Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
571 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける不十分なランダム値の使用に関する脆弱性 CWE-330
不十分なランダム値の使用 		CVE-2026-41838 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
572 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-41844 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
573 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41845 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
574 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41846 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
575 5.3 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-41847 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
576 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける非効率的な正規表現の複雑さに関する脆弱性 CWE-1333
非効率的な正規表現の複雑さ 		CVE-2026-41848 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
577 5.3 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41852 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
578 5.1 警告
Local 		ImageMagick ImageMagick ImageMagickにおける複数の脆弱性 CWE-125
CWE-191
CVE-2026-42326 2026-06-12 14:53 2026-06-10 Show GitHub Exploit DB Packet Storm
579 7.5 重要
Network 		Svelte project Svelte Svelte projectのSvelteにおける非効率的な正規表現の複雑さに関する脆弱性 CWE-1333
非効率的な正規表現の複雑さ 		CVE-2026-42567 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
580 7.5 重要
Network 		Svelte project devalue Svelte projectのdevalueにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42570 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254821 6.1 MEDIUM
Network 		vmware single_sign-on_for_pivotal_cloud_foundry In Single Sign-On for Pivotal Cloud Foundry (PCF) 1.3.x versions prior to 1.3.4 and 1.4.x versions prior to 1.4.3, a user can execute a XSS attack on certain Single Sign-On service UI pages by inputt… CWE-79
Cross-site Scripting 		CVE-2017-8041 2024-11-21 12:33 2017-09-9 Show GitHub Exploit DB Packet Storm
254822 6.5 MEDIUM
Network 		vmware single_sign-on_for_pivotal_cloud_foundry In Single Sign-On for Pivotal Cloud Foundry (PCF) 1.3.x versions prior to 1.3.4 and 1.4.x versions prior to 1.4.3, an XXE (XML External Entity) attack was discovered in the Single Sign-On service das… CWE-611
XXE 		CVE-2017-8040 2024-11-21 12:33 2017-09-9 Show GitHub Exploit DB Packet Storm
254823 9.8 CRITICAL
Network 		qemu qemu Buffer overflow in the "megasas_mmio_write" function in Qemu 2.9.0 allows remote attackers to have unspecified impact via unknown vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-8380 2024-11-21 12:33 2017-08-29 Show GitHub Exploit DB Packet Storm
254824 7.5 HIGH
Network 		cloudfoundry capi-release
cf-release 		In Cloud Foundry Foundation CAPI-release versions after v1.6.0 and prior to v1.38.0 and cf-release versions after v244 and prior to v270, there is an incomplete fix for CVE-2017-8035. If you took ste… CWE-200
Information Exposure 		CVE-2017-8037 2024-11-21 12:33 2017-08-22 Show GitHub Exploit DB Packet Storm
254825 7.8 HIGH
Local 		google android In all Qualcomm products with Android releases from CAF using the Linux kernel, in a driver function, a value from userspace is not properly validated potentially leading to an out of bounds heap wri… CWE-787
 Out-of-bounds Write 		CVE-2017-8272 2024-11-21 12:33 2017-08-19 Show GitHub Exploit DB Packet Storm
254826 7.0 HIGH
Local 		google android In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition exists in a driver potentially leading to a use-after-free condition. CWE-362
CWE-416
Race Condition
 Use After Free 		CVE-2017-8270 2024-11-21 12:33 2017-08-19 Show GitHub Exploit DB Packet Storm
254827 7.8 HIGH
Local 		google android In all Qualcomm products with Android releases from CAF using the Linux kernel, the camera application can possibly request frame/command buffer processing with invalid values leading to the driver p… CWE-125
Out-of-bounds Read 		CVE-2017-8268 2024-11-21 12:33 2017-08-19 Show GitHub Exploit DB Packet Storm
254828 7.0 HIGH
Local 		google android In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition exists in an IOCTL handler potentially leading to an integer overflow and then an out-of-bounds write. CWE-362
CWE-190
Race Condition
 Integer Overflow or Wraparound 		CVE-2017-8267 2024-11-21 12:33 2017-08-19 Show GitHub Exploit DB Packet Storm
254829 7.0 HIGH
Local 		google android In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition exists in a video driver potentially leading to a use-after-free condition. CWE-362
CWE-416
Race Condition
 Use After Free 		CVE-2017-8266 2024-11-21 12:33 2017-08-19 Show GitHub Exploit DB Packet Storm
254830 7.0 HIGH
Local 		google android In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition exists in a video driver which can lead to a double free. CWE-362
CWE-415
Race Condition
 Double Free 		CVE-2017-8265 2024-11-21 12:33 2017-08-19 Show GitHub Exploit DB Packet Storm