Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
901 5.4 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-6269 2026-06-15 18:36 2026-06-11 Show GitHub Exploit DB Packet Storm
902 5.3 警告
Network 		ironmansoftware powershell universal ironmansoftwareのpowershell universalにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-8694 2026-06-15 18:36 2026-06-12 Show GitHub Exploit DB Packet Storm
903 - - (複数のベンダ) (複数の製品) crypton-x509-validationにおける不適切な証明書検証の脆弱性 - - 2026-06-15 15:34 2026-06-12 Show GitHub Exploit DB Packet Storm
904 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年06月11日) - - 2026-06-15 15:34 2026-06-12 Show GitHub Exploit DB Packet Storm
905 7.8 重要
Local 		リコー (複数の製品) リコーおよびコニカミノルタジャパン製プリンタドライバーにおける権限昇格の脆弱性 CWE-Other
その他 		CVE-2026-50100 2026-06-15 14:26 2026-06-15 Show GitHub Exploit DB Packet Storm
906 7.5 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2026-1220 2026-06-15 11:22 2026-06-10 Show GitHub Exploit DB Packet Storm
907 7.8 重要
Local 		マイクロソフト Microsoft PowerToys Microsoft PowerToys の特権昇格の脆弱性 CWE-285
不適切な認可 		CVE-2026-42902 2026-06-15 11:22 2026-06-9 Show GitHub Exploit DB Packet Storm
908 7.5 重要
Network 		OpenVM OpenVM OpenVMにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-46669 2026-06-15 11:22 2026-06-10 Show GitHub Exploit DB Packet Storm
909 7.8 重要
Local 		マイクロソフト Windows Narrator Braille Windows ナレーターの点字機能の特権昇格の脆弱性 CWE-426
信頼性のない検索パス 		CVE-2026-48565 2026-06-15 11:21 2026-06-9 Show GitHub Exploit DB Packet Storm
910 6.5 警告
Network 		Apache Software Foundation Airflow Providers Samba (apache-airflow-providers-samba) Apache Software FoundationのAirflow Providers Samba (apache-airflow-providers-samba)におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-49818 2026-06-15 11:21 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254441 7.5 HIGH
Network 		aeroadmin aeroadmin AeroAdmin 4.1 uses a function to copy data between two pointers where the size of the data copied is taken directly from a network packet. This can cause a buffer overflow and denial of service. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-8893 2024-11-21 12:34 2017-07-3 Show GitHub Exploit DB Packet Storm
254442 7.5 HIGH
Network 		linux linux_kernel The NFSv4 server in the Linux kernel before 4.11.3 does not properly validate the layout type when processing the NFSv4 pNFS GETDEVICEINFO or LAYOUTGET operand in a UDP packet from a remote attacker.… CWE-129
 Improper Validation of Array Index 		CVE-2017-8797 2024-11-21 12:34 2017-07-3 Show GitHub Exploit DB Packet Storm
254443 6.5 MEDIUM
Network 		elastic kibana In Kibana X-Pack security versions prior to 5.4.3 if a Kibana user opens a crafted Kibana URL the result could be a redirect to an improperly initialized Kibana login screen. If the user enters crede… CWE-200
Information Exposure 		CVE-2017-8443 2024-11-21 12:34 2017-07-1 Show GitHub Exploit DB Packet Storm
254444 8.1 HIGH
Network 		microsoft azure_active_directory_connect Azure AD Connect Password writeback, if misconfigured during enablement, allows an attacker to reset passwords and gain unauthorized access to arbitrary on-premises AD privileged user accounts aka "A… CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2017-8613 2024-11-21 12:34 2017-06-29 Show GitHub Exploit DB Packet Storm
254445 7.0 HIGH
Local 		microsoft windows_server_2016
windows_10 		The DirectX component in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to run arbitrary code in kernel mode via a specially crafted application… CWE-281
 Improper Preservation of Permissions 		CVE-2017-8579 2024-11-21 12:34 2017-06-29 Show GitHub Exploit DB Packet Storm
254446 7.0 HIGH
Local 		microsoft windows_server_2016
windows_10 		The graphics component in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to run arbitrary code in kernel mode via a specially crafted applicatio… CWE-665
 Improper Initialization 		CVE-2017-8576 2024-11-21 12:34 2017-06-29 Show GitHub Exploit DB Packet Storm
254447 5.5 MEDIUM
Local 		microsoft windows_server_2016
windows_10 		The kernel in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application, aka "Microsoft Graphics … CWE-200
Information Exposure 		CVE-2017-8575 2024-11-21 12:34 2017-06-29 Show GitHub Exploit DB Packet Storm
254448 7.8 HIGH
Local 		microsoft windows_defender
forefront_endpoint_protection
security_essentials
endpoint_protection
windows_intune_endpoint_protection 		The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on 32-bit versions of Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows S… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-8558 2024-11-21 12:34 2017-06-29 Show GitHub Exploit DB Packet Storm
254449 4.7 MEDIUM
Local 		microsoft windows_rt_8.1
windows_server_2012
windows_server_2016
windows_7
windows_10
windows_8.1
windows_server_2008 		The kernel in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 a… CWE-200
Information Exposure 		CVE-2017-8554 2024-11-21 12:34 2017-06-29 Show GitHub Exploit DB Packet Storm
254450 7.5 HIGH
Network 		elastic kibana Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes. CWE-769
 DEPRECATED: Uncontrolled File Descriptor Consumption 		CVE-2017-8452 2024-11-21 12:34 2017-06-17 Show GitHub Exploit DB Packet Storm