキュア アクセス (GSA) の情報漏えいの脆弱性 CWE-269
不適切な権限管理 		CVE-2026-23663 2026-05-29 11:20 2026-05-22 Show GitHub Exploit DB Packet Storm
3542 8.8 重要
Network 		マイクロソフト Azure Privileged Identity Management (PIM) Azure Privileged Identity Management (PIM) Elevation of Privilege Vulnerability CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-35430 2026-05-29 11:20 2026-05-22 Show GitHub Exploit DB Packet Storm
3543 8.8 重要
Network 		マイクロソフト Azure Virtual Network Gateway Azure Virtual Network Gateway Remote Code Execution Vulnerability CWE-20
CWE-noinfo
CVE-2026-40411 2026-05-29 11:20 2026-05-22 Show GitHub Exploit DB Packet Storm
3544 9.8 緊急
Network 		マイクロソフト Azure Orbital Spatio Azure Orbital Spatio のリモートでコードが実行される脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2026-40412 2026-05-29 11:20 2026-05-22 Show GitHub Exploit DB Packet Storm
3545 9.8 緊急
Network 		midoks mdserver-web midoksのmdserver-webにおける複数の脆弱性 CWE-78
CWE-862
CVE-2026-41315 2026-05-29 11:20 2026-05-14 Show GitHub Exploit DB Packet Storm
3546 7.5 重要
Network 		opentelemetry OpenTelemetry.OpAmp.Client opentelemetryのOpenTelemetry.OpAmp.Clientにおける過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-42348 2026-05-29 11:20 2026-05-12 Show GitHub Exploit DB Packet Storm
3547 9.1 緊急
Network 		Archive::Tar project Archive::Tar Archive::Tar projectのArchive::Tarにおけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題 		CVE-2026-42496
CVE-2026-42497 		2026-05-29 11:20 2026-05-26 Show GitHub Exploit DB Packet Storm
3548 7.5 重要
Network 		Archive::Tar project Archive::Tar Archive::Tar projectのArchive::Tarにおける複数の脆弱性 CWE-59
CWE-732
CVE-2026-42496
CVE-2026-42497 		2026-05-29 11:20 2026-05-26 Show GitHub Exploit DB Packet Storm
3549 6.5 警告
Network 		Hatchet Hatchet Hatchetにおける複数の脆弱性 CWE-639
CWE-863
CVE-2026-42572 2026-05-29 11:19 2026-05-14 Show GitHub Exploit DB Packet Storm
3550 9.8 緊急
Network 		Workiva Arelle WorkivaのArelleにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-42796 2026-05-29 11:19 2026-05-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3511 7.1 HIGH
Local 		samsung assistant Improper export of android application components in ExpressHomeWidgetReceiver of Samsung Assistant prior to version 9.3.14 allows local attacker to execute arbitrary script. NVD-CWE-noinfo
CVE-2026-21033 2026-06-12 04:43 2026-06-5 Show GitHub Exploit DB Packet Storm
3512 7.1 HIGH
Local 		samsung assistant Improper export of android application components in SmartHomeWidgetReceiver of Samsung Assistant prior to version 9.3.14 allows local attacker to execute arbitrary script. NVD-CWE-noinfo
CVE-2026-21032 2026-06-12 04:42 2026-06-5 Show GitHub Exploit DB Packet Storm
3513 6.5 MEDIUM
Network 		erlang erlang\/inets
erlang\/otp
ftp 		Server-Side Request Forgery (SSRF) vulnerability in Erlang/OTP ftp (ftp_internal module) allows FTP bounce attacks and SSRF via an unvalidated PASV response IP address. The ftp_internal:handle_ctrl_… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-48858 2026-06-12 04:27 2026-06-11 Show GitHub Exploit DB Packet Storm
3514 6.5 MEDIUM
Network 		microsoft windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2019
windows_server_2022
windows_server_2025 		Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information locally. CWE-200
Information Exposure 		CVE-2026-42907 2026-06-12 04:23 2026-06-10 Show GitHub Exploit DB Packet Storm
3515 8.6 HIGH
Local 		adobe dreamweaver Dreamweaver Desktop versions 21.7 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could result in arbitrary code execution in the context of the curren… NVD-CWE-noinfo
CVE-2026-47906 2026-06-12 04:22 2026-06-10 Show GitHub Exploit DB Packet Storm
3516 6.3 MEDIUM
Local 		adobe dreamweaver Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Access Control vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to a… CWE-284
NVD-CWE-noinfo
Improper Access Control 		CVE-2026-47907 2026-06-12 04:21 2026-06-10 Show GitHub Exploit DB Packet Storm
3517 7.8 HIGH
Local 		adobe dreamweaver Dreamweaver Desktop versions 21.7 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploi… CWE-824
 Access of Uninitialized Pointer 		CVE-2026-47908 2026-06-12 04:20 2026-06-10 Show GitHub Exploit DB Packet Storm
3518 6.3 MEDIUM
Local 		adobe dreamweaver Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to… CWE-20
NVD-CWE-noinfo
 Improper Input Validation  		CVE-2026-47909 2026-06-12 04:18 2026-06-10 Show GitHub Exploit DB Packet Storm
3519 6.3 MEDIUM
Local 		adobe dreamweaver Dreamweaver Desktop versions 21.7 and earlier are affected by an Incorrect Authorization vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to a… CWE-863
 Incorrect Authorization 		CVE-2026-47910 2026-06-12 04:16 2026-06-10 Show GitHub Exploit DB Packet Storm
3520 7.8 HIGH
Local 		adobe acrobat
acrobat_reader 		Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. E… CWE-787
 Out-of-bounds Write 		CVE-2026-47911 2026-06-12 04:15 2026-06-10 Show GitHub Exploit DB Packet Storm