Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
151	7.5	重要 Network	Express.js	Multer	Express.jsのMulterにおけるリソースの枯渇に関する脆弱性 New	CWE-400 リソースの枯渇	CVE-2026-5079	2026-06-17 15:39	2026-06-15	Show	GitHub Exploit DB Packet Storm

152	8.1	重要 Network	Zoom Video Communications, Inc.	Zoom Meeting SDK Zoom Workplace	Zoom Video Communications, Inc.のZoom Meeting SDK等の複数製品におけるカスタム URL スキームのハンドラの不適切な認可に関する脆弱性 New	CWE-939 カスタム URL スキームのハンドラの不適切な認可	CVE-2026-53408	2026-06-17 15:39	2026-06-12	Show	GitHub Exploit DB Packet Storm

153	6.6	警告 Local	OpenClaw	OpenClaw	OpenClawにおける認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2026-53820	2026-06-17 15:39	2026-06-12	Show	GitHub Exploit DB Packet Storm

154	8.8	重要 Network	OpenClaw	OpenClaw	OpenClawにおける認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2026-53821	2026-06-17 15:39	2026-06-12	Show	GitHub Exploit DB Packet Storm

155	8.8	重要 Network	OpenClaw	OpenClaw	OpenClawにおける複数の脆弱性 New	CWE-367 CWE-77	CVE-2026-53822	2026-06-17 15:39	2026-06-12	Show	GitHub Exploit DB Packet Storm

156	8.1	重要 Network	OpenClaw	OpenClaw	OpenClawにおけるスプーフィングによる認証回避に関する脆弱性 New	CWE-290 スプーフィングによる認証回避	CVE-2026-53823	2026-06-17 15:38	2026-06-12	Show	GitHub Exploit DB Packet Storm

157	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおけるセッション期限に関する脆弱性 New	CWE-613 不適切なセッション期限	CVE-2026-53824	2026-06-17 15:38	2026-06-12	Show	GitHub Exploit DB Packet Storm

158	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2026-53825	2026-06-17 15:38	2026-06-12	Show	GitHub Exploit DB Packet Storm

159	4.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける誤った領域へのリソースの漏えいに関する脆弱性 New	CWE-668 誤った領域へのリソースの漏えい	CVE-2026-53826	2026-06-17 15:38	2026-06-12	Show	GitHub Exploit DB Packet Storm

160	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 New	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-53827	2026-06-17 15:38	2026-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255201	5.3	MEDIUM Network	eclipse debian	mosquitto debian_linux	The Eclipse Mosquitto broker up to version 1.4.15 does not reject strings that are not valid UTF-8. A malicious client could cause other clients that do reject invalid UTF-8 strings to disconnect the…	CWE-20 Improper Input Validation	CVE-2017-7653	2024-11-21 12:32	2018-06-6	Show	GitHub Exploit DB Packet Storm

255202	7.5	HIGH Network	eclipse debian	mosquitto debian_linux	In Eclipse Mosquitto 1.4.14, if a Mosquitto instance is set running with a configuration file, then sending a HUP signal to server triggers the configuration to be reloaded from disk. If there are lo…	NVD-CWE-noinfo	CVE-2017-7652	2024-11-21 12:32	2018-04-25	Show	GitHub Exploit DB Packet Storm

255203	7.5	HIGH Network	eclipse debian	mosquitto debian_linux	In Eclipse Mosquitto 1.4.14, a user can shutdown the Mosquitto server simply by filling the RAM memory with a lot of connections with large payload. This can be done without authentications if occur …	CWE-400 Uncontrolled Resource Consumption	CVE-2017-7651	2024-11-21 12:32	2018-04-24	Show	GitHub Exploit DB Packet Storm

255204	9.8	CRITICAL Network	saltstack	salt	In SaltStack Salt before 2016.3.6, compromised salt-minions can impersonate the salt-master.	NVD-CWE-noinfo	CVE-2017-7893	2024-11-21 12:32	2018-04-24	Show	GitHub Exploit DB Packet Storm

255205	5.4	MEDIUM Network	redhat	openshift	OpenShift Enterprise version 3.x is vulnerable to a stored XSS via the log viewer for pods. The flaw is due to lack of sanitation of user input, specifically terminal escape characters, and the creat…	CWE-79 Cross-site Scripting	CVE-2017-7534	2024-11-21 12:32	2018-04-12	Show	GitHub Exploit DB Packet Storm

255206	6.1	MEDIUM Network	qnap	qts	Cross-site scripting (XSS) vulnerability in File Station of QNAP QTS 4.2.6 build 20171026, QTS 4.3.3 build 20170727 and earlier allows remote attackers to inject arbitrary web script or HTML.	CWE-79 Cross-site Scripting	CVE-2017-7632	2024-11-21 12:32	2018-03-28	Show	GitHub Exploit DB Packet Storm

255207	6.1	MEDIUM Network	qnap	qts	Cross-site scripting (XSS) vulnerability in the share link function of File Station of QNAP 4.2.6 build 20171026, QTS 4.3.3 build 20170727 and earlier allows remote attackers to inject arbitrary web …	CWE-79 Cross-site Scripting	CVE-2017-7631	2024-11-21 12:32	2018-03-28	Show	GitHub Exploit DB Packet Storm

255208	5.3	MEDIUM Network	qnap	qts	QNAP QTS 4.2.6 build 20171026, QTS 4.3.3 build 20170727 and earlier allows remote attackers to obtain potentially sensitive information (firmware version and running services) via a request to sysinf…	CWE-200 Information Exposure	CVE-2017-7630	2024-11-21 12:32	2018-03-28	Show	GitHub Exploit DB Packet Storm

255209	8.8	HIGH Network	qnap	media_streaming_add-on	QNAP NAS application Media Streaming add-on version 421.1.0.2, 430.1.2.0, and earlier does not utilize CSRF protections.	CWE-352 Origin Validation Error	CVE-2017-7641	2024-11-21 12:32	2018-03-8	Show	GitHub Exploit DB Packet Storm

255210	9.8	CRITICAL Network	qnap	media_streaming_add-on	QNAP NAS application Media Streaming add-on version 421.1.0.2, 430.1.2.0, and earlier allows remote attackers to run arbitrary OS commands against the system with root privileges.	CWE-78 OS Command	CVE-2017-7640	2024-11-21 12:32	2018-03-8	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed