Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
571 7 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft&n… 		Windows DNS クライアントの特権の昇格の脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-41108 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
572 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける不十分なランダム値の使用に関する脆弱性 CWE-330
不十分なランダム値の使用 		CVE-2026-41838 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
573 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-41844 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
574 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41845 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
575 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41846 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
576 5.3 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-41847 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
577 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける非効率的な正規表現の複雑さに関する脆弱性 CWE-1333
非効率的な正規表現の複雑さ 		CVE-2026-41848 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
578 5.3 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41852 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
579 5.1 警告
Local 		ImageMagick ImageMagick ImageMagickにおける複数の脆弱性 CWE-125
CWE-191
CVE-2026-42326 2026-06-12 14:53 2026-06-10 Show GitHub Exploit DB Packet Storm
580 7.5 重要
Network 		Svelte project Svelte Svelte projectのSvelteにおける非効率的な正規表現の複雑さに関する脆弱性 CWE-1333
非効率的な正規表現の複雑さ 		CVE-2026-42567 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254751 5.9 MEDIUM
Network 		huawei oceanstor_5800_v3_firmware
oceanstor_6900_v3_firmware 		OceanStor 5800 V3 with software V300R002C00 and V300R002C10, OceanStor 6900 V3 V300R001C00 has an information leakage vulnerability. Products use TLS1.0 to encrypt. Attackers can exploit TLS1.0's vul… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2017-8157 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254752 6.8 MEDIUM
Physics 		huawei b2338-168_firmware The outdoor unit of Customer Premise Equipment (CPE) product B2338-168 V100R001C00 has a no authentication vulnerability on the serial port. An attacker can access the serial port on the circuit boar… CWE-306
Missing Authentication for Critical Function 		CVE-2017-8156 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254753 6.5 MEDIUM
Network 		huawei ar120-s_firmware
ar1200_firmware
ar1200-s_firmware
ar150_firmware
ar150-s_firmware
ar160_firmware
ar200_firmware
ar200-s_firmware
ar2200_firmware
ar2200-s_firmware
ar320… 		AR120-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR1200 with software V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR1200-S with s… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-8162 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254754 4.6 MEDIUM
Physics 		huawei eva-l09 EVA-L09 smartphones with software Earlier than EVA-L09C25B150CUSTC25D003 versions,Earlier than EVA-L09C440B140 versions,Earlier than EVA-L09C464B361 versions,Earlier than EVA-L09C675B320CUSTC675D004 … CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2017-8161 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254755 7.8 HIGH
Local 		huawei vicky-al00a_firmware
vicky-al00c_firmware
vicky-tl00a_firmware
victoria-al00a_firmware
victoria-tl00a_firmware 		The Madapt Driver of some Huawei smart phones with software Earlier than Vicky-AL00AC00B172 versions,Vicky-AL00CC768B122,Vicky-TL00AC01B167,Earlier than Victoria-AL00AC00B172 versions,Victoria-TL00AC… CWE-416
 Use After Free 		CVE-2017-8160 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254756 7.8 HIGH
Local 		huawei agassi-l09hn_firmware
agassi-w09hn_firmware
kobe-l09ahn_firmware
kobe-w09chn_firmware 		Some Huawei smartphones with software AGS-L09C233B019,AGS-W09C233B019,KOB-L09C233B017,KOB-W09C233B012 have a type confusion vulnerability. The program initializes a variable using one type, but it la… CWE-704
 Incorrect Type Conversion or Cast 		CVE-2017-8159 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254757 8.4 HIGH
Local 		huawei b2338-168_firmware The outdoor unit of Customer Premise Equipment (CPE) product B2338-168 V100R001C00 has a no authentication vulnerability on a certain port. After accessing the network between the indoor and outdoor … CWE-306
Missing Authentication for Critical Function 		CVE-2017-8155 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254758 7.1 HIGH
Local 		huawei vmall Huawei VMall (for Android) with the versions before 1.5.8.5 have a privilege elevation vulnerability due to improper design. An attacker can trick users into installing a malicious app which can send… CWE-275
 Permission Issues 		CVE-2017-8153 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254759 4.6 MEDIUM
Physics 		huawei honor_5s_firmware Huawei Honor 5S smart phones with software the versions before TAG-TL00C01B173 have a Factory Reset Protection (FRP) bypass security vulnerability due to the improper design. An attacker can access f… CWE-358
 Improperly Implemented Security Check for Standard 		CVE-2017-8152 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254760 6.8 MEDIUM
Physics 		huawei honor_5s_firmware Huawei Honor 5S smart phones with software the versions before TAG-TL00C01B173 have an authentication bypass vulnerability due to the improper design of some components. An attacker can get a user's … CWE-287
Improper Authentication 		CVE-2017-8151 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm