Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
611 6.1 警告
Network 		Apache Software Foundation Apache HTTP Server Apache Software FoundationのApache HTTP Serverにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-29170 2026-06-10 14:28 2026-06-8 Show GitHub Exploit DB Packet Storm
612 7.5 重要
Network 		Apache Software Foundation Apache HTTP Server Apache Software FoundationのApache HTTP Serverにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-34355 2026-06-10 14:28 2026-06-8 Show GitHub Exploit DB Packet Storm
613 7.5 重要
Network 		Apache Software Foundation Apache HTTP Server Apache Software FoundationのApache HTTP Serverにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-34356 2026-06-10 14:28 2026-06-8 Show GitHub Exploit DB Packet Storm
614 5.9 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-41840 2026-06-10 14:28 2026-06-9 Show GitHub Exploit DB Packet Storm
615 5.9 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける重要な情報を含むキャッシュの使用に関する脆弱性 CWE-524
重要な情報を含むキャッシュの使用 		CVE-2026-41841 2026-06-10 14:28 2026-06-9 Show GitHub Exploit DB Packet Storm
616 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-41842 2026-06-10 14:28 2026-06-9 Show GitHub Exploit DB Packet Storm
617 5.9 警告
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41843 2026-06-10 14:28 2026-06-9 Show GitHub Exploit DB Packet Storm
618 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-41849 2026-06-10 14:28 2026-06-9 Show GitHub Exploit DB Packet Storm
619 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおけるアルゴリズムの複雑さに関する脆弱性 CWE-407
アルゴリズムの複雑性 		CVE-2026-41850 2026-06-10 14:28 2026-06-9 Show GitHub Exploit DB Packet Storm
620 7.5 重要
Network 		VMware Spring Framework VMwareのSpring Frameworkにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-41851 2026-06-10 14:27 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255641 9.8 CRITICAL
Network 		cerberus cerberus_ftp_server Buffer overflow in Cerberus FTP Server 8.0.10.3 allows remote attackers to cause a denial of service (daemon crash) or possibly have unspecified other impact via a long MLST command. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-6880 2024-11-21 12:30 2017-03-18 Show GitHub Exploit DB Packet Storm
255642 9.1 CRITICAL
Network 		gnu binutils readelf in GNU Binutils 2.28 is vulnerable to a heap-based buffer over-read while processing corrupt RL78 binaries. The vulnerability can trigger program crashes. It may lead to an information leak a… CWE-125
Out-of-bounds Read 		CVE-2017-6969 2024-11-21 12:30 2017-03-17 Show GitHub Exploit DB Packet Storm
255643 7.3 HIGH
Network 		neutrinolabs xrdp xrdp 0.9.1 calls the PAM function auth_start_session() in an incorrect location, leading to PAM session modules not being properly initialized, with a potential consequence of incorrect configuration… CWE-287
Improper Authentication 		CVE-2017-6967 2024-11-21 12:30 2017-03-17 Show GitHub Exploit DB Packet Storm
255644 5.5 MEDIUM
Local 		gnu binutils readelf in GNU Binutils 2.28 has a use-after-free (specifically read-after-free) error while processing multiple, relocated sections in an MSP430 binary. This is caused by mishandling of an invalid s… CWE-416
 Use After Free 		CVE-2017-6966 2024-11-21 12:30 2017-03-17 Show GitHub Exploit DB Packet Storm
255645 5.5 MEDIUM
Local 		gnu binutils readelf in GNU Binutils 2.28 writes to illegal addresses while processing corrupt input files containing symbol-difference relocations, leading to a heap-based buffer overflow. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-6965 2024-11-21 12:30 2017-03-17 Show GitHub Exploit DB Packet Storm
255646 7.5 HIGH
Network 		apng2gif_project apng2gif An issue was discovered in apng2gif 1.7. There is an integer overflow resulting in a heap-based buffer overflow. This is related to the read_chunk function making an unchecked addition of 12. CWE-190
 Integer Overflow or Wraparound 		CVE-2017-6962 2024-11-21 12:30 2017-03-17 Show GitHub Exploit DB Packet Storm
255647 5.5 MEDIUM
Local 		apng2gif_project apng2gif An issue was discovered in apng2gif 1.7. There is improper sanitization of user input causing huge memory allocations, resulting in a crash. This is related to the read_chunk function using the pChun… CWE-20
 Improper Input Validation  		CVE-2017-6961 2024-11-21 12:30 2017-03-17 Show GitHub Exploit DB Packet Storm
255648 7.5 HIGH
Network 		apng2gif_project
debian
canonical 		apng2gif
debian_linux
ubuntu_linux 		An issue was discovered in apng2gif 1.7. There is an integer overflow resulting in a heap-based buffer over-read, related to the load_apng function and the imagesize variable. CWE-190
 Integer Overflow or Wraparound 		CVE-2017-6960 2024-11-21 12:30 2017-03-17 Show GitHub Exploit DB Packet Storm
255649 6.1 MEDIUM
Network 		mantisbt source_integration An XSS vulnerability in the MantisBT Source Integration Plugin (before 2.0.2) search result page allows an attacker to inject arbitrary HTML or JavaScript (if MantisBT's CSP settings permit it) by cr… CWE-79
Cross-site Scripting 		CVE-2017-6958 2024-11-21 12:30 2017-03-17 Show GitHub Exploit DB Packet Storm
255650 5.3 MEDIUM
Network 		teleogistic invite_anyone An issue was discovered in by-email/by-email.php in the Invite Anyone plugin before 1.3.15 for WordPress. A user is able to change the subject and the body of the invitation mail that should be immut… CWE-20
 Improper Input Validation  		CVE-2017-6955 2024-11-21 12:30 2017-03-17 Show GitHub Exploit DB Packet Storm