Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1641 3.3
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Office の情報漏えいの脆弱性 CWE-125
境界外読み取り 		CVE-2026-45485 2026-06-12 14:34 2026-06-9 Show GitHub Exploit DB Packet Storm
1642 7.8 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-45486 2026-06-12 14:34 2026-06-9 Show GitHub Exploit DB Packet Storm
1643 7.8 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-822
信頼性のないポインタデリファレンス 		CVE-2026-45643 2026-06-12 14:34 2026-06-9 Show GitHub Exploit DB Packet Storm
1644 8.4 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition Microsoft Outlook および Word のリモートでコードが実行される脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-47635 2026-06-12 14:34 2026-06-9 Show GitHub Exploit DB Packet Storm
1645 6.5 警告
Network 		ERLANG
chilkat software		 Erlang/OTP
Erlang/Inets (Inets)
ftp 		ERLANGのErlang/Inets (Inets)等の複数製品におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-48858 2026-06-12 14:34 2026-06-10 Show GitHub Exploit DB Packet Storm
1646 7.1 重要
Local 		- アップルのmacOSにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2022-26758 2026-06-12 14:34 2026-06-10 Show GitHub Exploit DB Packet Storm
1647 3.5
Physics 		- アップルのmacOSにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2022-48575 2026-06-12 14:34 2026-06-10 Show GitHub Exploit DB Packet Storm
1648 4 警告
Local 		NSA Ghidra NSAのGhidraにおける未定義、未指定、または実装定義の動作への依存に関する脆弱性 CWE-758
未定義、未指定、または実装定義の動作への依存 		CVE-2024-58350 2026-06-12 14:34 2026-06-10 Show GitHub Exploit DB Packet Storm
1649 6 警告
Local 		NVIDIA gpu display driver NVIDIAのgpu display driverにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2025-33221 2026-06-12 14:34 2026-05-26 Show GitHub Exploit DB Packet Storm
1650 6.7 警告
Local 		フォーティネット FortiProxy
FortiOS 		フォーティネットのFortiOS等の複数製品における安全でないデバッグアクセスレベルまたは状態にさらされた内部アセットに関する脆弱性 CWE-1244
安全でないデバッグアクセスレベルまたは状態にさらされた内部アセット 		CVE-2025-67862 2026-06-12 14:34 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254981 5.4 MEDIUM
Network 		cnvs canvas cnvs.io Canvas 3.3.0 has XSS in the title and content fields of a "Posts > Add New" action, and during creation of new tags and users. CWE-79
Cross-site Scripting 		CVE-2017-8298 2024-11-21 12:33 2017-04-28 Show GitHub Exploit DB Packet Storm
254982 9.8 CRITICAL
Network 		simple-file-manager_project simple-file-manager A path traversal vulnerability exists in simple-file-manager before 2017-04-26, affecting index.php (the sole "Simple PHP File Manager" component). CWE-22
Path Traversal 		CVE-2017-8297 2024-11-21 12:33 2017-04-28 Show GitHub Exploit DB Packet Storm
254983 7.5 HIGH
Network 		ked_password_manager_project ked_password_manager kedpm 0.5 and 1.0 creates a history file in ~/.kedpm/history that is written in cleartext. All of the commands performed in the password manager are written there. This can lead to the disclosure of … CWE-522
 Insufficiently Protected Credentials 		CVE-2017-8296 2024-11-21 12:33 2017-04-28 Show GitHub Exploit DB Packet Storm
254984 7.5 HIGH
Network 		virustotal yara libyara/re.c in the regex component in YARA 3.5.0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted rule that is mishandled in the yr_re_ex… CWE-125
Out-of-bounds Read 		CVE-2017-8294 2024-11-21 12:33 2017-04-27 Show GitHub Exploit DB Packet Storm
254985 9.8 CRITICAL
Network 		riot_project riot Stack-based buffer overflow in the ipv6_addr_from_str function in sys/net/network_layer/ipv6/addr/ipv6_addr_from_str.c in RIOT prior to 2017-04-25 allows local attackers, and potentially remote attac… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-8289 2024-11-21 12:33 2017-04-27 Show GitHub Exploit DB Packet Storm
254986 8.1 HIGH
Network 		gnome gnome-shell gnome-shell 3.22 through 3.24.1 mishandles extensions that fail to reload, which can lead to leaving extensions enabled in the lock screen. With these extensions, a bystander could launch application… CWE-20
 Improper Input Validation  		CVE-2017-8288 2024-11-21 12:33 2017-04-27 Show GitHub Exploit DB Packet Storm
254987 9.8 CRITICAL
Network 		freetype freetype FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_builder_close_contour function in psaux/psobjs.c. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-8287 2024-11-21 12:33 2017-04-27 Show GitHub Exploit DB Packet Storm
254988 7.0 HIGH
Local 		qemu qemu The disas_insn function in target/i386/translate.c in QEMU before 2.9.0, when TCG mode without hardware acceleration is used, does not limit the instruction size, which allows local users to gain pri… CWE-94
Code Injection 		CVE-2017-8284 2024-11-21 12:33 2017-04-26 Show GitHub Exploit DB Packet Storm
254989 9.8 CRITICAL
Network 		debian dpkg dpkg-source in dpkg 1.3.0 through 1.18.23 is able to use a non-GNU patch program and does not offer a protection mechanism for blank-indented diff hunks, which allows remote attackers to conduct dire… CWE-22
Path Traversal 		CVE-2017-8283 2024-11-21 12:33 2017-04-26 Show GitHub Exploit DB Packet Storm
254990 9.8 CRITICAL
Network 		wificam wireless_ip_camera_\(p2p\)_firmware On Wireless IP Camera (P2P) WIFICAM devices, access to .ini files (containing credentials) is not correctly checked. An attacker can bypass authentication by providing an empty loginuse parameter and… CWE-522
 Insufficiently Protected Credentials 		CVE-2017-8225 2024-11-21 12:33 2017-04-26 Show GitHub Exploit DB Packet Storm