Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
601 6.8 警告
Physics 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2012
Microsoft Windows 11 24h2
Microsoft Windows 10 21h2
Microsoft Wind… 		Windows BitLocker セキュリティ機能バイパスの脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-50507 2026-06-11 16:15 2026-06-9 Show GitHub Exploit DB Packet Storm
602 9.1 緊急
Network 		BINARY DataDog::DogStatsd BINARYのDataDog::DogStatsdにおける複数の脆弱性 CWE-150
CWE-93
CVE-2026-46719
CVE-2026-46720
CVE-2026-46741
CVE-2026-9270 		2026-06-11 16:15 2026-06-5 Show GitHub Exploit DB Packet Storm
603 9.8 緊急
Network 		BINARY DataDog::DogStatsd BINARYのDataDog::DogStatsdにおける複数の脆弱性 CWE-150
CWE-93
CVE-2026-11362
CVE-2026-46719
CVE-2026-46720
CVE-2026-46741 		2026-06-11 16:15 2026-06-5 Show GitHub Exploit DB Packet Storm
604 7.8 重要
Local 		Synology Inc. Active Backup for Business Recovery Media Creator Synology Inc.のActive Backup for Business Recovery Media Creatorにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2022-49036 2026-06-11 16:14 2026-06-3 Show GitHub Exploit DB Packet Storm
605 5.5 警告
Local 		cilium eBPF ciliumのeBPFにおける複数の脆弱性 CWE-189
CWE-190
CVE-2026-10722 2026-06-11 16:14 2026-06-3 Show GitHub Exploit DB Packet Storm
606 7.5 重要
Network 		CRUX Protocol::HTTP2 CRUXのProtocol::HTTP2における高圧縮データの処理 (データ増幅)に関する脆弱性 CWE-409
高圧縮データの不適切な処理 (データ増幅) 		CVE-2026-10725 2026-06-11 16:14 2026-06-6 Show GitHub Exploit DB Packet Storm
607 6.1 警告
Network 		HCL Technologies Limited Digital Experience Compose
digital experience 		HCL Technologies Limitedのdigital experience等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-21825 2026-06-11 16:14 2026-06-5 Show GitHub Exploit DB Packet Storm
608 6.1 警告
Network 		HCL Technologies Limited Digital Experience Compose
digital experience 		HCL Technologies Limitedのdigital experience等の複数製品におけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-21826 2026-06-11 16:14 2026-06-5 Show GitHub Exploit DB Packet Storm
609 8.8 重要
Network 		HCL Technologies Limited Digital Experience Compose
digital experience 		HCL Technologies Limitedのdigital experience等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-21837 2026-06-11 16:14 2026-06-5 Show GitHub Exploit DB Packet Storm
610 5.3 警告
Local 		LMSYS Org SGLang LMSYS OrgのSGLangにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性 CWE-404
リソースの不適切なシャットダウンおよびリリース 		CVE-2026-10775 2026-06-11 16:14 2026-06-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255741 8.1 HIGH
Network 		libgd libgd In the GD Graphics Library (aka LibGD) through 2.2.5, there is a heap-based buffer over-read in tiffWriter in gd_tiff.c. NOTE: the vendor says "In my opinion this issue should not have a CVE, since t… CWE-125
Out-of-bounds Read 		CVE-2017-6363 2024-11-21 12:29 2020-02-27 Show GitHub Exploit DB Packet Storm
255742 6.1 MEDIUM
Network 		paypal adaptive_payments_sdk paypal/adaptivepayments-sdk-php v3.9.2 is vulnerable to a reflected XSS in the SetPaymentOptions.php resulting code execution CWE-79
Cross-site Scripting 		CVE-2017-6217 2024-11-21 12:29 2019-07-11 Show GitHub Exploit DB Packet Storm
255743 6.1 MEDIUM
Network 		novaksolutions infusionsoft-php-sdk novaksolutions/infusionsoft-php-sdk v2016-10-31 is vulnerable to a reflected XSS in the leadscoring.php resulting code execution CWE-79
Cross-site Scripting 		CVE-2017-6216 2024-11-21 12:29 2019-07-4 Show GitHub Exploit DB Packet Storm
255744 7.8 HIGH
Local 		nvidia vibrante_linux NVIDIA Vibrante Linux version 1.1, 2.0, and 2.2 contains a vulnerability in the user space driver in which protection mechanisms are insufficient, may lead to denial of service or information disclos… CWE-20
 Improper Input Validation  		CVE-2017-6261 2024-11-21 12:29 2019-06-5 Show GitHub Exploit DB Packet Storm
255745 5.3 MEDIUM
Network 		wordpress wordpress WordPress 4.7.2 mishandles listings of post authors, which allows remote attackers to obtain sensitive information (Path Disclosure) via a /wp-json/oembed/1.0/embed?url= request, related to the "auth… CWE-200
Information Exposure 		CVE-2017-6514 2024-11-21 12:29 2019-05-23 Show GitHub Exploit DB Packet Storm
255746 5.4 MEDIUM
Network 		paypal php_permissions_sdk paypal/permissions-sdk-php is vulnerable to reflected XSS in the samples/GetAccessToken.php verification_code parameter, resulting in code execution. CWE-79
Cross-site Scripting 		CVE-2017-6215 2024-11-21 12:29 2018-08-3 Show GitHub Exploit DB Packet Storm
255747 5.4 MEDIUM
Network 		paypal php_invoice_sdk paypal/invoice-sdk-php is vulnerable to reflected XSS in samples/permissions.php via the permToken parameter, resulting in code execution. CWE-79
Cross-site Scripting 		CVE-2017-6213 2024-11-21 12:29 2018-08-3 Show GitHub Exploit DB Packet Storm
255748 7.8 HIGH
Local 		google android In Android before the 2018-06-05 security patch level, NVIDIA Tegra X1 TZ contains a possible out of bounds write due to missing bounds check which could lead to escalation of privilege from the kern… CWE-787
 Out-of-bounds Write 		CVE-2017-6294 2024-11-21 12:29 2018-06-8 Show GitHub Exploit DB Packet Storm
255749 7.8 HIGH
Local 		google android In Android before the 2018-06-05 security patch level, NVIDIA TLZ TrustZone contains a possible out of bounds write due to integer overflow which could lead to local escalation of privilege in the Tr… CWE-787
 Out-of-bounds Write 		CVE-2017-6292 2024-11-21 12:29 2018-06-8 Show GitHub Exploit DB Packet Storm
255750 7.8 HIGH
Local 		google android In Android before the 2018-06-05 security patch level, NVIDIA TLK TrustZone contains a possible out of bounds write due to an integer overflow which could lead to local escalation of privilege with n… CWE-190
 Integer Overflow or Wraparound 		CVE-2017-6290 2024-11-21 12:29 2018-06-8 Show GitHub Exploit DB Packet Storm