Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
261	5.5	警告 Local		-	アップルのmacOSにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2025-24165	2026-06-16 13:39	2026-06-11	Show	GitHub Exploit DB Packet Storm

262	5.5	警告 Local		-	アップルのmacOSにおけるUNIX Symbolic Link のフォローに関する脆弱性 New	CWE-61 UNIX Symbolic Link のフォロー	CVE-2025-43278	2026-06-16 13:39	2026-06-11	Show	GitHub Exploit DB Packet Storm

263	5.5	警告 Local		-	アップルのmacOSにおけるログファイルからの情報漏えいに関する脆弱性 New	CWE-532 ログファイルからの情報漏えい	CVE-2025-46313	2026-06-16 13:39	2026-06-11	Show	GitHub Exploit DB Packet Storm

264	7.2	重要 Network	QNAP Systems	QuTS hero	QNAP SystemsのQuTS heroにおけるNULL ポインタデリファレンスに関する脆弱性 New	CWE-476 NULL ポインタデリファレンス	CVE-2025-62850	2026-06-16 13:39	2026-06-10	Show	GitHub Exploit DB Packet Storm

265	7.2	重要 Network	QNAP Systems	QuTS hero QNAP QTS	QNAP SystemsのQNAP QTS等の複数製品におけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2025-66273	2026-06-16 13:39	2026-06-10	Show	GitHub Exploit DB Packet Storm

266	7.2	重要 Network	QNAP Systems	QuTS hero QNAP QTS	QNAP SystemsのQNAP QTS等の複数製品におけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2025-66279	2026-06-16 13:39	2026-06-10	Show	GitHub Exploit DB Packet Storm

267	7.2	重要 Network	QNAP Systems	QuTS hero QNAP QTS	QNAP SystemsのQNAP QTS等の複数製品における複数の脆弱性 New	CWE-121 CWE-190	CVE-2025-66280	2026-06-16 13:39	2026-06-10	Show	GitHub Exploit DB Packet Storm

268	7.2	重要 Network	QNAP Systems	QuTS hero QNAP QTS	QNAP SystemsのQNAP QTS等の複数製品におけるNULL ポインタデリファレンスに関する脆弱性 New	CWE-476 NULL ポインタデリファレンス	CVE-2025-66281	2026-06-16 13:39	2026-06-10	Show	GitHub Exploit DB Packet Storm

269	4.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性 New	CWE-20 不適切な入力確認	CVE-2026-11280	2026-06-16 13:39	2026-06-5	Show	GitHub Exploit DB Packet Storm

270	5	警告 Local	Google	Google Chrome	GoogleのGoogle Chromeにおける複数の脆弱性 New	CWE-190 CWE-472	CVE-2026-11290	2026-06-16 13:39	2026-06-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255711	7.5	HIGH Network	postgresql	postgresql	It was found that some selectivity estimation functions in PostgreSQL before 9.2.21, 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3 did not check user privileges…	CWE-200 Information Exposure	CVE-2017-7484	2024-11-21 12:31	2017-05-13	Show	GitHub Exploit DB Packet Storm

255712	9.8	CRITICAL Network	keycloak	keycloak-nodejs-auth-utils	It was found that the Keycloak Node.js adapter 2.5 - 3.0 did not handle invalid tokens correctly. An attacker could use this flaw to bypass authentication and gain access to restricted information, …	NVD-CWE-noinfo	CVE-2017-7474	2024-11-21 12:31	2017-05-13	Show	GitHub Exploit DB Packet Storm

255713	5.5	MEDIUM Local	linux	linux_kernel	The KEYS subsystem in the Linux kernel before 4.10.13 allows local users to cause a denial of service (memory consumption) via a series of KEY_REQKEY_DEFL_THREAD_KEYRING keyctl_set_reqkey_keyring cal…	CWE-404 Improper Resource Shutdown or Release	CVE-2017-7472	2024-11-21 12:31	2017-05-12	Show	GitHub Exploit DB Packet Storm

255714	9.1	CRITICAL Network	vaultive	office_365_security	PGP/MIME encrypted messages injected into a Vaultive O365 (before 4.5.21) frontend via IMAP or SMTP have their Content-Type changed from 'Content-Type: multipart/encrypted; protocol="application/pgp-…	CWE-326 Inadequate Encryption Strength	CVE-2017-7229	2024-11-21 12:31	2017-05-4	Show	GitHub Exploit DB Packet Storm

255715	9.8	CRITICAL Network	novell netiq	imanager	Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a webshell upload vulnerability.	NVD-CWE-noinfo	CVE-2017-7432	2024-11-21 12:31	2017-05-3	Show	GitHub Exploit DB Packet Storm

255716	8.8	HIGH Network	novell netiq	imanager	Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have persistent CSRF in object management.	CWE-352 Origin Validation Error	CVE-2017-7431	2024-11-21 12:31	2017-05-3	Show	GitHub Exploit DB Packet Storm

255717	6.1	MEDIUM Network	novell netiq	imanager	Novell iManager 2.7.x before 2.7 SP7 Patch 10 HF1 and NetIQ iManager 3.x before 3.0.3.1 have a persistent XSS vulnerability in Framework.	CWE-79 Cross-site Scripting	CVE-2017-7430	2024-11-21 12:31	2017-05-3	Show	GitHub Exploit DB Packet Storm

255718	5.3	MEDIUM Network	netiq	imanager	NetIQ iManager 3.x before 3.0.3.1 has an issue in the renegotiation of connection parameters with Tomcat.	CWE-20 Improper Input Validation	CVE-2017-7428	2024-11-21 12:31	2017-05-3	Show	GitHub Exploit DB Packet Storm

255719	9.8	CRITICAL Network	gnulib	gnulib	Gnulib before 2017-04-26 has a heap-based buffer overflow with the TZ environment variable. The error is in the save_abbr function in time_rz.c.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7476	2024-11-21 12:31	2017-05-3	Show	GitHub Exploit DB Packet Storm

255720	6.5	MEDIUM Network	paloaltonetworks	pan-os	The Management Web Interface in Palo Alto Networks PAN-OS before 7.1.9 allows remote authenticated users to obtain sensitive information via unspecified request parameters.	CWE-200 Information Exposure	CVE-2017-7216	2024-11-21 12:31	2017-05-3	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed