Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244041 5.5 警告 OpenStack - OpenStack Compute (Nova) における任意のファイルを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3361 2012-09-4 17:51 2012-06-20 Show GitHub Exploit DB Packet Storm
244042 5.5 警告 OpenStack - OpenStack Compute (Nova) Folsom および Essex におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-3360 2012-09-4 17:49 2012-06-20 Show GitHub Exploit DB Packet Storm
244043 5 警告 Boost.org - Boost Pool の boost/pool/pool.hpp における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-2677 2012-09-4 17:47 2012-05-4 Show GitHub Exploit DB Packet Storm
244044 7.2 危険 Todd C. Miller - sudo におけるコマンドの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2337 2012-09-4 17:45 2012-05-18 Show GitHub Exploit DB Packet Storm
244045 5 警告 ConnMan project - ConnMan の dhcpv6_get_option 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-2322 2012-09-4 17:42 2012-05-18 Show GitHub Exploit DB Packet Storm
244046 10 危険 ConnMan project - ConnMan の loopback プラグインにおける任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-2321 2012-09-4 17:39 2012-05-18 Show GitHub Exploit DB Packet Storm
244047 7.8 危険 ConnMan project - ConnMan におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2320 2012-09-4 17:38 2012-05-18 Show GitHub Exploit DB Packet Storm
244048 6.5 警告 Samba Project - Samba における Take Ownership 権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2111 2012-09-4 17:32 2012-04-30 Show GitHub Exploit DB Packet Storm
244049 3.5 注意 OpenStack - Openstack Compute (Nova) におけるサービス運用妨害 (CPU およびハードドライブの消費) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2101 2012-09-4 17:22 2012-03-30 Show GitHub Exploit DB Packet Storm
244050 4.3 警告 OpenStack - OpenStack Dashboard (Horizon) におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2094 2012-09-4 17:20 2012-06-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3521 7.5 HIGH
Network 		oracle rest_data_services Vulnerability in Oracle REST Data Services (component: Mongoapi). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with networ… CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-46829 2026-06-4 02:41 2026-05-29 Show GitHub Exploit DB Packet Storm
3522 6.5 MEDIUM
Network 		nextcloud approval Nextcloud is an open source content collaboration platform. Prior to version 2.7.2, a privilege escalation vulnerability exists in the Approval app that allows a user without sharing permissions to f… CWE-285
Improper Authorization 		CVE-2026-45275 2026-06-4 02:39 2026-06-2 Show GitHub Exploit DB Packet Storm
3523 9.1 CRITICAL
Network 		oracle e-business_suite Vulnerability in the Oracle Internet Procurement Connector product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploi… CWE-284
Improper Access Control 		CVE-2026-46819 2026-06-4 02:37 2026-05-29 Show GitHub Exploit DB Packet Storm
3524 3.3 LOW
Local 		nextcloud approval Nextcloud is an open source content collaboration platform. Prior to version 2.7.2, authenticated users can check if arbitrary files are associated with specific approval workflows where they can req… CWE-200
NVD-CWE-noinfo
Information Exposure 		CVE-2026-45277 2026-06-4 02:36 2026-06-2 Show GitHub Exploit DB Packet Storm
3525 6.1 MEDIUM
Network 		nextcloud user_oidc Nextcloud is an open source content collaboration platform. From version 6.1.0 to before version 8.2.2, an attacker can craft links that would redirect users to another website, when the victim uses … CWE-601
Open Redirect 		CVE-2026-45278 2026-06-4 02:34 2026-06-2 Show GitHub Exploit DB Packet Storm
3526 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 crashes when the iApp receives an E42_RIC_SUBSCRIPTION_REQUEST referencing a non-existent E2 Node. The lookup function returns NULL, which is enforced by assert() in Debug builds (SIGA… CWE-476
 NULL Pointer Dereference 		CVE-2026-37226 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
3527 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 contains a reachable assertion in e2ap_recv_sctp_msg() (src/lib/ep/e2ap_ep.c). The function allocates a fixed 32KB receive buffer and enforces assert(rc < len) on the sctp_recvmsg() re… CWE-617
 Reachable Assertion 		CVE-2026-37228 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
3528 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 contains a reachable assertion in e2ap_create_pdu() triggered when ASN.1 PER decoding fails. A remote unauthenticated attacker can send any non-PER byte sequence (e.g., a single 0x00 b… CWE-617
 Reachable Assertion 		CVE-2026-37229 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
3529 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 crashes when the near-RT RIC receives a RIC_INDICATION message with a ran_func_id that does not exist in its registry. The lookup returns NULL, triggering assert() in Debug builds (SIG… CWE-476
 NULL Pointer Dereference 		CVE-2026-37230 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm
3530 7.5 HIGH
Network 		mosaic5g flexric FlexRIC v2.0.0 uses a uint16_t counter for xapp_id assignment but stores the value in uint32_t message fields. After 65,530+ E42_SETUP_REQUESTs, the 16-bit counter wraps around and produces duplicate… CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-37231 2026-06-4 02:16 2026-06-2 Show GitHub Exploit DB Packet Storm