Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
190651	8.5	重要 Network	オラクル	-	Oracle Retail Applications の Oracle Retail Point-of-Service における Security に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10065	2017-10-30 11:02	2017-10-17	Show	GitHub Exploit DB Packet Storm

190652	4.6	警告 Physics	オラクル	-	Oracle Hospitality Applications の Oracle Hospitality OPERA 5 Property Services における Folios に関する脆弱性	CWE-200 情報漏えい	CVE-2017-10197	2017-10-30 10:57	2017-10-17	Show	GitHub Exploit DB Packet Storm

190653	4.4	警告 Local	オラクル	-	Oracle Sun Systems Products Suite の複数の SPARC based Servers 製品における Firmware に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10099	2017-10-30 10:56	2017-10-17	Show	GitHub Exploit DB Packet Storm

190654	5.1	警告 Local	オラクル	-	Oracle Hospitality Applications の Oracle Hospitality Suite8 における PMS に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10419	2017-10-27 18:55	2017-10-17	Show	GitHub Exploit DB Packet Storm

190655	10	緊急 Network	オラクル	-	Oracle Hospitality Applications の Oracle Hospitality Reporting and Analytics における Report に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10405	2017-10-27 18:55	2017-10-17	Show	GitHub Exploit DB Packet Storm

190656	9.9	緊急 Network	オラクル	-	Oracle Hospitality Applications の Oracle Hospitality Reporting and Analytics における iQuery に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10404	2017-10-27 18:55	2017-10-17	Show	GitHub Exploit DB Packet Storm

190657	8	重要 Network	オラクル	-	Oracle Hospitality Applications の Oracle Hospitality Reporting and Analytics における iQuery に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10403	2017-10-27 18:55	2017-10-17	Show	GitHub Exploit DB Packet Storm

190658	10	緊急 Network	オラクル	-	Oracle Hospitality Applications の Oracle Hospitality Reporting and Analytics における Report に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10402	2017-10-27 18:55	2017-10-17	Show	GitHub Exploit DB Packet Storm

190659	8.7	重要 Local	オラクル	-	Oracle Hospitality Applications の Oracle Hospitality Cruise Materials Management における MMSUpdater に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10401	2017-10-27 18:55	2017-10-17	Show	GitHub Exploit DB Packet Storm

190660	3.1	低 Network	オラクル	-	Oracle Hospitality Applications の Oracle Hospitality Cruise Fleet Management における GangwayActivityWebApp に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10399	2017-10-27 18:55	2017-10-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2321	4.3	MEDIUM Network	nextcloud	calendar	Nextcloud is an open source content collaboration platform. From versions 5.5.13 to before 5.5.17, and 6.2.0 to before 6.2.3, an authenticated user can enumerate users on the same Nextcloud instance …	CWE-200 NVD-CWE-noinfo Information Exposure	CVE-2026-45286	2026-06-4 05:35	2026-06-2	Show	GitHub Exploit DB Packet Storm

2322	6.4	MEDIUM Network	nextcloud	nextcloud_server	Nextcloud is an open source content collaboration platform. From versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, when a user shares a folder or file with a Nextcloud Team that includes…	CWE-862 Missing Authorization	CVE-2026-45285	2026-06-4 05:34	2026-06-2	Show	GitHub Exploit DB Packet Storm

2323	8.8	HIGH Network	nextcloud	user_oidc	Nextcloud is an open source content collaboration platform. From version 1.3.6 to before version 8.4.0, an improper check allowed users that where provided by LDAP to still authenticate towards user …	CWE-284 NVD-CWE-noinfo Improper Access Control	CVE-2026-45284	2026-06-4 05:28	2026-06-2	Show	GitHub Exploit DB Packet Storm

2324	8.6	HIGH Network	openairinterface	openairinterface5g	An issue was discovered in OpenAirInterface5G 2.4.0 (nr-softmodem) in the E2SM-KPM RAN Function's PRB utilization metric calculation. The functions fill_RRU_PrbTotDl() and fill_RRU_PrbTotUl() in open…	CWE-369 Divide By Zero	CVE-2026-37232	2026-06-4 05:26	2026-06-2	Show	GitHub Exploit DB Packet Storm

2325	2.7	LOW Network	projectcapsule	capsule	Capsule is a multi-tenancy and policy-based framework for Kubernetes. To defend against namespace hijacking achieved through update/patch operations on namespaces, Capsule uses a webhook to validate …	CWE-20 NVD-CWE-noinfo Improper Input Validation	CVE-2026-30963	2026-06-4 05:22	2026-06-2	Show	GitHub Exploit DB Packet Storm

2326	7.8	HIGH Local	google	android_xr	In addInputMethodListener of com.android.server.inputmethod.InputMethodManagerService, there is a missing permission check. This could lead to local escalation of privilege with no additional executi…	CWE-285 Improper Authorization	CVE-2026-0072	2026-06-4 05:16	2026-06-2	Show	GitHub Exploit DB Packet Storm

2327	7.5	HIGH Network	juliangruber	brace-expansion	The brace-expansion library generates arbitrary strings containing a common prefix and suffix. From 5.0.0 to before 5.0.6, the max option was being applied too late. When expanding a single large num…	CWE-400 Uncontrolled Resource Consumption	CVE-2026-45149	2026-06-4 05:13	2026-05-30	Show	GitHub Exploit DB Packet Storm

2328	5.4	MEDIUM Network	mozilla	firefox	Firefox for iOS Reader View replaced page content in its HTML template before replacing other internal placeholders. A malicious page could include a placeholder string that was later substituted wit…	CWE-79 Cross-site Scripting	CVE-2026-9308	2026-06-4 05:02	2026-06-1	Show	GitHub Exploit DB Packet Storm

2329	5.4	MEDIUM Network	mozilla	firefox	Firefox for iOS Reader View did not properly escape HTML tags in JSON-LD metadata. A malicious page could inject markup that changed Reader View behavior and leaked sensitive URL parameters. These pa…	CWE-79 Cross-site Scripting	CVE-2026-9309	2026-06-4 05:02	2026-06-1	Show	GitHub Exploit DB Packet Storm

2330	7.5	HIGH Network	dlink	di-7001mini-8g_firmware	A vulnerability was detected in D-Link DI-7001 MINI up to 19.09.19A1. Impacted is the function sprintf of the file /httpd_debug.asp of the component API. The manipulation of the argument Time results…	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-10270	2026-06-4 05:02	2026-06-2	Show	GitHub Exploit DB Packet Storm