Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
751 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-6277 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
752 8.7 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-6552 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
753 3.7
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-6976 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
754 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-7250 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
755 8.7 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-8589 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
756 6.5 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-9204 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
757 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける置換文字列の無害化に関する脆弱性 CWE-153
置換文字列の不適切な無害化 		CVE-2026-9694 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
758 7.8 重要
Local 		The Open Group Unix opengroupのUnixにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2025-71263 2026-06-12 14:35 2026-03-13 Show GitHub Exploit DB Packet Storm
759 7.5 重要
Network 		Dana Powers (dpkp) kafka-python Dana Powers (dpkp)のkafka-pythonにおける過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-10142 2026-06-12 14:35 2026-06-10 Show GitHub Exploit DB Packet Storm
760 7.5 重要
Network 		Dana Powers (dpkp) kafka-python Dana Powers (dpkp)のkafka-pythonにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-10143 2026-06-12 14:35 2026-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254761 7.8 HIGH
Local 		huawei p10_firmware
p10_plus_firmware
p8_lite_firmware
p9_firmware 		The boot loaders of P10 and P10 Plus Huawei mobile phones with software the versions before Victoria-L09AC605B162, the versions before Victoria-L29AC605B162, the versions before Vicky-L29AC605B162 ha… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-8150 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254762 5.5 MEDIUM
Local 		huawei p10_firmware
p10_plus_firmware 		The boot loaders of P10 and P10 Plus Huawei mobile phones with software the versions before Victoria-L09AC605B162, the versions before Victoria-L29AC605B162, the versions before Vicky-L29AC605B162 ha… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-8149 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254763 4.7 MEDIUM
Local 		huawei p9_firmware Audio driver in P9 smartphones with software The versions before EVA-AL10C00B389 has a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application on the … CWE-362
Race Condition 		CVE-2017-8148 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254764 5.5 MEDIUM
Local 		huawei p10_firmware
p10_plus_firmware 		The call module of P10 and P10 Plus smartphones with software versions before VTR-AL00C00B167, versions before VTR-TL00C01B167, versions before VKY-AL00C00B167, versions before VKY-TL00C01B167 has a … CWE-20
 Improper Input Validation  		CVE-2017-8146 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254765 5.5 MEDIUM
Local 		huawei p10_firmware
p10_plus_firmware 		The call module of P10 and P10 Plus smartphones with software versions before VTR-AL00C00B167, versions before VTR-TL00C01B167, versions before VKY-AL00C00B167, versions before VKY-TL00C01B167 has a … CWE-20
 Improper Input Validation  		CVE-2017-8145 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254766 5.5 MEDIUM
Local 		huawei honor_5a_firmware
honor_8_lite_firmware
mate_9_firmware
mate_9_pro_firmware
p10_firmware
p10_plus_firmware 		Honor 5A,Honor 8 Lite,Mate9,Mate9 Pro,P10,P10 Plus Huawei smartphones with software the versions before CAM-L03C605B143CUSTC605D003,the versions before Prague-L03C605B161,the versions before Prague-L… CWE-920
 Improper Restriction of Power Consumption 		CVE-2017-8144 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254767 5.5 MEDIUM
Local 		huawei honor_5c_firmware
p9_lite_firmware 		Wi-Fi driver of Honor 5C and P9 Lite Huawei smart phones with software versions earlier than NEM-L21C432B351 and versions earlier than VNS-L21C10B381 has a DoS vulnerability. An attacker may trick a … CWE-20
 Improper Input Validation  		CVE-2017-8143 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254768 7.8 HIGH
Local 		huawei p10_plus_firmware The Touch Panel (TP) driver in P10 Plus smart phones with software versions earlier than VKY-AL00C00B153 has a memory double free vulnerability. An attacker with the root privilege of the Android sys… CWE-415
 Double Free 		CVE-2017-8141 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254769 7.8 HIGH
Local 		huawei p9_plus_firmware The soundtrigger driver in P9 Plus smart phones with software versions earlier than VIE-AL10BC00B353 has a memory double free vulnerability. An attacker tricks a user into installing a malicious appl… CWE-415
 Double Free 		CVE-2017-8140 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm
254770 6.1 MEDIUM
Network 		huawei hedex_lite HedEx Earlier than V200R006C00 versions have the stored cross-site scripting (XSS) vulnerability. Attackers can exploit the vulnerability to plant malicious scripts into the configuration file to int… CWE-79
Cross-site Scripting 		CVE-2017-8139 2024-11-21 12:33 2017-11-23 Show GitHub Exploit DB Packet Storm