Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
171	7.5	重要 Network	VMware	Spring HATEOAS	VMwareのSpring HATEOASにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-41007	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

172	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Microsoft Kinect の特権昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-41092	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

173	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows DNS クライアントの特権の昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-41108	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

174	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける不十分なランダム値の使用に関する脆弱性	CWE-330 不十分なランダム値の使用	CVE-2026-41838	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

175	6.1	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-41844	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

176	6.1	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41845	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

177	6.1	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41846	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

178	5.3	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-41847	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

179	7.5	重要 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける非効率的な正規表現の複雑さに関する脆弱性	CWE-1333 非効率的な正規表現の複雑さ	CVE-2026-41848	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

180	5.3	警告 Network	VMware	Spring Framework	VMwareのSpring Frameworkにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-41852	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344461	-	goahead_software	goahead_webserver	GoAhead webserver 2.1 allows remote attackers to cause a denial of service via an HTTP request to the /aux directory.	NVD-CWE-Other	CVE-2001-0385	2017-12-20 11:29	2001-07-2	Show	GitHub Exploit DB Packet Storm

344462	-	counterpane	password_safe	Password Safe 1.7(1) leaves cleartext passwords in memory when a user copies the password to the clipboard and minimizes Password Safe with the "Clear the password when minimized" and "Lock password …	NVD-CWE-Other	CVE-2001-0984	2017-12-20 11:29	2001-09-13	Show	GitHub Exploit DB Packet Storm

344463	-	goahead_software orange_software montavista_software	goahead_webserver orange_web_server hard_hat_linux	Directory traversal vulnerability in GoAhead Web Server 2.1 allows remote attackers to read arbitrary files via a URL with an encoded / (%5C) in a .. (dot dot) sequence. NOTE: it is highly likely th…	NVD-CWE-Other	CVE-2002-0680	2017-12-20 11:29	2002-07-23	Show	GitHub Exploit DB Packet Storm

344464	-	goahead_software	goahead_webserver	Cross-site scripting vulnerability in GoAhead Web Server 2.1 allows remote attackers to execute script as other web users via script in a URL that generates a "404 not found" message, which does not …	NVD-CWE-Other	CVE-2002-0681	2017-12-20 11:29	2002-07-23	Show	GitHub Exploit DB Packet Storm

344465	-	goahead_software	goahead_webserver	Buffer overflow in GoAhead WebServer 2.1 allows remote attackers to execute arbitrary code via a long HTTP GET request with a large number of subdirectories.	NVD-CWE-Other	CVE-2002-1951	2017-12-20 11:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

344466	-	allaire	coldfusion_server	The ColdFusion CFCRYPT program for encrypting CFML templates has weak encryption, allowing attackers to decrypt the templates.	NVD-CWE-Other	CVE-1999-0757	2017-12-19 11:29	2001-03-12	Show	GitHub Exploit DB Packet Storm

344467	-	novell	netware	Novell NetWare Transaction Tracking System (TTS) in Novell 4.11 and earlier allows remote attackers to cause a denial of service via a large number of requests.	NVD-CWE-Other	CVE-1999-0805	2017-12-19 11:29	2001-03-12	Show	GitHub Exploit DB Packet Storm

344468	-	motorola	motorola_cablerouter	A memory leak in a Motorola CableRouter allows remote attackers to conduct a denial of service via a large number of telnet connections.	NVD-CWE-Other	CVE-1999-0919	2017-12-19 11:29	1998-05-10	Show	GitHub Exploit DB Packet Storm

344469	-	omnicron	omnihttpd	The OmniHTTPD visadmin.exe program allows a remote attacker to conduct a denial of service via a malformed URL which causes a large number of temporary files to be created.	NVD-CWE-Other	CVE-1999-0970	2017-12-19 11:29	1999-06-5	Show	GitHub Exploit DB Packet Storm

344470	-	novell	netware	The installation of Novell Netware NDS 5.99 provides an unauthenticated client with Read access for the tree, which allows remote attackers to access sensitive information such as users, groups, and …	NVD-CWE-Other	CVE-1999-1020	2017-12-19 11:29	1998-09-18	Show	GitHub Exploit DB Packet Storm