Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2521 8.1 重要
Network 		オラクル REST Data Services オラクルのREST Data Servicesにおける複数の脆弱性 CWE-284
CWE-400
CVE-2026-35277 2026-06-5 10:47 2026-05-28 Show GitHub Exploit DB Packet Storm
2522 6.3 警告
Network 		VIVOTEK Inc. Network Camera FD8136 ファームウェア VIVOTEK Inc.のNetwork Camera FD8136 ファームウェアにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-35716 2026-06-5 10:47 2026-06-2 Show GitHub Exploit DB Packet Storm
2523 6.3 警告
Network 		VIVOTEK Inc. Network Camera FD8136 ファームウェア VIVOTEK Inc.のNetwork Camera FD8136 ファームウェアにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-35717 2026-06-5 10:47 2026-06-2 Show GitHub Exploit DB Packet Storm
2524 6.5 警告
Network 		VIVOTEK Inc. Network Camera FD8136 ファームウェア VIVOTEK Inc.のNetwork Camera FD8136 ファームウェアにおけるパストラバーサルの脆弱性 CWE-22
CWE-22
CVE-2026-35718 2026-06-5 10:47 2026-06-2 Show GitHub Exploit DB Packet Storm
2525 8.6 重要
Network 		OpenAirInterface Software Alliance OpenAirInterface 5G OpenAirInterface Software AllianceのOpenAirInterface 5Gにおけるゼロ除算に関する脆弱性 CWE-369
ゼロ除算 		CVE-2026-37232 2026-06-5 10:47 2026-06-1 Show GitHub Exploit DB Packet Storm
2526 4.9 警告
Network 		レッドハット build of keycloak レッドハットのbuild of keycloakにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-37978 2026-06-5 10:47 2026-05-19 Show GitHub Exploit DB Packet Storm
2527 6.5 警告
Network 		レッドハット build of keycloak レッドハットのbuild of keycloakにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-37979 2026-06-5 10:47 2026-05-19 Show GitHub Exploit DB Packet Storm
2528 4.3 警告
Network 		レッドハット build of keycloak レッドハットのbuild of keycloakにおけるアクセス制御の不十分な粒度に関する脆弱性 CWE-1220
アクセス制御の不十分な粒度 		CVE-2026-37981 2026-06-5 10:47 2026-05-19 Show GitHub Exploit DB Packet Storm
2529 6.8 警告
Network 		レッドハット build of keycloak レッドハットのbuild of keycloakにおけるCapture-replay による認証回避に関する脆弱性 CWE-294
Capture-replayによる認証回避 		CVE-2026-37982 2026-06-5 10:47 2026-05-19 Show GitHub Exploit DB Packet Storm
2530 6.5 警告
Network 		- SAPのSAP Netweaver Application Server ABAPにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-40135 2026-06-5 10:47 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
307191 - springsource spring_framework VMware SpringSource Spring Framework before 2.5.6.SEC03, 2.5.7.SR023, and 3.x before 3.0.6, when a container supports Expression Language (EL), evaluates EL expressions in tags twice, which allows re… CWE-16
Configuration 		CVE-2011-2730 2024-11-21 10:28 2012-12-6 Show GitHub Exploit DB Packet Storm
307192 - nspluginwrapper nspluginwrapper nspluginwrapper before 1.4.4 does not properly provide access to NPNVprivateModeBool variable settings, which could prevent Firefox plugins from determining if they should run in Private Browsing mod… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-2486 2024-11-21 10:28 2012-11-19 Show GitHub Exploit DB Packet Storm
307193 - tedfelix acpid2 samples/powerbtn/powerbtn.sh in acpid (aka acpid2) 2.0.16 and earlier uses the pidof program incorrectly, which allows local users to gain privileges by running a program with the name kded4 and a DB… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-2777 2024-11-21 10:28 2012-08-30 Show GitHub Exploit DB Packet Storm
307194 - novell zenworks_configuration_management The ISList.ISAvi ActiveX control in AdminStudio in Novell ZENworks Configuration Management (ZCM) 10.2, 10.3, and 11 SP1 provides access to the mscomct2.ocx file, which allows remote attackers to exe… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-2658 2024-11-21 10:28 2012-07-27 Show GitHub Exploit DB Packet Storm
307195 - novell zenworks_configuration_management Directory traversal vulnerability in the LaunchProcess function in the LaunchHelp.HelpLauncher.1 ActiveX control in LaunchHelp.dll in AdminStudio in Novell ZENworks Configuration Management (ZCM) 10.… CWE-22
Path Traversal 		CVE-2011-2657 2024-11-21 10:28 2012-07-27 Show GitHub Exploit DB Packet Storm
307196 - systemtap systemtap The insert_module function in runtime/staprun/staprun_funcs.c in the systemtap runtime tool (staprun) in SystemTap before 1.6 does not properly validate a module when loading it, which allows local u… CWE-20
 Improper Input Validation  		CVE-2011-2503 2024-11-21 10:28 2012-07-27 Show GitHub Exploit DB Packet Storm
307197 - systemtap systemtap runtime/staprun/staprun_funcs.c in the systemtap runtime tool (staprun) in SystemTap before 1.6 does not properly validate modules when a module path is specified by a user for user-space probing, wh… CWE-20
 Improper Input Validation  		CVE-2011-2502 2024-11-21 10:28 2012-07-27 Show GitHub Exploit DB Packet Storm
307198 - t-mobile
busybox 		tm-ac1900
busybox 		The DHCP client (udhcpc) in BusyBox before 1.20.0 allows remote DHCP servers to execute arbitrary commands via shell metacharacters in the (1) HOST_NAME, (2) DOMAIN_NAME, (3) NIS_DOMAIN, and (4) TFTP… CWE-20
 Improper Input Validation  		CVE-2011-2716 2024-11-21 10:28 2012-07-4 Show GitHub Exploit DB Packet Storm
307199 - gnome gdk-pixbuf The gdk_pixbuf__gif_image_load function in gdk-pixbuf/io-gif.c in gdk-pixbuf before 2.23.5 does not properly handle certain return values, which allows remote attackers to cause a denial of service (… NVD-CWE-Other
CVE-2011-2485 2024-11-21 10:28 2012-07-4 Show GitHub Exploit DB Packet Storm
307200 - umich libgssglue
libgssapi 		libgssapi and libgssglue before 0.4 do not properly check privileges, which allows local users to load untrusted configuration files and execute arbitrary code via the GSSAPI_MECH_CONF environment va… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-2709 2024-11-21 10:28 2012-06-22 Show GitHub Exploit DB Packet Storm