Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
881 5.4 警告
Network 		langflow Langflow Desktop langflowのLangflow Desktopにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-3341 2026-06-17 15:46 2026-06-11 Show GitHub Exploit DB Packet Storm
882 6.1 警告
Network 		IBM IBM DevOps Plan IBMのIBM DevOps PlanにおけるHTTP ヘッダのスクリプト構文の不適切な無効化に関する脆弱性 CWE-644
HTTP ヘッダのスクリプト構文の不適切な無効化 		CVE-2026-4096 2026-06-17 15:46 2026-06-11 Show GitHub Exploit DB Packet Storm
883 5.4 警告
Network 		VMware VMware Cloud Foundation
VMware Telco Cloud Platform
VMware vSphere
VMware Aria Operations 		VMwareのVMware Aria Operations等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2026-41722 2026-06-17 15:46 2026-06-8 Show GitHub Exploit DB Packet Storm
884 8 重要
Network 		VMware VMware Cloud Foundation
VMware Telco Cloud Platform
VMware vSphere
VMware Aria Operations 		VMwareのVMware Aria Operations等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41723 2026-06-17 15:46 2026-06-8 Show GitHub Exploit DB Packet Storm
885 5.9 警告
Network 		OpenSSL Project OpenSSL OpenSSL ProjectのOpenSSLにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-42767 2026-06-17 15:46 2026-06-9 Show GitHub Exploit DB Packet Storm
886 3.7
Network 		OpenSSL Project OpenSSL OpenSSL ProjectのOpenSSLにおける暗号化処理の不備に関する脆弱性 CWE-325
暗号化処理の不備 		CVE-2026-42770 2026-06-17 15:46 2026-06-9 Show GitHub Exploit DB Packet Storm
887 6.2 警告
Local 		OpenSSL Project OpenSSL OpenSSL ProjectのOpenSSLにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-42771 2026-06-17 15:46 2026-06-9 Show GitHub Exploit DB Packet Storm
888 8.8 重要
Network 		Kovidgoyal Kitty KovidgoyalのKittyにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-42850 2026-06-17 15:46 2026-06-12 Show GitHub Exploit DB Packet Storm
889 7.8 重要
Local 		Kovidgoyal Kitty KovidgoyalのKittyにおける複数の脆弱性 CWE-862
CWE-94
CVE-2026-42851 2026-06-17 15:46 2026-06-12 Show GitHub Exploit DB Packet Storm
890 9.8 緊急
Network 		MariaDB Corporation Ab. MariaDB MariaDB Corporation Ab.のMariaDBにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-44170 2026-06-17 15:46 2026-06-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
256471 5.0 MEDIUM
Local 		libplist_project libplist The parse_string_node function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service (memory allocation error) via a crafted plist file. CWE-119
CWE-20
Incorrect Access of Indexable Resource ('Range Error') 
 Improper Input Validation  		CVE-2017-6436 2024-11-21 12:29 2017-03-15 Show GitHub Exploit DB Packet Storm
256472 5.0 MEDIUM
Local 		libplist_project libplist The parse_string_node function in bplist.c in libimobiledevice libplist 1.12 allows local users to cause a denial of service (memory corruption) via a crafted plist file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-6435 2024-11-21 12:29 2017-03-15 Show GitHub Exploit DB Packet Storm
256473 6.5 MEDIUM
Local 		libcacard_project libcacard Memory leak in the vcard_apdu_new function in card_7816.c in libcacard before 2.5.3 allows local guest OS users to cause a denial of service (host memory consumption) via vectors related to allocatin… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2017-6414 2024-11-21 12:29 2017-03-15 Show GitHub Exploit DB Packet Storm
256474 6.5 MEDIUM
Local 		virglrenderer_project virglrenderer Memory leak in the vrend_create_vertex_elements_state function in vrend_renderer.c in virglrenderer allows local guest OS users to cause a denial of service (host memory consumption) via a large numb… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2017-6386 2024-11-21 12:29 2017-03-15 Show GitHub Exploit DB Packet Storm
256475 8.8 HIGH
Network 		netgear dgn2200_firmware Cross-site request forgery (CSRF) vulnerability in NETGEAR DGN2200 routers with firmware 10.0.0.20 through 10.0.0.50 allows remote attackers to hijack the authentication of users for requests that pe… CWE-352
 Origin Validation Error 		CVE-2017-6366 2024-11-21 12:29 2017-03-15 Show GitHub Exploit DB Packet Storm
256476 6.5 MEDIUM
Local 		virglrenderer_project virglrenderer Memory leak in the add_shader_program function in vrend_renderer.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (host memory consumption) via vectors involvi… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2017-6317 2024-11-21 12:29 2017-03-15 Show GitHub Exploit DB Packet Storm
256477 6.5 MEDIUM
Local 		virglrenderer_project virglrenderer The vrend_decode_reset function in vrend_decode.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (NULL pointer dereference and QEMU process crash) by destroyin… CWE-476
 NULL Pointer Dereference 		CVE-2017-6210 2024-11-21 12:29 2017-03-15 Show GitHub Exploit DB Packet Storm
256478 6.5 MEDIUM
Local 		virglrenderer_project virglrenderer Stack-based buffer overflow in the parse_identifier function in tgsi_text.c in the TGSI auxiliary module in the Gallium driver in virglrenderer before 0.6.0 allows local guest OS users to cause a den… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-6209 2024-11-21 12:29 2017-03-15 Show GitHub Exploit DB Packet Storm
256479 7.8 HIGH
Local 		artifex
debian 		mupdf
debian_linux 		Stack-based buffer overflow in jstest_main.c in mujstest in Artifex Software, Inc. MuPDF 1.10a allows remote attackers to have unspecified impact via a crafted image. CWE-787
 Out-of-bounds Write 		CVE-2017-6060 2024-11-21 12:29 2017-03-15 Show GitHub Exploit DB Packet Storm
256480 6.7 MEDIUM
Local 		magnicomp sysinfo A Local Privilege Escalation Vulnerability in MagniComp's Sysinfo before 10-H64 for Linux and UNIX platforms could allow a local attacker to gain elevated privileges. Parts of SysInfo require setuid-… CWE-20
 Improper Input Validation  		CVE-2017-6516 2024-11-21 12:29 2017-03-15 Show GitHub Exploit DB Packet Storm