Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
311	8.3	重要 Network	オラクル	Oracle Data Integrator	オラクルのOracle Data Integratorにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-35262	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

312	9.9	緊急 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-35263	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

313	8.8	重要 Network	オラクル	Oracle Identity Manager	オラクルのOracle Identity Managerにおける重要な機能に対する認証の欠如に関する脆弱性 New	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35265	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

314	8.8	重要 Network	オラクル	Oracle Identity Manager	オラクルのOracle Identity Managerにおける重要な機能に対する認証の欠如に関する脆弱性 New	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35267	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

315	9.9	緊急 Network	オラクル	Oracle Identity Manager	オラクルのOracle Identity Managerにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-35268	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

316	7.5	重要 Network	オラクル	Oracle Identity Manager	オラクルのOracle Identity Managerにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-35269	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

317	9.1	緊急 Network	オラクル	Oracle WebCenter Content	オラクルのOracle WebCenter Contentにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-35270	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

318	7.5	重要 Local	オラクル	Oracle VM VirtualBox	オラクルのOracle VM VirtualBoxにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-35275	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

319	9.8	緊急 Network	オラクル	Oracle WebCenter Content	オラクルのOracle WebCenter Contentにおける重要な機能に対する認証の欠如に関する脆弱性 New	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35286	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

320	6.6	警告 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおける権限管理に関する脆弱性 New	CWE-269 不適切な権限管理	CVE-2026-35291	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254631	9.8	CRITICAL Network	quickheal	antivirus_pro internet_security total_security	Quick Heal Internet Security 10.1.0.316, Quick Heal Total Security 10.1.0.316, and Quick Heal AntiVirus Pro 10.1.0.316 are vulnerable to Memory Corruption while parsing a malformed Mach-O file.	CWE-787 Out-of-bounds Write	CVE-2017-8774	2024-11-21 12:34	2017-05-4	Show	GitHub Exploit DB Packet Storm

254632	9.8	CRITICAL Network	quickheal	antivirus_pro internet_security total_security	Quick Heal Internet Security 10.1.0.316, Quick Heal Total Security 10.1.0.316, and Quick Heal AntiVirus Pro 10.1.0.316 are vulnerable to Out of Bounds Write on a Heap Buffer due to improper validatio…	CWE-787 Out-of-bounds Write	CVE-2017-8773	2024-11-21 12:34	2017-05-4	Show	GitHub Exploit DB Packet Storm

254633	6.5	MEDIUM Network	imagemagick	imagemagick	The function named ReadICONImage in coders\icon.c in ImageMagick 7.0.5-5 has a memory leak vulnerability which can cause memory exhaustion via a crafted ICON file.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-8765	2024-11-21 12:34	2017-05-4	Show	GitHub Exploit DB Packet Storm

254634	6.1	MEDIUM Network	telaxius	epesi	Cross-site scripting (XSS) vulnerability in modules/Base/Box/check_for_new_version.php in EPESI in Telaxus/EPESI 1.8.2 and earlier allows remote attackers to inject arbitrary web script or HTML via a…	CWE-79 Cross-site Scripting	CVE-2017-8763	2024-11-21 12:34	2017-05-4	Show	GitHub Exploit DB Packet Storm

254635	5.4	MEDIUM Network	genixcms	genixcms	GeniXCMS 1.0.2 has XSS triggered by an authenticated user who submits a page, as demonstrated by a crafted oncut attribute in a B element.	CWE-79 Cross-site Scripting	CVE-2017-8762	2024-11-21 12:34	2017-05-4	Show	GitHub Exploit DB Packet Storm

254636	6.5	MEDIUM Network	brave	brave	Brave 0.12.4 has a Status Bar Obfuscation issue in which a redirection target is shown in a possibly unexpected way. NOTE: third parties dispute this issue because it is a behavior that might have le…	NVD-CWE-noinfo	CVE-2017-8459	2024-11-21 12:34	2017-05-3	Show	GitHub Exploit DB Packet Storm

254637	6.5	MEDIUM Network	brave	brave	Brave 0.12.4 has a URI Obfuscation issue in which a string such as https://safe.example.com@unsafe.example.com/ is displayed without a clear UI indication that it is not a resource on the safe.exampl…	CWE-74 Injection	CVE-2017-8458	2024-11-21 12:34	2017-05-3	Show	GitHub Exploit DB Packet Storm

254638	7.8	HIGH Local	foxitsoftware	foxit_reader phantompdf	Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted font in …	CWE-125 Out-of-bounds Read	CVE-2017-8455	2024-11-21 12:34	2017-05-3	Show	GitHub Exploit DB Packet Storm

254639	8.8	HIGH Network	foxitsoftware	foxit_reader phantompdf	Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted font in …	CWE-125 Out-of-bounds Read	CVE-2017-8454	2024-11-21 12:34	2017-05-3	Show	GitHub Exploit DB Packet Storm

254640	8.8	HIGH Network	foxitsoftware	foxit_reader phantompdf	Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted font in …	CWE-125 Out-of-bounds Read	CVE-2017-8453	2024-11-21 12:34	2017-05-3	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed