Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
571 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-41844 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
572 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41845 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
573 6.1 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41846 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
574 5.3 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-41847 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
575 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける非効率的な正規表現の複雑さに関する脆弱性 CWE-1333
非効率的な正規表現の複雑さ 		CVE-2026-41848 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
576 5.3 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41852 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
577 5.1 警告
Local 		ImageMagick ImageMagick ImageMagickにおける複数の脆弱性 CWE-125
CWE-191
CVE-2026-42326 2026-06-12 14:53 2026-06-10 Show GitHub Exploit DB Packet Storm
578 7.5 重要
Network 		Svelte project Svelte Svelte projectのSvelteにおける非効率的な正規表現の複雑さに関する脆弱性 CWE-1333
非効率的な正規表現の複雑さ 		CVE-2026-42567 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
579 7.5 重要
Network 		Svelte project devalue Svelte projectのdevalueにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42570 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
580 6.1 警告
Network 		Svelte project Svelte Svelte projectのSvelteにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42573 2026-06-12 14:53 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344141 - microsoft jet Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary code via a specially-crafted database query. NVD-CWE-Other
CVE-2004-0197 2018-10-13 06:34 2004-06-1 Show GitHub Exploit DB Packet Storm
344142 - microsoft windows_2003_server
windows_xp 		Help and Support Center in Microsoft Windows XP and Windows Server 2003 SP1 does not properly validate HCP URLs, which allows remote attackers to execute arbitrary code, as demonstrated using certain… NVD-CWE-Other
CVE-2004-0199 2018-10-13 06:34 2004-06-14 Show GitHub Exploit DB Packet Storm
344143 - bea
borland_software
businessobjects
microsoft 		weblogic_server
j_builder
crystal_enterprise
crystal_enterprise_java_sdk
crystal_enterprise_ras
crystal_reports
business_solutions_crm
outlook
visual_studio_.net 		Directory traversal vulnerability in the web viewers for Business Objects Crystal Reports 9 and 10, and Crystal Enterprise 9 or 10, as used in Visual Studio .NET 2003 and Outlook 2003 with Business C… NVD-CWE-Other
CVE-2004-0204 2018-10-13 06:34 2004-08-6 Show GitHub Exploit DB Packet Storm
344144 - avaya
microsoft 		ip600_media_servers
internet_information_server
definity_one_media_server
s8100
modular_messaging_message_storage_server 		Buffer overflow in Microsoft Internet Information Server (IIS) 4.0 allows local users to execute arbitrary code via the redirect function. NVD-CWE-Other
CVE-2004-0205 2018-10-13 06:34 2004-08-6 Show GitHub Exploit DB Packet Storm
344145 - microsoft windows_2000
windows_2003_server
windows_98
windows_nt
windows_xp 		Network Dynamic Data Exchange (NetDDE) services for Microsoft Windows 98, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows attackers to remotely execute arbitrary code or loca… NVD-CWE-Other
CVE-2004-0206 2018-10-13 06:34 2004-11-3 Show GitHub Exploit DB Packet Storm
344146 - microsoft windows_2000
windows_2003_server
windows_98
windows_nt
windows_xp 		"Shatter" style vulnerability in the Window Management application programming interface (API) for Microsoft Windows 98, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows local… NVD-CWE-Other
CVE-2004-0207 2018-10-13 06:34 2004-11-3 Show GitHub Exploit DB Packet Storm
344147 - microsoft windows_2000
windows_2003_server
windows_nt
windows_xp 		The Virtual DOS Machine (VDM) subsystem of Microsoft Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows local users to access kernel memory and gain privileges via a malicious p… NVD-CWE-Other
CVE-2004-0208 2018-10-13 06:34 2004-11-3 Show GitHub Exploit DB Packet Storm
344148 - microsoft windows_2000
windows_2003_server
windows_xp 		Unknown vulnerability in the Graphics Rendering Engine processes of Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via (1) Windows Metaf… NVD-CWE-Other
CVE-2004-0209 2018-10-13 06:34 2004-11-3 Show GitHub Exploit DB Packet Storm
344149 - microsoft windows_2003_server The kernel for Microsoft Windows Server 2003 does not reset certain values in CPU data structures, which allows local users to cause a denial of service (system crash) via a malicious program. NVD-CWE-Other
CVE-2004-0211 2018-10-13 06:34 2004-11-3 Show GitHub Exploit DB Packet Storm
344150 - avaya
microsoft 		ip600_media_servers
outlook_express
definity_one_media_server
s8100
modular_messaging_message_storage_server 		Microsoft Outlook Express 5.5 and 6 allows attackers to cause a denial of service (application crash) via a malformed e-mail header. NVD-CWE-Other
CVE-2004-0215 2018-10-13 06:34 2004-08-6 Show GitHub Exploit DB Packet Storm