Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
2881 7.8 重要
Local
マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows 11 24h2
Microsoft Windows 10 21h2
Microsoft Windows Server 2016
Microsoft Wind…
Windows デバイス正常性構成証明 (DHA) の特権昇格の脆弱性 CWE-501
信頼境界線の違反
CVE-2026-33828 2026-06-11 16:12 2026-06-9 Show GitHub Exploit DB Packet Storm
2882 - - シーメンス (複数の製品) Siemens製品に対するアップデート(2026年6月) - - 2026-06-11 11:56 2026-06-3 Show GitHub Exploit DB Packet Storm
2883 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年06月09日) - - 2026-06-11 11:51 2026-06-10 Show GitHub Exploit DB Packet Storm
2884 - - (複数のベンダ) (複数の製品) Apache HTTP Server 2.4における複数の脆弱性に対するアップデート(2026年6月8日) - - 2026-06-10 15:30 2026-06-9 Show GitHub Exploit DB Packet Storm
2885 3.3
Local
Canonical Ubuntu CanonicalのUbuntuにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2026-47327 2026-06-10 14:34 2026-05-28 Show GitHub Exploit DB Packet Storm
2886 9.3 緊急
Network
チェック・ポイント・ソフトウェア・テクノロジーズ Gaia Embedded
Gaia OS
チェック・ポイント・ソフトウェア・テクノロジーズのGaia Embedded等の複数製品における認証に関する脆弱性 CWE-287
不適切な認証
CVE-2026-50751 2026-06-10 14:34 2026-06-8 Show GitHub Exploit DB Packet Storm
2887 8.8 重要
Network
D-Link Systems, Inc. DCS-5615 Firmware D-Link CorporationのDCS-5615 Firmwareにおける複数の脆弱性 CWE-266
CWE-272
CVE-2026-11497 2026-06-10 14:34 2026-06-8 Show GitHub Exploit DB Packet Storm
2888 7.5 重要
Network
D-Link Systems, Inc. DGS-1100-08PD Firmware D-Link CorporationのDGS-1100-08PD Firmwareにおける複数の脆弱性 CWE-266
CWE-272
CVE-2026-11555 2026-06-10 14:34 2026-06-8 Show GitHub Exploit DB Packet Storm
2889 9.8 緊急
Network
The Perl Foundation DBI The Perl FoundationのDBIにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み
CVE-2026-9698 2026-06-10 14:34 2026-06-9 Show GitHub Exploit DB Packet Storm
2890 5.5 警告
Local
Linux Linux Kernel LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2025-71313 2026-06-10 14:34 2026-06-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
307521 - rsa envision Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA enVision 4.x before 4.1 Patch 4 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2012-0399 2024-11-21 10:34 2012-03-21 Show GitHub Exploit DB Packet Storm
307522 - janetter janetter Janetter before 3.3.0.0 (aka 3.3.0) allows remote attackers to obtain session information for twitter.com web sites via unspecified vectors. CWE-200
Information Exposure
CVE-2012-0328 2024-11-21 10:34 2012-03-20 Show GitHub Exploit DB Packet Storm
307523 - golismero golismero libs/updater.py in GoLismero 0.6.3, and other versions before Git revision 2b3bb43d6867, as used in backtrack and possibly other products, allows local users to overwrite arbitrary files via a symlin… CWE-59
Link Following
CVE-2012-0054 2024-11-21 10:34 2012-03-20 Show GitHub Exploit DB Packet Storm
307524 - tetsuya_aoyama twicca The twicca application 0.7.0 through 0.9.30 for Android does not properly restrict the use of network privileges, which allows remote attackers to read media files on an SD card via a crafted applica… CWE-264
Permissions, Privileges, and Access Controls
CVE-2012-0326 2024-11-21 10:34 2012-03-17 Show GitHub Exploit DB Packet Storm
307525 - symantec altiris_wise_package_studio Multiple SQL injection vulnerabilities in Symantec Altiris WISE Package Studio before 8.0MR1 allow remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection
CVE-2012-0293 2024-11-21 10:34 2012-03-17 Show GitHub Exploit DB Packet Storm
307526 - ge intelligent_platforms_proficy_real-time_information_portal Directory traversal vulnerability in rifsrvd.exe in the Remote Interface Service in GE Intelligent Platforms Proficy Real-Time Information Portal 2.6, 3.0, 3.0 SP1, and 3.5 allows remote attackers to… CWE-22
Path Traversal
CVE-2012-0232 2024-11-21 10:34 2012-03-16 Show GitHub Exploit DB Packet Storm
307527 - ge intelligent_platforms_proficy_plant_applications PRLicenseMgr.exe in the Proficy Server License Manager in GE Intelligent Platforms Proficy Plant Applications 5.0 and earlier allows remote attackers to cause a denial of service (memory corruption) … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2012-0231 2024-11-21 10:34 2012-03-16 Show GitHub Exploit DB Packet Storm
307528 - ge intelligent_platforms_proficy_plant_applications PRRDS.exe in the Proficy Remote Data Service in GE Intelligent Platforms Proficy Plant Applications 5.0 and earlier allows remote attackers to cause a denial of service (memory corruption) or possibl… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2012-0230 2024-11-21 10:34 2012-03-16 Show GitHub Exploit DB Packet Storm
307529 - ge intelligent_platforms_proficy_historian The Data Archiver service in GE Intelligent Platforms Proficy Historian 4.5 and earlier allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2012-0229 2024-11-21 10:34 2012-03-16 Show GitHub Exploit DB Packet Storm
307530 - emc documentum_eroom Cross-site scripting (XSS) vulnerability in EMC Documentum eRoom before 7.4.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2012-0404 2024-11-21 10:34 2012-03-15 Show GitHub Exploit DB Packet Storm