Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 26, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 761 | 9.8 |
緊急
Network |
マイクロソフト | Azure Stack Edge | Azure Stack Edge のリモートでコードが実行される脆弱性 |
CWE-610 CWE-73 |
CVE-2026-47643 | 2026-06-22 11:49 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 762 | 6.5 |
警告
Network |
マイクロソフト | Microsoft Graph | Microsoft Graph の情報漏えいの脆弱性 |
CWE-200 CWE-noinfo |
CVE-2026-47655 | 2026-06-22 11:49 | 2026-06-4 | Show | GitHub Exploit DB Packet Storm |
| 763 | 7.5 |
重要
Network |
VMware | Spring AI | VMwareのSpring AIにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 |
CWE-943
データクエリロジックの特殊要素の不適切な中立化 |
CVE-2026-47835 | 2026-06-22 11:49 | 2026-06-15 | Show | GitHub Exploit DB Packet Storm |
| 764 | 8.1 |
重要
Network |
VMware | Spring Security | VMwareのSpring Securityにおける認証に関する脆弱性 |
CWE-287
不適切な認証 |
CVE-2026-47838 | 2026-06-22 11:49 | 2026-06-10 | Show | GitHub Exploit DB Packet Storm |
| 765 | 7.8 |
重要
Local |
アドビシステムズ |
Adobe Acrobat Reader DC Adobe Acrobat Adobe Acrobat DC |
アドビのAdobe Acrobat等の複数製品における境界外書き込みに関する脆弱性 |
CWE-787
境界外書き込み |
CVE-2026-47965 | 2026-06-22 11:49 | 2026-06-12 | Show | GitHub Exploit DB Packet Storm |
| 766 | 8.2 |
重要
Network |
アドビシステムズ | Adobe Acrobat | アドビのAdobe Acrobatにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-48294 | 2026-06-22 11:49 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 767 | 9.3 |
緊急
Network |
Rocket.Chat | Rocket.Chat | Rocket.Chatにおけるアクセス制御に関する脆弱性 |
CWE-284
不適切なアクセス制御 |
CVE-2026-48616 | 2026-06-22 11:49 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 768 | 7.5 |
重要
Network |
ws project | ws | ws projectのwsにおける複数の脆弱性 |
CWE-400 CWE-770 |
CVE-2026-48779 | 2026-06-22 11:49 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 769 | 7.5 |
重要
Network |
Rocket.Chat | Rocket.Chat | Rocket.Chatにおける認証に関する脆弱性 |
CWE-287
不適切な認証 |
CVE-2026-48929 | 2026-06-22 11:49 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 770 | 9.8 |
緊急
Network |
MariaDB Corporation Ab. | MariaDB | MariaDB Corporation Ab.のMariaDBにおけるOS コマンドインジェクションの脆弱性 |
CWE-78
OSコマンド・インジェクション |
CVE-2026-49261 | 2026-06-22 11:49 | 2026-06-11 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 27, 2026, 4:35 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 256621 | 5.5 |
MEDIUM
Local |
microsoft |
forefront_security malware_protection_engine windows_defender |
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and… |
CWE-119 CWE-369 CWE-476 CWE-674 Incorrect Access of Indexable Resource ('Range Error') Divide By Zero NULL Pointer Dereference Uncontrolled Recursion |
CVE-2017-8539 | 2024-11-21 12:34 | 2017-05-27 | Show | GitHub Exploit DB Packet Storm |
| 256622 | 7.8 |
HIGH
Local |
microsoft |
forefront_security malware_protection_engine windows_defender |
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-8538 | 2024-11-21 12:34 | 2017-05-27 | Show | GitHub Exploit DB Packet Storm |
| 256623 | 5.5 |
MEDIUM
Local |
microsoft |
windows_defender forefront_endpoint_protection security_essentials endpoint_protection system_center_endpoint_protection windows_intune_endpoint_protection exchange_server |
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and… |
CWE-119 CWE-369 CWE-476 CWE-674 Incorrect Access of Indexable Resource ('Range Error') Divide By Zero NULL Pointer Dereference Uncontrolled Recursion |
CVE-2017-8537 | 2024-11-21 12:34 | 2017-05-27 | Show | GitHub Exploit DB Packet Storm |
| 256624 | 5.5 |
MEDIUM
Local |
microsoft |
windows_defender forefront_endpoint_protection security_essentials endpoint_protection system_center_endpoint_protection windows_intune_endpoint_protection exchange_server |
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and… |
CWE-119 CWE-369 CWE-476 CWE-674 Incorrect Access of Indexable Resource ('Range Error') Divide By Zero NULL Pointer Dereference Uncontrolled Recursion |
CVE-2017-8536 | 2024-11-21 12:34 | 2017-05-27 | Show | GitHub Exploit DB Packet Storm |
| 256625 | 5.5 |
MEDIUM
Local |
microsoft |
windows_defender forefront_endpoint_protection security_essentials endpoint_protection system_center_endpoint_protection windows_intune_endpoint_protection exchange_server |
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and… |
CWE-119 CWE-369 CWE-476 CWE-674 Incorrect Access of Indexable Resource ('Range Error') Divide By Zero NULL Pointer Dereference Uncontrolled Recursion |
CVE-2017-8535 | 2024-11-21 12:34 | 2017-05-27 | Show | GitHub Exploit DB Packet Storm |
| 256626 | 7.5 |
HIGH
Network |
sap | hana_xs | sinopia, as used in SAP HANA XS 1.00 and 2.00, allows remote attackers to cause a denial of service (assertion failure and service crash) by pushing a package with a filename containing a $ (dollar s… |
CWE-617
Reachable Assertion |
CVE-2017-8915 | 2024-11-21 12:34 | 2017-05-23 | Show | GitHub Exploit DB Packet Storm |
| 256627 | 8.3 |
HIGH
Network |
sap | hana_xs | sinopia, as used in SAP HANA XS 1.00 and 2.00, allows remote attackers to hijack npm packages or host arbitrary files by leveraging an insecure user creation policy, aka SAP Security Note 2407694. |
NVD-CWE-noinfo
|
CVE-2017-8914 | 2024-11-21 12:34 | 2017-05-23 | Show | GitHub Exploit DB Packet Storm |
| 256628 | 8.8 |
HIGH
Network |
sap | netweaver_application_server_java | The Visual Composer VC70RUNTIME component in SAP NetWeaver AS JAVA 7.5 allows remote authenticated users to conduct XML External Entity (XXE) attacks via a crafted XML document in a request to irj/se… |
CWE-611
XXE |
CVE-2017-8913 | 2024-11-21 12:34 | 2017-05-23 | Show | GitHub Exploit DB Packet Storm |
| 256629 | 4.6 |
MEDIUM
Physics |
Facebook WhatsApp Messenger before 2.16.323 for Android uses the SD card for cleartext storage of files (Audio, Documents, Images, Video, and Voice Notes) associated with a chat, even after that chat… |
CWE-311
Missing Encryption of Sensitive Data |
CVE-2017-8769 | 2024-11-21 12:34 | 2017-05-18 | Show | GitHub Exploit DB Packet Storm | ||
| 256630 | 9.8 |
CRITICAL
Network |
joomla | joomla\! | SQL injection vulnerability in Joomla! 3.7.x before 3.7.1 allows attackers to execute arbitrary SQL commands via unspecified vectors. |
CWE-89
SQL Injection |
CVE-2017-8917 | 2024-11-21 12:34 | 2017-05-18 | Show | GitHub Exploit DB Packet Storm |