Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 4:11 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
651 8.8 重要
Network 		オラクル Oracle E-Business Suite オラクルのOracle E-Business Suiteにおける権限管理に関する脆弱性 New CWE-269
不適切な権限管理 		CVE-2026-46837 2026-06-8 11:45 2026-05-28 Show GitHub Exploit DB Packet Storm
652 9.9 緊急
Network 		オラクル REST Data Services オラクルのREST Data Servicesにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-46839 2026-06-8 11:45 2026-05-28 Show GitHub Exploit DB Packet Storm
653 10 緊急
Network 		オラクル REST Data Services オラクルのREST Data Servicesにおける複数の脆弱性 New CWE-284
CWE-287
CWE-306
CVE-2026-46840 2026-06-8 11:45 2026-05-28 Show GitHub Exploit DB Packet Storm
654 5.3 警告
Network 		オラクル REST Data Services オラクルのREST Data Servicesにおける情報漏えいに関する脆弱性 New CWE-200
情報漏えい 		CVE-2026-46841 2026-06-8 11:45 2026-05-28 Show GitHub Exploit DB Packet Storm
655 8.5 重要
Network 		Authentik Security Inc authentik Authentik Security Incのauthentikにおける複数の脆弱性 New CWE-20
CWE-347
CVE-2026-47201 2026-06-8 11:45 2026-06-2 Show GitHub Exploit DB Packet Storm
656 9.8 緊急
Network 		Apache Software Foundation Apache Camel Apache Software FoundationのApache Camelにおける大文字と小文字の区別の不適切な処理に関する脆弱性 New CWE-178
大文字と小文字の区別の不適切な処理 		CVE-2026-47323 2026-06-8 11:45 2026-05-19 Show GitHub Exploit DB Packet Storm
657 8.1 重要
Network 		OpenStack OpenStack Ironic OpenStackのOpenStack Ironicにおける相対パストラバーサルの脆弱性 New CWE-23
相対的パストラバーサル 		CVE-2026-48681 2026-06-8 11:45 2026-06-4 Show GitHub Exploit DB Packet Storm
658 7.8 重要
Local 		Open Source Geospatial Foundation GDAL Open Source Geospatial FoundationのGDALにおけるスタックベースのバッファオーバーフローの脆弱性 New CWE-121
スタックオーバーフロー 		CVE-2026-49014 2026-06-8 11:45 2026-05-27 Show GitHub Exploit DB Packet Storm
659 8.8 重要
Network 		Authentik Security Inc authentik Authentik Security Incのauthentikにおける認証に関する脆弱性 New CWE-287
不適切な認証 		CVE-2026-49443 2026-06-8 11:45 2026-06-2 Show GitHub Exploit DB Packet Storm
660 9.8 緊急
Network 		Authentik Security Inc authentik Authentik Security Incのauthentikにおける認証に関する脆弱性 New CWE-287
不適切な認証 		CVE-2026-49448 2026-06-8 11:45 2026-06-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
310631 - horde horde The IMP plugin in Horde allows remote attackers to bypass firewall restrictions and use Horde as a proxy to scan internal networks via a crafted request to an unspecified test script. NOTE: this is … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-1638 2024-11-21 10:14 2010-06-23 Show GitHub Exploit DB Packet Storm
310632 6.5 MEDIUM
Network 		squirrelmail
fedoraproject
apple
redhat 		squirrelmail
fedora
mac_os_x_server
mac_os_x
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_desktop 		The Mail Fetch plugin in SquirrelMail 1.4.20 and earlier allows remote authenticated users to bypass firewall restrictions and use SquirrelMail as a proxy to scan internal networks via a modified POP… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2010-1637 2024-11-21 10:14 2010-06-23 Show GitHub Exploit DB Packet Storm
310633 - oracle
springsource 		fusion_middleware
spring_framework 		SpringSource Spring Framework 2.5.x before 2.5.6.SEC02, 2.5.7 before 2.5.7.SR01, and 3.0.x before 3.0.3 allows remote attackers to execute arbitrary code via an HTTP request containing class.classLoa… CWE-94
Code Injection 		CVE-2010-1622 2024-11-21 10:14 2010-06-22 Show GitHub Exploit DB Packet Storm
310634 - apple itunes
iphone_os 		Use-after-free vulnerability in JavaScriptCore in WebKit in Apple iTunes before 9.2 on Windows, and Apple iOS before 4 on the iPhone and iPod touch, allows remote attackers to execute arbitrary code … CWE-399
 Resource Management Errors 		CVE-2010-1387 2024-11-21 10:14 2010-06-19 Show GitHub Exploit DB Packet Storm
310635 - samba samba The reply_sesssetup_and_X_spnego function in sesssetup.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to trigger an out-of-bounds read, and cause a denial of service (… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-1642 2024-11-21 10:14 2010-06-18 Show GitHub Exploit DB Packet Storm
310636 - samba samba The chain_reply function in process.c in smbd in Samba before 3.4.8 and 3.5.x before 3.5.2 allows remote attackers to cause a denial of service (NULL pointer dereference and process crash) via a Nego… NVD-CWE-Other
CVE-2010-1635 2024-11-21 10:14 2010-06-18 Show GitHub Exploit DB Packet Storm
310637 - apple mac_os_x
mac_os_x_server 		Multiple integer overflows in the Fax3SetupState function in tif_fax3.c in the FAX3 decoder in LibTIFF before 3.9.3, as used in ImageIO in Apple Mac OS X 10.5.8 and Mac OS X 10.6 before 10.6.4, allow… CWE-189
Numeric Errors 		CVE-2010-1411 2024-11-21 10:14 2010-06-18 Show GitHub Exploit DB Packet Storm
310638 - apple mac_os_x
mac_os_x_server 		Cross-site scripting (XSS) vulnerability in Wiki Server in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows remote authenticated users to inject arbitrary web script or HTML via crafted Wiki con… CWE-79
Cross-site Scripting 		CVE-2010-1382 2024-11-21 10:14 2010-06-18 Show GitHub Exploit DB Packet Storm
310639 - apple mac_os_x
mac_os_x_server 		The default configuration of SMB File Server in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, enables support for wide links, which allows remote authenticated users to access arbitrary files via ve… CWE-16
Configuration 		CVE-2010-1381 2024-11-21 10:14 2010-06-18 Show GitHub Exploit DB Packet Storm
310640 - apple mac_os_x_server
mac_os_x 		Integer overflow in the cgtexttops CUPS filter in Printing in Apple Mac OS X 10.6 before 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via … CWE-189
Numeric Errors 		CVE-2010-1380 2024-11-21 10:14 2010-06-18 Show GitHub Exploit DB Packet Storm