Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
931	9.9	緊急 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35263	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

932	8.8	重要 Network	オラクル	Oracle Identity Manager	オラクルのOracle Identity Managerにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35265	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

933	8.8	重要 Network	オラクル	Oracle Identity Manager	オラクルのOracle Identity Managerにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35267	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

934	9.9	緊急 Network	オラクル	Oracle Identity Manager	オラクルのOracle Identity Managerにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35268	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

935	7.5	重要 Network	オラクル	Oracle Identity Manager	オラクルのOracle Identity Managerにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35269	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

936	9.1	緊急 Network	オラクル	Oracle WebCenter Content	オラクルのOracle WebCenter Contentにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35270	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

937	7.5	重要 Local	オラクル	Oracle VM VirtualBox	オラクルのOracle VM VirtualBoxにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35275	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

938	9.8	緊急 Network	オラクル	Oracle WebCenter Content	オラクルのOracle WebCenter Contentにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35286	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

939	6.6	警告 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-35291	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

940	10	緊急 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35292	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256561	7.8	HIGH Local	microsoft	sharepoint_server powerpoint	A remote code execution vulnerability exists in Microsoft PowerPoint when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability".	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8513	2024-11-21 12:34	2017-06-15	Show	GitHub Exploit DB Packet Storm

256562	8.8	HIGH Network	microsoft	office office_web_apps office_web_apps_server sharepoint_enterprise_server office_online_server word_automation_services	A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique …	NVD-CWE-noinfo	CVE-2017-8512	2024-11-21 12:34	2017-06-15	Show	GitHub Exploit DB Packet Storm

256563	7.8	HIGH Local	microsoft	office_web_apps powerpoint_for_mac office office_web_apps_server sharepoint_server office_online_server	A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique …	NVD-CWE-noinfo	CVE-2017-8511	2024-11-21 12:34	2017-06-15	Show	GitHub Exploit DB Packet Storm

256564	8.8	HIGH Network	microsoft	word office excel	A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique …	NVD-CWE-noinfo	CVE-2017-8510	2024-11-21 12:34	2017-06-15	Show	GitHub Exploit DB Packet Storm

256565	8.8	HIGH Network	microsoft	word office word_for_mac office_compatibility_pack sharepoint_server onenote office_web_apps_server office_web_apps	A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique …	NVD-CWE-noinfo	CVE-2017-8509	2024-11-21 12:34	2017-06-15	Show	GitHub Exploit DB Packet Storm

256566	5.5	MEDIUM Local	microsoft	outlook	A security feature bypass vulnerability exists in Microsoft Office software when it improperly handles the parsing of file formats, aka "Microsoft Office Security Feature Bypass Vulnerability".	NVD-CWE-noinfo	CVE-2017-8508	2024-11-21 12:34	2017-06-15	Show	GitHub Exploit DB Packet Storm

256567	7.8	HIGH Local	microsoft	outlook	A remote code execution vulnerability exists in the way Microsoft Office software parses specially crafted email messages, aka "Microsoft Office Memory Corruption Vulnerability".	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8507	2024-11-21 12:34	2017-06-15	Show	GitHub Exploit DB Packet Storm

256568	7.8	HIGH Local	microsoft	outlook	A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique …	NVD-CWE-noinfo	CVE-2017-8506	2024-11-21 12:34	2017-06-15	Show	GitHub Exploit DB Packet Storm

256569	4.3	MEDIUM Network	microsoft	edge	Microsoft Edge in Windows 10 1607 and 1703, and Windows Server 2016 allows an attacker to read the URL of a cross-origin request when the Microsoft Edge Fetch API incorrectly handles a filtered respo…	CWE-200 Information Exposure	CVE-2017-8504	2024-11-21 12:34	2017-06-15	Show	GitHub Exploit DB Packet Storm

256570	7.5	HIGH Network	microsoft	edge	Microsoft Edge in Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user when the Edge JavaScript scripting engine fails to handle objects in memory, aka "Scr…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8499	2024-11-21 12:34	2017-06-15	Show	GitHub Exploit DB Packet Storm