Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
11 8.1 重要
Network 		Grafana Labs Grafana Grafana LabsのGrafanaにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-33381 2026-06-17 15:46 2026-05-13 Show GitHub Exploit DB Packet Storm
12 5.4 警告
Network 		langflow Langflow Desktop langflowのLangflow Desktopにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-3341 2026-06-17 15:46 2026-06-11 Show GitHub Exploit DB Packet Storm
13 6.1 警告
Network 		IBM IBM DevOps Plan IBMのIBM DevOps PlanにおけるHTTP ヘッダのスクリプト構文の不適切な無効化に関する脆弱性 CWE-644
HTTP ヘッダのスクリプト構文の不適切な無効化 		CVE-2026-4096 2026-06-17 15:46 2026-06-11 Show GitHub Exploit DB Packet Storm
14 5.4 警告
Network 		VMware VMware Cloud Foundation
VMware Telco Cloud Platform
VMware vSphere
VMware Aria Operations 		VMwareのVMware Aria Operations等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2026-41722 2026-06-17 15:46 2026-06-8 Show GitHub Exploit DB Packet Storm
15 8 重要
Network 		VMware VMware Cloud Foundation
VMware Telco Cloud Platform
VMware vSphere
VMware Aria Operations 		VMwareのVMware Aria Operations等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41723 2026-06-17 15:46 2026-06-8 Show GitHub Exploit DB Packet Storm
16 5.9 警告
Network 		OpenSSL Project OpenSSL OpenSSL ProjectのOpenSSLにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-42767 2026-06-17 15:46 2026-06-9 Show GitHub Exploit DB Packet Storm
17 3.7
Network 		OpenSSL Project OpenSSL OpenSSL ProjectのOpenSSLにおける暗号化処理の不備に関する脆弱性 CWE-325
暗号化処理の不備 		CVE-2026-42770 2026-06-17 15:46 2026-06-9 Show GitHub Exploit DB Packet Storm
18 6.2 警告
Local 		OpenSSL Project OpenSSL OpenSSL ProjectのOpenSSLにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-42771 2026-06-17 15:46 2026-06-9 Show GitHub Exploit DB Packet Storm
19 8.8 重要
Network 		Kovidgoyal Kitty KovidgoyalのKittyにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-42850 2026-06-17 15:46 2026-06-12 Show GitHub Exploit DB Packet Storm
20 7.8 重要
Local 		Kovidgoyal Kitty KovidgoyalのKittyにおける複数の脆弱性 CWE-862
CWE-94
CVE-2026-42851 2026-06-17 15:46 2026-06-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255851 5.5 MEDIUM
Local 		pcre pcre The _pcre32_xclass function in pcre_xclass.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (invalid memory read) via a crafted file. CWE-125
Out-of-bounds Read 		CVE-2017-7244 2024-11-21 12:31 2017-03-24 Show GitHub Exploit DB Packet Storm
255852 6.1 MEDIUM
Network 		slims slims7_cendana Multiple Cross-Site Scripting (XSS) were discovered in admin/modules components in SLiMS 7 Cendana through 2017-03-23: the keywords parameter to bibliography/checkout_item.php, bibliography/dl_print.… CWE-79
Cross-site Scripting 		CVE-2017-7242 2024-11-21 12:31 2017-03-24 Show GitHub Exploit DB Packet Storm
255853 7.8 HIGH
Local 		tenable nessus Nessus 6.6.2 - 6.10.3 contains a flaw related to insecure permissions that may allow a local attacker to escalate privileges when the software is running in Agent Mode. Version 6.10.4 fixes this issu… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2017-7199 2024-11-21 12:31 2017-03-24 Show GitHub Exploit DB Packet Storm
255854 8.8 HIGH
Network 		cloudflare-scrape_project cloudflare-scrape An issue was discovered in cloudflare-scrape 1.6.6 through 1.7.1. A malicious website owner could craft a page that executes arbitrary Python code against any cfscrape user who scrapes that website. … CWE-20
 Improper Input Validation  		CVE-2017-7235 2024-11-21 12:31 2017-03-23 Show GitHub Exploit DB Packet Storm
255855 7.8 HIGH
Local 		pngdefry_project pngdefry pngdefry through 2017-03-22 is prone to a heap-based buffer-overflow vulnerability because it fails to properly process a specially crafted png file. This issue affects the 'process()' function of th… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-7231 2024-11-21 12:31 2017-03-23 Show GitHub Exploit DB Packet Storm
255856 9.8 CRITICAL
Network 		disksorter disk_sorter A buffer overflow vulnerability in Disk Sorter Enterprise 9.5.12 and earlier allows remote attackers to execute arbitrary code via a GET request. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-7230 2024-11-21 12:31 2017-03-23 Show GitHub Exploit DB Packet Storm
255857 7.5 HIGH
Network 		gnu binutils GNU linker (ld) in GNU Binutils 2.28 is vulnerable to a heap-based buffer overflow while processing a bogus input script, leading to a program crash. This relates to lack of '\0' termination of a nam… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-7227 2024-11-21 12:31 2017-03-23 Show GitHub Exploit DB Packet Storm
255858 9.1 CRITICAL
Network 		gnu binutils The pe_ILF_object_p function in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to a heap-based buffer over-read of size 4049 because it uses… CWE-125
Out-of-bounds Read 		CVE-2017-7226 2024-11-21 12:31 2017-03-23 Show GitHub Exploit DB Packet Storm
255859 7.5 HIGH
Network 		gnu binutils The find_nearest_line function in addr2line in GNU Binutils 2.28 does not handle the case where the main file name and the directory name are both empty, triggering a NULL pointer dereference and an … CWE-476
 NULL Pointer Dereference 		CVE-2017-7225 2024-11-21 12:31 2017-03-23 Show GitHub Exploit DB Packet Storm
255860 5.5 MEDIUM
Local 		gnu binutils The find_nearest_line function in objdump in GNU Binutils 2.28 is vulnerable to an invalid write (of size 1) while disassembling a corrupt binary that contains an empty function name, leading to a pr… CWE-787
 Out-of-bounds Write 		CVE-2017-7224 2024-11-21 12:31 2017-03-23 Show GitHub Exploit DB Packet Storm