Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
311	4.3	警告 Network	Splunk	Splunk AI Toolkit	SplunkのSplunk AI Toolkitにおけるリソースの安全ではないデフォルト値への初期化に関する脆弱性 New	CWE-1188 リソースの安全ではないデフォルト値への初期化	CVE-2026-20265	2026-06-23 10:00	2026-06-17	Show	GitHub Exploit DB Packet Storm

312	9.1	緊急 Network	Splunk	Splunk AI Toolkit	SplunkのSplunk AI ToolkitにおけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-20266	2026-06-23 10:00	2026-06-17	Show	GitHub Exploit DB Packet Storm

313	5.9	警告 Network	VMware	Spring Data MongoDB	VMwareのSpring Data MongoDBにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 New	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-41696	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

314	8.1	重要 Network	VMware	Spring Data MongoDB	VMwareのSpring Data MongoDBにおける言語構文の表現に使用される特殊な要素の不適切な無効化に関する脆弱性 New	CWE-917 言語構文の表現に使用される特殊な要素の不適切な無効化	CVE-2026-41717	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

315	6.5	警告 Network	VMware	spring for apache kafka	VMwareのspring for apache kafkaにおける入力確認に関する脆弱性 New	CWE-20 不適切な入力確認	CVE-2026-41727	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

316	7.5	重要 Network	VMware	Spring Data REST	VMwareのSpring Data RESTにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-41728	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

317	8.1	重要 Network	VMware	Spring Data REST	VMwareのSpring Data RESTにおける言語構文の表現に使用される特殊な要素の不適切な無効化に関する脆弱性 New	CWE-917 言語構文の表現に使用される特殊な要素の不適切な無効化	CVE-2026-41729	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

318	5.3	警告 Network	VMware	Spring Data REST	VMwareのSpring Data RESTにおけるエラーメッセージによる情報漏えいに関する脆弱性 New	CWE-209 エラーメッセージによる情報漏えい	CVE-2026-41730	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

319	8.1	重要 Network	VMware	spring for apache kafka	VMwareのspring for apache kafkaにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-41731	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

320	5.3	警告 Network	VMware	Spring Data REST	VMwareのSpring Data RESTにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-41837	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256371	7.8	HIGH Local	nvidia	gpu_driver	NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where a value passed from a user to the driver is not correctly validated …	CWE-20 Improper Input Validation	CVE-2017-6268	2024-11-21 12:29	2017-09-23	Show	GitHub Exploit DB Packet Storm

256372	5.5	MEDIUM Local	nvidia	gpu_driver	NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect initialization of internal objects can cause an infinite loop which may lead to a denial of serv…	CWE-665 CWE-835 Improper Initialization Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-6267	2024-11-21 12:29	2017-09-23	Show	GitHub Exploit DB Packet Storm

256373	5.5	MEDIUM Local	nvidia	gpu_driver	NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls could allow unprivileged users to cause a denial of service.	NVD-CWE-noinfo	CVE-2017-6266	2024-11-21 12:29	2017-09-23	Show	GitHub Exploit DB Packet Storm

256374	9.8	CRITICAL Network	sophos	astaro_security_gateway_firmware	Astaro Security Gateway (aka ASG) 7 allows remote attackers to execute arbitrary code via a crafted request to index.plx.	CWE-20 Improper Input Validation	CVE-2017-6315	2024-11-21 12:29	2017-09-20	Show	GitHub Exploit DB Packet Storm

256375	5.9	MEDIUM Network	f5	big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<…	In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe 12.1.2-HF1 and 13.0.0, an undisclosed type of responses may cause TMM to restart, causing an interruption of se…	NVD-CWE-noinfo	CVE-2017-6147	2024-11-21 12:29	2017-09-19	Show	GitHub Exploit DB Packet Storm

256376	6.5	MEDIUM Network	symantec	encryption_desktop	Symantec Encryption Desktop before SED 10.4.1MP2 can allow remote attackers to cause a denial of service (resource consumption) via crafted web requests."	NVD-CWE-noinfo	CVE-2017-6330	2024-11-21 12:29	2017-09-13	Show	GitHub Exploit DB Packet Storm

256377	7.5	HIGH Network	libgd debian fedoraproject canonical	libgd debian_linux fedora ubuntu_linux	Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors.	CWE-415 Double Free	CVE-2017-6362	2024-11-21 12:29	2017-09-7	Show	GitHub Exploit DB Packet Storm

256378	7.8	HIGH Local	symantec	vip_access_for_desktop	Symantec VIP Access for Desktop prior to 2.2.4 can be susceptible to a DLL Pre-Loading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker…	CWE-427 Uncontrolled Search Path Element	CVE-2017-6329	2024-11-21 12:29	2017-08-22	Show	GitHub Exploit DB Packet Storm

256379	8.8	HIGH Adjacent	google	android	In the touch controller function in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, a variable may be controlled by the user and can lead to a buffer overflow.	CWE-120 Classic Buffer Overflow	CVE-2017-6421	2024-11-21 12:29	2017-08-17	Show	GitHub Exploit DB Packet Storm

256380	8.8	HIGH Network	symantec	message_gateway	The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of cross site request forgery (also known as one-click attack and is abbreviated as CSRF or XSRF), which is a type of malicious…	CWE-352 Origin Validation Error	CVE-2017-6328	2024-11-21 12:29	2017-08-12	Show	GitHub Exploit DB Packet Storm