Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4811	9.1	緊急 Network	VMware	Spring Cloud Config	VMwareのSpring Cloud Configにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40982	2026-05-14 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

4812	8.1	重要 Network	VMware	Spring Cloud Config	VMwareのSpring Cloud ConfigにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-41002	2026-05-14 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

4813	4.4	警告 Local	VMware	Spring Cloud Config	VMwareのSpring Cloud Configにおけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2026-41004	2026-05-14 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

4814	5.3	警告 Network	Sync-in	Sync-in Server	Sync-inのSync-in Serverにおけるタイミングの違いに起因する情報漏えいに関する脆弱性	CWE-208 タイミングの違いに起因する情報漏えい	CVE-2026-41161	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4815	5.3	警告 Network	angular	angular	angularにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-41423	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4816	8.1	重要 Network	Linux Foundation	dapr	Linux Foundationのdaprにおける複数の脆弱性	CWE-22 CWE-284 CWE-noinfo	CVE-2026-41491	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4817	7.5	重要 Network	Loren Segal	YARD	Loren SegalのYARDにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41493	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4818	3.3	低 Network	Kimai project	kimai	Kimai projectのKimaiにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-41498	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4819	7.4	重要 Network	go-git project	go-git	go-git projectのgo-gitにおける認証情報の不十分な保護に関する脆弱性	CWE-522 認証情報の不十分な保護	CVE-2026-41506	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4820	8.1	重要 Network	Andreas Kloeckner	RELATE	Andreas KloecknerのRELATEにおける複数の脆弱性	CWE-203 CWE-208	CVE-2026-41588	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313561	-	-	-	Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart into running the Ruby interpreter with an attacker-controlled …	-	CVE-2024-48992	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313562	-	-	-	Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart into running the Python interpreter with an attacker-controlle…	-	CVE-2024-48990	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313563	-	-	-	Qualys discovered that needrestart, before version 3.8, passes unsanitized data to a library (Modules::ScanDeps) which expects safe input. This could allow a local attacker to execute arbitrary shell…	-	CVE-2024-11003	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313564	-	-	-	Cross-Site Request Forgery (CSRF) vulnerability in Repute InfoSystems ARMember, Repute InfoSystems ARMember Premium allows Cross-Site Request Forgery.This issue affects ARMember: from n/a through 4.0…	CWE-352 Origin Validation Error	CVE-2022-47424	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313565	-	-	-	In the Linux kernel, the following vulnerability has been resolved: mptcp: init: protect sched with rcu_read_lock Enabling CONFIG_PROVE_RCU_LIST with its dependence CONFIG_RCU_EXPERT creates this s…	-	CVE-2024-53047	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313566	-	-	-	In the Linux kernel, the following vulnerability has been resolved: arm64: dts: imx8ulp: correct the flexspi compatible string The flexspi on imx8ulp only has 16 LUTs, and imx8mm flexspi has 32 LUT…	-	CVE-2024-53046	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313567	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow() There are code paths from which the function is called…	-	CVE-2024-53042	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313568	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_find() The per-netns IP tunnel hash table is protected by the RTNL…	-	CVE-2024-50304	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313569	-	-	-	In the Linux kernel, the following vulnerability has been resolved: resource,kexec: walk_system_ram_res_rev must retain resource flags walk_system_ram_res_rev() erroneously discards resource flags …	-	CVE-2024-50303	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

313570	-	-	-	The Versa Director uses PostgreSQL (Postgres) to store operational and configuration data. It is also needed for High Availability function of the Versa Director. The default configuration has a comm…	-	CVE-2024-42450	2024-11-20 03:15	2024-11-20	Show	GitHub Exploit DB Packet Storm