Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4071	6.7	警告 Local	デル	insightiq	デルのinsightiqにおける不要な特権による実行に関する脆弱性	CWE-250 不要な特権による実行	CVE-2026-40638	2026-05-14 10:19	2026-05-12	Show	GitHub Exploit DB Packet Storm

4072	7.5	重要 Network	VMware	Spring Cloud Config	VMwareのSpring Cloud Configにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-40981	2026-05-14 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

4073	9.1	緊急 Network	VMware	Spring Cloud Config	VMwareのSpring Cloud Configにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40982	2026-05-14 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

4074	8.1	重要 Network	VMware	Spring Cloud Config	VMwareのSpring Cloud ConfigにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-41002	2026-05-14 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

4075	4.4	警告 Local	VMware	Spring Cloud Config	VMwareのSpring Cloud Configにおけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2026-41004	2026-05-14 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

4076	5.3	警告 Network	Sync-in	Sync-in Server	Sync-inのSync-in Serverにおけるタイミングの違いに起因する情報漏えいに関する脆弱性	CWE-208 タイミングの違いに起因する情報漏えい	CVE-2026-41161	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4077	5.3	警告 Network	angular	angular	angularにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-41423	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4078	8.1	重要 Network	Linux Foundation	dapr	Linux Foundationのdaprにおける複数の脆弱性	CWE-22 CWE-284 CWE-noinfo	CVE-2026-41491	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4079	7.5	重要 Network	Loren Segal	YARD	Loren SegalのYARDにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41493	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4080	3.3	低 Network	Kimai project	kimai	Kimai projectのKimaiにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-41498	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346501	-	apple	mac_os_x	Mac OS X 10.2.2 allows local users to gain privileges via a mounted ISO 9600 CD, aka "User Privilege Elevation via Mounting an ISO 9600 CD."	NVD-CWE-Other	CVE-2002-1268	2017-10-10 10:30	2002-12-11	Show	GitHub Exploit DB Packet Storm

346502	-	apple	mac_os_x	Mac OS X 10.2.2 allows local users to read files that only allow write access via the map_fd() Mach system call.	NVD-CWE-Other	CVE-2002-1270	2017-10-10 10:30	2002-12-11	Show	GitHub Exploit DB Packet Storm

346503	-	alcatel	aos	Alcatel OmniSwitch 7700/7800 switches running AOS 5.1.1 contains a back door telnet server that was intended for development but not removed before distribution, which allows remote attackers to gain…	NVD-CWE-Other	CVE-2002-1272	2017-10-10 10:30	2002-12-11	Show	GitHub Exploit DB Packet Storm

346504	-	kgpg	kgpg	The wizard in KGPG 0.6 through 0.8.2 does not properly provide the passphrase to gpg when creating new keys, which causes secret keys to be created with an empty passphrase and allows local attackers…	NVD-CWE-Other	CVE-2002-1284	2017-10-10 10:30	2002-11-29	Show	GitHub Exploit DB Packet Storm

346505	-	mozilla netscape	mozilla navigator	Heap-based buffer overflow in Netscape and Mozilla allows remote attackers to execute arbitrary code via a jar: URL that references a malformed .jar file, which overflows a buffer during decompressio…	NVD-CWE-Other	CVE-2002-1308	2017-10-10 10:30	2002-11-29	Show	GitHub Exploit DB Packet Storm

346506	-	nullmailer	nullmailer	nullmailer 1.00RC5 and earlier allows local users to cause a denial of service via an email to a local user that does not exist, which generates an error that causes nullmailer to stop sending mail t…	NVD-CWE-Other	CVE-2002-1313	2017-10-10 10:30	2002-11-29	Show	GitHub Exploit DB Packet Storm

346507	-	linux trustix	linux_kernel secure_linux	The Linux kernel 2.4.20 and earlier, and 2.5.x, when running on x86 systems, allows local users to cause a denial of service (hang) via the emulation mode, which does not properly clear TF and NT EFL…	NVD-CWE-Other	CVE-2002-1319	2017-10-10 10:30	2002-12-11	Show	GitHub Exploit DB Packet Storm

346508	-	tightvnc	tightvnc	TightVNC before 1.2.6 generates the same challenge string for multiple connections, which allows remote attackers to bypass VNC authentication by sniffing the challenge and response of other users.	NVD-CWE-Other	CVE-2002-1336	2017-10-10 10:30	2002-12-11	Show	GitHub Exploit DB Packet Storm

346509	-	sun	cobalt_raq_4	overflow.cgi CGI script in Sun Cobalt RaQ 4 with the SHP (Security Hardening Patch) installed allows remote attackers to execute arbitrary code via a POST request with shell metacharacters in the ema…	NVD-CWE-Other	CVE-2002-1361	2017-10-10 10:30	2002-12-23	Show	GitHub Exploit DB Packet Storm

346510	-	matthew_smith	micq	mICQ 0.4.9 and earlier allows remote attackers to cause a denial of service (crash) via malformed ICQ message types without a 0xFE separator character.	NVD-CWE-Other	CVE-2002-1362	2017-10-10 10:30	2002-12-23	Show	GitHub Exploit DB Packet Storm