Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194881 7.6 重要
Network 		オラクル - Oracle Fusion Middleware の Oracle Service Bus における OSB Web Console Design, Admin に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10119 2017-08-21 16:53 2017-07-18 Show GitHub Exploit DB Packet Storm
194882 5.3 警告
Network 		オラクル - Oracle E-Business Suite の Oracle iStore における Shopping Cart に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10192 2017-08-21 15:07 2017-07-18 Show GitHub Exploit DB Packet Storm
194883 8.2 重要
Network 		オラクル - Oracle E-Business Suite の Oracle Web Analytics における Common Libraries に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10191 2017-08-21 15:07 2017-07-18 Show GitHub Exploit DB Packet Storm
194884 5.3 警告
Network 		オラクル - Oracle E-Business Suite の Oracle iStore における User and Company Profile に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10186 2017-08-21 15:07 2017-07-18 Show GitHub Exploit DB Packet Storm
194885 8.2 重要
Network 		オラクル - Oracle E-Business Suite の Oracle CRM Technical Foundation における User Management に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10185 2017-08-21 15:07 2017-07-18 Show GitHub Exploit DB Packet Storm
194886 5.3 警告
Network 		オラクル - Oracle E-Business Suite の Oracle Field Service における Wireless/WAP に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10184 2017-08-21 15:07 2017-07-18 Show GitHub Exploit DB Packet Storm
194887 8.2 重要
Network 		オラクル - Oracle E-Business Suite の Oracle CRM Technical Foundation における CMRO に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10180 2017-08-21 15:07 2017-07-18 Show GitHub Exploit DB Packet Storm
194888 6.5 警告
Network 		オラクル - Oracle E-Business Suite の Application Management Pack for Oracle E-Business Suite における User Monitoring に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10179 2017-08-21 15:07 2017-07-18 Show GitHub Exploit DB Packet Storm
194889 8.1 重要
Network 		オラクル - Oracle E-Business Suite の Oracle Application Object Library における Flexfields に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10177 2017-08-21 15:07 2017-07-18 Show GitHub Exploit DB Packet Storm
194890 4.3 警告
Network 		オラクル - Oracle E-Business Suite の Oracle iSupport における Profiles に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-10175 2017-08-21 15:06 2017-07-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3561 3.8 LOW
Local 		opentelemetry ebpf_instrumentation OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the Java TLS ioctl probe reads user-controlled ioctl pointers with bpf_pr… CWE-127
CWE-200
 Buffer Under-read
Information Exposure 		CVE-2026-45683 2026-06-4 01:52 2026-06-3 Show GitHub Exploit DB Packet Storm
3562 5.9 MEDIUM
Network 		opentelemetry ebpf_instrumentation OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the per-CPU message-buffer fallback path uses a 256-byte backup buffer bu… CWE-125
CWE-130
Out-of-bounds Read
 Improper Handling of Length Parameter Inconsistency 		CVE-2026-45681 2026-06-4 01:52 2026-06-3 Show GitHub Exploit DB Packet Storm
3563 5.5 MEDIUM
Local 		opentelemetry ebpf_instrumentation OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the custom CappedConcurrentHashMap introduced for Java TLS state tracking… CWE-401
CWE-770
 Missing Release of Memory after Effective Lifetime
 Allocation of Resources Without Limits or Throttling 		CVE-2026-45682 2026-06-4 01:51 2026-06-3 Show GitHub Exploit DB Packet Storm
3564 4.3 MEDIUM
Network 		mintplexlabs anythingllm AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. Prior to 1.13.0, an approved mobile device token created in single-user mod… CWE-285
CWE-639
Improper Authorization
 Authorization Bypass Through User-Controlled Key 		CVE-2026-47713 2026-06-4 01:51 2026-05-29 Show GitHub Exploit DB Packet Storm
3565 7.5 HIGH
Network 		opentelemetry ebpf_instrumentation OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI replays BPF probe hits into histogram observations by looping once pe… CWE-400
CWE-834
 Uncontrolled Resource Consumption
 Excessive Iteration 		CVE-2026-45680 2026-06-4 01:51 2026-06-3 Show GitHub Exploit DB Packet Storm
3566 6.5 MEDIUM
Network 		opentelemetry ebpf_instrumentation OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI exports raw Redis error text as the span status message. Because Redi… CWE-117
CWE-532
 Improper Output Neutralization for Logs
 Inclusion of Sensitive Information in Log Files 		CVE-2026-45679 2026-06-4 01:50 2026-06-3 Show GitHub Exploit DB Packet Storm
3567 7.5 HIGH
Network 		opentelemetry ebpf_instrumentation OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the Postgres protocol parser assumes BIND message payloads contain a vali… CWE-20
CWE-754
 Improper Input Validation 
 Improper Check for Unusual or Exceptional Conditions 		CVE-2026-45678 2026-06-4 01:50 2026-06-3 Show GitHub Exploit DB Packet Storm
3568 9.8 CRITICAL
Network 		- - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2026-9642 2026-06-4 01:16 2026-05-27 Show GitHub Exploit DB Packet Storm
3569 7.4 HIGH
Network 		- - SIP signaling stack in Verizon IMS (unspecified version) implements SIP signaling without IPsec integrity protection (missing Security-Client/Security-Server headers and ESP traffic), which allows an… - CVE-2026-10629 2026-06-4 01:16 2026-06-3 Show GitHub Exploit DB Packet Storm
3570 7.3 HIGH
Network 		- - A vulnerability was found in php-censor up to 2.1.6. This affects an unknown function of the file src/Model/Build/GitBuild.php of the component Webhook Endpoint. Performing a manipulation of the argu… CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-10273 2026-06-4 01:16 2026-06-2 Show GitHub Exploit DB Packet Storm