Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1551 5.3 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 CWE-119
CWE-416
CWE-476
CVE-2026-12329 2026-06-17 15:46 2026-06-16 Show GitHub Exploit DB Packet Storm
1552 5.4 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-12330 2026-06-17 15:46 2026-06-16 Show GitHub Exploit DB Packet Storm
1553 6.5 警告
Network 		- シスコシステムズのCisco Catalyst SD-WAN Managerにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-20262 2026-06-17 15:46 2026-06-15 Show GitHub Exploit DB Packet Storm
1554 7.8 重要
Local 		NVIDIA NeMo NVIDIAのNeMoにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-24155 2026-06-17 15:46 2026-06-16 Show GitHub Exploit DB Packet Storm
1555 7.8 重要
Local 		NVIDIA NeMo NVIDIAのNeMoにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-24228 2026-06-17 15:46 2026-06-16 Show GitHub Exploit DB Packet Storm
1556 5.5 警告
Local 		Advanced Micro Devices (AMD) uprof Advanced Micro Devices (AMD)のuprofにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-28237 2026-06-17 15:46 2026-06-9 Show GitHub Exploit DB Packet Storm
1557 6.5 警告
Network 		Grafana Labs Grafana Grafana LabsのGrafanaにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2026-33380 2026-06-17 15:46 2026-05-13 Show GitHub Exploit DB Packet Storm
1558 8.1 重要
Network 		Grafana Labs Grafana Grafana LabsのGrafanaにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-33381 2026-06-17 15:46 2026-05-13 Show GitHub Exploit DB Packet Storm
1559 5.4 警告
Network 		langflow Langflow Desktop langflowのLangflow Desktopにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-3341 2026-06-17 15:46 2026-06-11 Show GitHub Exploit DB Packet Storm
1560 6.1 警告
Network 		IBM IBM DevOps Plan IBMのIBM DevOps PlanにおけるHTTP ヘッダのスクリプト構文の不適切な無効化に関する脆弱性 CWE-644
HTTP ヘッダのスクリプト構文の不適切な無効化 		CVE-2026-4096 2026-06-17 15:46 2026-06-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
256101 7.8 HIGH
Local 		gnu binutils The print_insn_score32 function in opcodes/score7-dis.c:552 in GNU Binutils 2.28 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecif… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-9743 2024-11-21 12:36 2017-06-19 Show GitHub Exploit DB Packet Storm
256102 7.8 HIGH
Local 		gnu binutils The score_opcodes function in opcodes/score7-dis.c in GNU Binutils 2.28 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-9742 2024-11-21 12:36 2017-06-19 Show GitHub Exploit DB Packet Storm
256103 9.8 CRITICAL
Network 		projectsend projectsend install/make-config.php in ProjectSend r754 allows remote attackers to execute arbitrary PHP code via the dbprefix parameter, related to replacing TABLES_PREFIX in the configuration file. CWE-20
 Improper Input Validation  		CVE-2017-9741 2024-11-21 12:36 2017-06-19 Show GitHub Exploit DB Packet Storm
256104 6.1 MEDIUM
Network 		cmsmadesimple cms_made_simple In admin\addgroup.php in CMS Made Simple 2.1.6, when adding a user group, there is no XSS filtering, resulting in storage-type XSS generation, via the description parameter in an addgroup action. CWE-79
Cross-site Scripting 		CVE-2017-9668 2024-11-21 12:36 2017-06-19 Show GitHub Exploit DB Packet Storm
256105 9.8 CRITICAL
Network 		spip spip SPIP 3.1.x before 3.1.6 and 3.2.x before Beta 3 does not remove shell metacharacters from the host field, allowing a remote attacker to cause remote code execution. CWE-78
OS Command  		CVE-2017-9736 2024-11-21 12:36 2017-06-18 Show GitHub Exploit DB Packet Storm
256106 5.5 MEDIUM
Local 		qemu
debian 		qemu
debian_linux 		QEMU (aka Quick Emulator), when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and Q… CWE-476
 NULL Pointer Dereference 		CVE-2017-9503 2024-11-21 12:36 2017-06-17 Show GitHub Exploit DB Packet Storm
256107 7.5 HIGH
Network 		eclipse
debian
oracle 		jetty
debian_linux
retail_xstore_point_of_service
hospitality_guest_access
enterprise_manager_base_platform
rest_data_services
communications_cloud_native_core_policy 		Jetty through 9.4.x is prone to a timing channel in util/security/Password.java, which makes it easier for remote attackers to obtain access by observing elapsed times before rejection of incorrect p… CWE-203
 Information Exposure Through Discrepancy 		CVE-2017-9735 2024-11-21 12:36 2017-06-17 Show GitHub Exploit DB Packet Storm
256108 7.5 HIGH
Network 		yocto_project yp_core-pyro In meta/classes/package_ipk.bbclass in Poky in poky-pyro 17.0.0 for Yocto Project through YP Core - Pyro 2.3, attackers can obtain sensitive information by reading a URL in a Source entry in an ipk p… CWE-200
Information Exposure 		CVE-2017-9731 2024-11-21 12:36 2017-06-17 Show GitHub Exploit DB Packet Storm
256109 7.5 HIGH
Network 		uclibc uclibc In uClibc 0.9.33.2, there is stack exhaustion (uncontrolled recursion) in the check_dst_limits_calc_pos_1 function in misc/regex/regexec.c when processing a crafted regular expression. CWE-674
 Uncontrolled Recursion 		CVE-2017-9729 2024-11-21 12:36 2017-06-17 Show GitHub Exploit DB Packet Storm
256110 9.8 CRITICAL
Network 		uclibc uclibc In uClibc 0.9.33.2, there is an out-of-bounds read in the get_subexp function in misc/regex/regexec.c when processing a crafted regular expression. CWE-125
Out-of-bounds Read 		CVE-2017-9728 2024-11-21 12:36 2017-06-17 Show GitHub Exploit DB Packet Storm