Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241 9.1 緊急
Network 		OTRS プロジェクト OTRS OTRS プロジェクトのOTRSにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-48188 2026-06-16 13:40 2026-06-1 Show GitHub Exploit DB Packet Storm
242 5.7 警告
Network 		OTRS プロジェクト OTRS OTRS プロジェクトのOTRSにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-48189 2026-06-16 13:40 2026-06-1 Show GitHub Exploit DB Packet Storm
243 3.5
Network 		OTRS プロジェクト OTRS OTRS プロジェクトのOTRSにおける不適切なデフォルトパーミッションに関する脆弱性 CWE-276
不適切なデフォルトパーミッション 		CVE-2026-48190 2026-06-16 13:40 2026-06-1 Show GitHub Exploit DB Packet Storm
244 3.5
Network 		OTRS プロジェクト OTRS OTRS プロジェクトのOTRSにおける不適切なデフォルトパーミッションに関する脆弱性 CWE-276
不適切なデフォルトパーミッション 		CVE-2026-48191 2026-06-16 13:40 2026-06-1 Show GitHub Exploit DB Packet Storm
245 6.5 警告
Network 		OTRS プロジェクト OTRS OTRS プロジェクトのOTRSにおける複数の脆弱性 CWE-400
CWE-791
CVE-2026-48208 2026-06-16 13:40 2026-06-1 Show GitHub Exploit DB Packet Storm
246 7.1 重要
Network 		OTRS プロジェクト OTRS OTRS プロジェクトのOTRSにおける複数の脆弱性 CWE-116
CWE-79
CVE-2026-48209 2026-06-16 13:40 2026-06-1 Show GitHub Exploit DB Packet Storm
247 5.7 警告
Network 		OTRS プロジェクト OTRS OTRS プロジェクトのOTRSにおける複数の脆弱性 CWE-200
CWE-269
CVE-2026-48210 2026-06-16 13:40 2026-05-31 Show GitHub Exploit DB Packet Storm
248 7.5 重要
Network 		Django Software Foundation daphne Django Software Foundationのdaphneにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-44545 2026-06-16 13:40 2026-06-3 Show GitHub Exploit DB Packet Storm
249 5.3 警告
Network 		Django Software Foundation daphne Django Software FoundationのdaphneにおけるHTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2026-44546 2026-06-16 13:40 2026-06-3 Show GitHub Exploit DB Packet Storm
250 6.1 警告
Network 		マイクロソフト Microsoft Exchange Server
Microsoft Exchange Server Subscription Edition (SE) 		Microsoft Exchange Server のなりすましの脆弱性 CWE-79
CWE-918
CVE-2026-45501 2026-06-16 13:40 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254691 9.8 CRITICAL
Network 		emc scaleio An issue was discovered in EMC ScaleIO 2.0.1.x. A buffer overflow vulnerability in the SDBG service may potentially allow a remote unauthenticated attacker to execute arbitrary commands with root pri… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-8020 2024-11-21 12:33 2017-11-28 Show GitHub Exploit DB Packet Storm
254692 7.5 HIGH
Network 		emc scaleio An issue was discovered in EMC ScaleIO 2.0.1.x. A vulnerability in message parsers (MDM, SDS, and LIA) could potentially allow an unauthenticated remote attacker to send specifically crafted packets … CWE-20
 Improper Input Validation  		CVE-2017-8019 2024-11-21 12:33 2017-11-28 Show GitHub Exploit DB Packet Storm
254693 8.4 HIGH
Local 		dell emc_scaleio An issue was discovered in EMC ScaleIO 2.0.1.x. In a Linux environment, one of the support scripts saves the credentials of the ScaleIO MDM user who executed the script in clear text in temporary log… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2017-8001 2024-11-21 12:33 2017-11-28 Show GitHub Exploit DB Packet Storm
254694 9.8 CRITICAL
Network 		pivotal_software spring_advanced_message_queuing_protocol In Pivotal Spring AMQP versions prior to 1.7.4, 1.6.11, and 1.5.7, an org.springframework.amqp.core.Message may be unsafely deserialized when being converted into a string. A malicious payload could … CWE-502
 Deserialization of Untrusted Data 		CVE-2017-8045 2024-11-21 12:33 2017-11-27 Show GitHub Exploit DB Packet Storm
254695 6.1 MEDIUM
Network 		vmware single_sign-on_for_pivotal_cloud_foundry In Pivotal Single Sign-On for PCF (1.3.x versions prior to 1.3.4 and 1.4.x versions prior to 1.4.3), certain pages allow code to be injected into the DOM environment through query parameters, leading… CWE-79
Cross-site Scripting 		CVE-2017-8044 2024-11-21 12:33 2017-11-27 Show GitHub Exploit DB Packet Storm
254696 5.9 MEDIUM
Network 		pivotal spring_web_flow An issue was discovered in Pivotal Spring Web Flow through 2.4.5. Applications that do not change the value of the MvcViewFactoryCreator useSpringBinding property which is disabled by default (i.e., … CWE-1188
 Insecure Default Initialization of Resource 		CVE-2017-8039 2024-11-21 12:33 2017-11-27 Show GitHub Exploit DB Packet Storm
254697 8.8 HIGH
Network 		pivotal_software credhub-release In Cloud Foundry Foundation Credhub-release version 1.1.0, access control lists (ACLs) enforce whether an authenticated user can perform an operation on a credential. For installations using ACLs, th… NVD-CWE-noinfo
CVE-2017-8038 2024-11-21 12:33 2017-11-27 Show GitHub Exploit DB Packet Storm
254698 5.3 MEDIUM
Network 		cloudfoundry cf-release
uaa-release 		An issue was discovered in Cloud Foundry Foundation cf-release (all versions prior to v279) and UAA (30.x versions prior to 30.6, 45.x versions prior to 45.4, 52.x versions prior to 52.1). In some ca… NVD-CWE-noinfo
CVE-2017-8031 2024-11-21 12:33 2017-11-27 Show GitHub Exploit DB Packet Storm
254699 8.1 HIGH
Network 		pivotal_software
debian 		spring-ldap
debian_linux 		In Pivotal Spring-LDAP versions 1.3.0 - 2.3.1, when connected to some LDAP servers, when no additional attributes are bound, and when using LDAP BindAuthenticator with org.springframework.ldap.core.s… CWE-287
Improper Authentication 		CVE-2017-8028 2024-11-21 12:33 2017-11-27 Show GitHub Exploit DB Packet Storm
254700 5.5 MEDIUM
Local 		huawei p10_lite_firmware Warsaw Huawei Smart phones with software of versions earlier than Warsaw-AL00C00B180, versions earlier than Warsaw-TL10C01B180 have a permission control vulnerability. Due to improper authorization o… CWE-863
 Incorrect Authorization 		CVE-2017-8216 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm