Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 4:12 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
611 6.1 警告
Network 		Apache Software Foundation Apache HTTP Server Apache Software FoundationのApache HTTP Serverにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-29170 2026-06-10 14:28 2026-06-8 Show GitHub Exploit DB Packet Storm
612 7.5 重要
Network 		Apache Software Foundation Apache HTTP Server Apache Software FoundationのApache HTTP Serverにおけるヒープベースのバッファオーバーフローの脆弱性 New CWE-122
ヒープオーバーフロー 		CVE-2026-34355 2026-06-10 14:28 2026-06-8 Show GitHub Exploit DB Packet Storm
613 7.5 重要
Network 		Apache Software Foundation Apache HTTP Server Apache Software FoundationのApache HTTP Serverにおけるヒープベースのバッファオーバーフローの脆弱性 New CWE-122
ヒープオーバーフロー 		CVE-2026-34356 2026-06-10 14:28 2026-06-8 Show GitHub Exploit DB Packet Storm
614 5.9 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるリソースの枯渇に関する脆弱性 New CWE-400
リソースの枯渇 		CVE-2026-41840 2026-06-10 14:28 2026-06-9 Show GitHub Exploit DB Packet Storm
615 5.9 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける重要な情報を含むキャッシュの使用に関する脆弱性 New CWE-524
重要な情報を含むキャッシュの使用 		CVE-2026-41841 2026-06-10 14:28 2026-06-9 Show GitHub Exploit DB Packet Storm
616 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるリソースの枯渇に関する脆弱性 New CWE-400
リソースの枯渇 		CVE-2026-41842 2026-06-10 14:28 2026-06-9 Show GitHub Exploit DB Packet Storm
617 5.9 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるパストラバーサルの脆弱性 New CWE-22
パス・トラバーサル 		CVE-2026-41843 2026-06-10 14:28 2026-06-9 Show GitHub Exploit DB Packet Storm
618 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける整数オーバーフローの脆弱性 New CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-41849 2026-06-10 14:28 2026-06-9 Show GitHub Exploit DB Packet Storm
619 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるアルゴリズムの複雑さに関する脆弱性 New CWE-407
アルゴリズムの複雑性 		CVE-2026-41850 2026-06-10 14:28 2026-06-9 Show GitHub Exploit DB Packet Storm
620 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-41851 2026-06-10 14:27 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255471 8.8 HIGH
Network 		ntp ntp Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction l… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-6460 2024-11-21 12:29 2017-03-28 Show GitHub Exploit DB Packet Storm
255472 5.5 MEDIUM
Local 		ntp ntp The Windows installer for NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows local users to have unspecified impact via vectors related to an argument with multiple null bytes. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-6459 2024-11-21 12:29 2017-03-28 Show GitHub Exploit DB Packet Storm
255473 8.8 HIGH
Network 		ntp
hpe
apple
siemens 		ntp
hpux-ntp
mac_os_x
simatic_net_cp_443-1_opc_ua_firmware 		Multiple buffer overflows in the ctl_put* functions in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allow remote authenticated users to have unspecified impact via a long variable. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-6458 2024-11-21 12:29 2017-03-28 Show GitHub Exploit DB Packet Storm
255474 7.0 HIGH
Local 		ntp ntp NTP before 4.2.8p10 and 4.3.x before 4.3.94, when using PPSAPI, allows local users to gain privileges via a DLL in the PPSAPI_DLLS environment variable. CWE-94
Code Injection 		CVE-2017-6455 2024-11-21 12:29 2017-03-28 Show GitHub Exploit DB Packet Storm
255475 7.8 HIGH
Local 		ntp ntp Stack-based buffer overflow in the Windows installer for NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows local users to have unspecified impact via an application path on the command line. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-6452 2024-11-21 12:29 2017-03-28 Show GitHub Exploit DB Packet Storm
255476 7.8 HIGH
Local 		ntp ntp The mx4200_send function in the legacy MX4200 refclock in NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to e… CWE-787
 Out-of-bounds Write 		CVE-2017-6451 2024-11-21 12:29 2017-03-28 Show GitHub Exploit DB Packet Storm
255477 8.8 HIGH
Network 		intelliants subrion_cms Subrion CMS 4.0.5 has CSRF in admin/blog/add/. The attacker can add any tag, and can optionally insert XSS via the tags parameter. CWE-352
 Origin Validation Error 		CVE-2017-6069 2024-11-21 12:29 2017-03-27 Show GitHub Exploit DB Packet Storm
255478 8.8 HIGH
Network 		intelliants subrion_cms Subrion CMS 4.0.5 has CSRF in admin/blocks/add/. The attacker can create any block, and can optionally insert XSS via the content parameter. CWE-352
 Origin Validation Error 		CVE-2017-6068 2024-11-21 12:29 2017-03-27 Show GitHub Exploit DB Packet Storm
255479 6.1 MEDIUM
Network 		getsymphony symphony Symphony 2.6.9 has XSS in publish/notes/edit/##/saved/ via the bottom form field. CWE-79
Cross-site Scripting 		CVE-2017-6067 2024-11-21 12:29 2017-03-27 Show GitHub Exploit DB Packet Storm
255480 8.8 HIGH
Network 		intelliants subrion_cms Subrion CMS 4.0.5 has CSRF in admin/languages/edit/1/. The attacker can perform any Edit Language action, and can optionally insert XSS via the title parameter. CWE-352
 Origin Validation Error 		CVE-2017-6066 2024-11-21 12:29 2017-03-27 Show GitHub Exploit DB Packet Storm