Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5821	9.3	緊急 Network	マイクロソフト	Microsoft 365 Copilot	Microsoft 365 Copilot の特権昇格の脆弱性	CWE-601 オープンリダイレクト	CVE-2026-33102	2026-05-1 10:48	2026-04-23	Show	GitHub Exploit DB Packet Storm

5822	8.4	重要 Local	マイクロソフト	Microsoft 365 Apps Office Long Term Servicing Channel (LTSC)	Microsoft Word のリモートでコードが実行される脆弱性	CWE-822 信頼性のないポインタデリファレンス	CVE-2026-33114	2026-05-1 10:48	2026-04-14	Show	GitHub Exploit DB Packet Storm

5823	8.4	重要 Local	マイクロソフト	Microsoft 365 Apps Office Long Term Servicing Channel (LTSC)	Microsoft Word のリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33115	2026-05-1 10:47	2026-04-14	Show	GitHub Exploit DB Packet Storm

5824	7.8	重要 Local	ggml.ai	llama.cpp	ggml.aiのllama.cppにおける複数の脆弱性	CWE-122 CWE-190	CVE-2026-33298	2026-05-1 10:47	2026-03-24	Show	GitHub Exploit DB Packet Storm

5825	6.1	警告 Local	マイクロソフト	Microsoft 365 Apps Office Long Term Servicing Channel (LTSC)	Microsoft Word の情報漏えいの脆弱性	CWE-125 境界外読み取り	CVE-2026-33822	2026-05-1 10:47	2026-04-14	Show	GitHub Exploit DB Packet Storm

5826	5.2	警告 Physics	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおけるPRNG におけるシードの不正な使用に関する脆弱性	CWE-335 PRNGにおけるシードの不正な使用	CVE-2026-3503	2026-05-1 10:47	2026-03-19	Show	GitHub Exploit DB Packet Storm

5827	9.8	緊急 Network	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける複数の脆弱性	CWE-122 CWE-787 CWE-787	CVE-2026-3548	2026-05-1 10:47	2026-03-19	Show	GitHub Exploit DB Packet Storm

5828	5.9	警告 Network	VMware	Spring AI	VMwareのSpring AIにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-40966	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

5829	8.6	重要 Network	VMware	Spring AI	VMwareのSpring AIにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-40967	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

5830	7.5	重要 Adjacent	VMware	Spring Boot	VMwareのSpring Bootにおけるタイミングの違いに起因する情報漏えいに関する脆弱性	CWE-208 タイミングの違いに起因する情報漏えい	CVE-2026-40972	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1181	10.0	CRITICAL Network	ivanti	standalone_sentry	An OS Command Injection vulnerability in Ivanti Sentry before the R10.5.2, R10.6.2 and R10.7.1 versions allows a remote unauthenticated user to achieve root-level remote code execution	CWE-78 OS Command	CVE-2026-10520	2026-06-12 21:42	2026-06-10	Show	GitHub Exploit DB Packet Storm

1182	5.5	MEDIUM Local	apple	macos	A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data.	CWE-22 Path Traversal	CVE-2025-24268	2026-06-12 21:38	2026-06-12	Show	GitHub Exploit DB Packet Storm

1183	8.8	HIGH Local	apple	macos	This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in macOS Sequoia 15.4. An app may be able to break out of its sandbox.	CWE-693 Protection Mechanism Failure	CVE-2025-24284	2026-06-12 21:38	2026-06-12	Show	GitHub Exploit DB Packet Storm

1184	5.5	MEDIUM Local	apple	macos	The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. A malicious app may be able to access private information.	CWE-693 Protection Mechanism Failure	CVE-2025-30431	2026-06-12 21:38	2026-06-12	Show	GitHub Exploit DB Packet Storm

1185	5.5	MEDIUM Local	apple	macos	A privacy issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data.	CWE-359 Exposure of Private Personal Information to an Unauthorized Actor	CVE-2025-30459	2026-06-12 21:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

1186	7.8	HIGH Local	apple	macos	The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4. An app may be able to bypass launch constraint protections and execute malicious code with elevated privileges.	CWE-269 Improper Privilege Management	CVE-2025-31272	2026-06-12 21:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

1187	5.5	MEDIUM Local	apple	macos	An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Tahoe 26.1. A malicious app may be able to access sensitive user data.	CWE-284 Improper Access Control	CVE-2025-43339	2026-06-12 21:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

1188	5.5	MEDIUM Local	apple	macos	This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.4. An app may be able to access protected user data.	CWE-59 Link Following	CVE-2025-46293	2026-06-12 21:36	2026-06-12	Show	GitHub Exploit DB Packet Storm

1189	5.3	MEDIUM Network	apple	ipados iphone_os macos	An authorization issue was addressed with improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to leak sensitive user information.	CWE-284 Improper Access Control	CVE-2025-46308	2026-06-12 21:36	2026-06-12	Show	GitHub Exploit DB Packet Storm

1190	7.5	HIGH Network	apple	macos	A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.1. An app may be able to access protected user data.	CWE-284 Improper Access Control	CVE-2025-46315	2026-06-12 21:35	2026-06-12	Show	GitHub Exploit DB Packet Storm