Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1311	9.8	緊急 Network	Tesseract OCR project	Tesseract OCR	ZapolnochのTesseract OCRにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-26832	2026-06-8 12:28	2026-03-25	Show	GitHub Exploit DB Packet Storm

1312	9.1	緊急 Network	Bytedance Inc.	DeerFlow	Bytedance Inc.のDeerFlowにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40518	2026-06-8 12:28	2026-04-17	Show	GitHub Exploit DB Packet Storm

1313	5.3	警告 Network	The Netty project	netty-incubator-codec-ohttp	Nettyのnetty-incubator-codec-ohttpにおける不十分なランダム値の使用に関する脆弱性	CWE-330 不十分なランダム値の使用	CVE-2026-41207	2026-06-8 12:28	2026-06-4	Show	GitHub Exploit DB Packet Storm

1314	9.8	緊急 Network	DragonSoft	Gcb/fcb Government Financial Cybersecurity Configuration Audit Software	DragonSoftのGcb/fcb Government Financial Cybersecurity Configuration Audit Softwareにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-4312	2026-06-8 12:28	2026-03-17	Show	GitHub Exploit DB Packet Storm

1315	5.5	警告 Local	Linaro	OP-TEE	Trusted FirmwareのOP-TEEにおける型の取り違えに関する脆弱性	CWE-843 型の取り違え	CVE-2026-45702	2026-06-8 12:28	2026-06-3	Show	GitHub Exploit DB Packet Storm

1316	9.1	緊急 Network	The Netty project	netty-incubator-codec-ohttp	Nettyのnetty-incubator-codec-ohttpにおける複数の脆弱性	CWE-125 CWE-787	CVE-2026-48040	2026-06-8 12:28	2026-06-4	Show	GitHub Exploit DB Packet Storm

1317	9.8	緊急 Network	マイクロソフト	Azure HorizonDB	Azure HorizonDB Elevation of Privilege Vulnerability	CWE-290 スプーフィングによる認証回避	CVE-2026-48567	2026-06-8 12:28	2026-06-4	Show	GitHub Exploit DB Packet Storm

1318	7.5	重要 Network	マイクロソフト	Microsoft Exchange Online	Microsoft Exchange Online Information Disclosure Vulnerability	CWE-285 不適切な認可	CVE-2026-48579	2026-06-8 12:27	2026-06-4	Show	GitHub Exploit DB Packet Storm

1319	9.1	緊急 Network	CHORNY	Apache::Session::Generate::ModUniqueId	CHORNYのApache::Session::Generate::ModUniqueIdにおける予測可能な数字や識別子の生成に関する脆弱性	CWE-340 予測可能な数字や識別子の生成	CVE-2026-5081	2026-06-8 12:27	2026-05-6	Show	GitHub Exploit DB Packet Storm

1320	7.1	重要 Adjacent	Securly, Inc.	Securly	Securly, Inc.のSecurlyにおける重要な情報の平文での送信に関する脆弱性	CWE-319 重要な情報の平文での送信	CVE-2026-8874	2026-06-8 12:27	2026-06-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344701	-	spawar.navy.mil	wwwwais.25.c	Buffer overflow in wwwwais allows remote attackers to execute arbitrary commands via a long QUERY_STRING (HTTP GET request).	NVD-CWE-Other	CVE-2001-0223	2017-12-19 11:29	2001-03-26	Show	GitHub Exploit DB Packet Storm

344702	-	ibrow	news_desk	Directory traversal vulnerability in newsdesk.cgi in News Desk 1.2 allows remote attackers to read arbitrary files via a .. in the "t" parameter.	NVD-CWE-Other	CVE-2001-0231	2017-12-19 11:29	2001-03-26	Show	GitHub Exploit DB Packet Storm

344703	-	netscape	enterprise_server	The Web Publishing feature in Netscape Enterprise Server 4.x and earlier allows remote attackers to list arbitrary directories under the web server root via the INDEX command.	NVD-CWE-Other	CVE-2001-0250	2017-12-19 11:29	2001-06-2	Show	GitHub Exploit DB Packet Storm

344704	-	netscape	enterprise_server	The Web Publishing feature in Netscape Enterprise Server 3.x allows remote attackers to cause a denial of service via the REVLOG command.	NVD-CWE-Other	CVE-2001-0251	2017-12-19 11:29	2001-06-2	Show	GitHub Exploit DB Packet Storm

344705	-	iweb_systems	hyperseek	Directory traversal vulnerability in hsx.cgi program in iWeb Hyperseek 2000 allows remote attackers to read arbitrary files and directories via a .. (dot dot) attack in the show parameter.	NVD-CWE-Other	CVE-2001-0253	2017-12-19 11:29	2001-06-2	Show	GitHub Exploit DB Packet Storm

344706	-	fastream	fastream_ftp\+\+_server fastream_ftp_server	FaSTream FTP++ Server 2.0 allows remote attackers to list arbitrary directories by using the "ls" command and including the drive letter name (e.g. C:) in the requested pathname.	NVD-CWE-Other	CVE-2001-0255	2017-12-19 11:29	2001-06-2	Show	GitHub Exploit DB Packet Storm

344707	-	fastream	ftp\+\+_server	FaSTream FTP++ Server 2.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long username.	NVD-CWE-Other	CVE-2001-0256	2017-12-19 11:29	2001-06-2	Show	GitHub Exploit DB Packet Storm

344708	-	i-data_international	easycom_safecom_print_server	Buffer overflow in Easycom/Safecom Print Server Web service, version 404.590 and earlier, allows remote attackers to execute arbitrary commands via (1) a long URL or (2) a long HTTP header field such…	NVD-CWE-Other	CVE-2001-0257	2017-12-19 11:29	2001-06-2	Show	GitHub Exploit DB Packet Storm

344709	-	i-data_international	easycom_safecom_print_server	The Easycom/Safecom Print Server (firmware 404.590) PrintGuide server allows remote attackers to cause a denial of service via a large number of connections that send null characters.	NVD-CWE-Other	CVE-2001-0258	2017-12-19 11:29	2001-06-2	Show	GitHub Exploit DB Packet Storm

344710	-	microsoft	windows_2000	Microsoft Windows 2000 Encrypted File System does not properly destroy backups of files that are encrypted, which allows a local attacker to recover the text of encrypted files.	NVD-CWE-Other	CVE-2001-0261	2017-12-19 11:29	2001-06-2	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed