Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
236401 6.4 警告 オラクル - Oracle Fusion Middleware の Oracle Reports Developer における Servlet の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3153 2012-10-19 18:09 2012-10-16 Show GitHub Exploit DB Packet Storm
236402 6.4 警告 オラクル - Oracle Fusion Middleware の Oracle Fusion Middleware における Report Server Component の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3152 2012-10-19 18:07 2012-10-16 Show GitHub Exploit DB Packet Storm
236403 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle Business Intelligence Enterprise Edition における Installation の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-1686 2012-10-19 18:06 2012-10-16 Show GitHub Exploit DB Packet Storm
236404 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle Application Server Single Sign-On における Redirects の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0518 2012-10-19 17:43 2012-10-16 Show GitHub Exploit DB Packet Storm
236405 3.5 注意 オラクル - Oracle Fusion Middleware の Oracle Imaging and Process Management における Web の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0108 2012-10-19 17:43 2012-10-16 Show GitHub Exploit DB Packet Storm
236406 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle Imaging and Process Management における Web の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0107 2012-10-19 17:42 2012-10-16 Show GitHub Exploit DB Packet Storm
236407 4.9 警告 オラクル - Oracle Fusion Middleware の Oracle Imaging and Process Management における Web の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0106 2012-10-19 17:42 2012-10-16 Show GitHub Exploit DB Packet Storm
236408 2.1 注意 オラクル - Oracle Fusion Middleware の Oracle Imaging and Process Management における Web の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0095 2012-10-19 17:41 2012-10-16 Show GitHub Exploit DB Packet Storm
236409 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle Imaging and Process Management における Web の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0093 2012-10-19 17:41 2012-10-16 Show GitHub Exploit DB Packet Storm
236410 3.5 注意 オラクル - Oracle Fusion Middleware の Oracle Imaging and Process Management における Web の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0092 2012-10-19 17:40 2012-10-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2831 7.3 HIGH
Local 		- - Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.15051.93227. CWE-427
 Uncontrolled Search Path Element 		CVE-2026-50033 2026-06-5 00:12 2026-06-4 Show GitHub Exploit DB Packet Storm
2832 - - - The FieldX MDM adb messaging topic passes unverified payloads directly into Runtime.exec(), allowing command/instruction injection. CWE-78
OS Command  		CVE-2026-49185 2026-06-5 00:10 2026-06-4 Show GitHub Exploit DB Packet Storm
2833 - - - The local MQTT broker does not enforce topic-level Access Control Lists (ACLs). This allows any client to subscribe using wildcard characters (# or +) to enumerate hidden network devices or publish r… CWE-287
Improper Authentication 		CVE-2026-49186 2026-06-5 00:10 2026-06-4 Show GitHub Exploit DB Packet Storm
2834 - - - The hard-coded APK resource files never expire, and the shared scepter leads to information leaks and potential misuse. CWE-200
Information Exposure 		CVE-2026-49187 2026-06-5 00:10 2026-06-4 Show GitHub Exploit DB Packet Storm
2835 - - - The ai_cmd utility executes with full root permissions. It pipes socket inputs directly to popen(), paving the way for unauthenticated users to execute arbitrary root commands. CWE-489
Exposure of Data Element to Wrong Session  		CVE-2026-49188 2026-06-5 00:10 2026-06-4 Show GitHub Exploit DB Packet Storm
2836 - - - Unchecked public access permissions on a core Broadcast Receiver allow unauthorized local software components to invoke administrative operations. CWE-269
 Improper Privilege Management 		CVE-2026-49189 2026-06-5 00:10 2026-06-4 Show GitHub Exploit DB Packet Storm
2837 - - - The system fails to evaluate instructional permissions over multiple internal operation codes (opcodes), permitting unauthorized application installations or command executions. CWE-78
OS Command  		CVE-2026-49190 2026-06-5 00:10 2026-06-4 Show GitHub Exploit DB Packet Storm
2838 - - - The production build of the M3WebServer hard-codes its backend API keys, which can be easily intercepted through verbose error handling pages. CWE-287
Improper Authentication 		CVE-2026-49191 2026-06-5 00:10 2026-06-4 Show GitHub Exploit DB Packet Storm
2839 - - - The summary service endpoint suffers from an IDOR vulnerability where it fails to verify user ownership of hardware serial numbers, exposing device data to scraping. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-49192 2026-06-5 00:10 2026-06-4 Show GitHub Exploit DB Packet Storm
2840 - - - Overly permissive configuration settings on cloud storage containers expose active telemetry information publicly to the internet. CWE-200
Information Exposure 		CVE-2026-49193 2026-06-5 00:10 2026-06-4 Show GitHub Exploit DB Packet Storm